Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
File: 0YZHAF-osG5H7i77_e3Jegx3Vfg.mft (raw, json)
Hash identifier: ykgBMEWW+rH03tNcAf3peffS7sxZ03S8rDaIahFOlM0=
Subject key identifier: C5:75:CF:BE:09:99:E5:1E:F5:2A:38:4E:89:2E:D6:DD:58:17:34:11
Authority key identifier: D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
Certificate issuer: /CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Certificate serial: 019CAA21AD20DE4720DD7685CC989D8EAE6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 16:00:59 +0000
Manifest this update: Sun 01 Mar 2026 16:00:59 +0000
Manifest next update: Mon 02 Mar 2026 16:00:59 +0000
Files and hashes: 1: 0YZHAF-osG5H7i77_e3Jegx3Vfg.crl (hash: JHcCXMkg+by292UIfACkQUdMNiqpEiAMBILuZpaTscg=)
2: GmHD_yxmhmb7r8gjp6el8HpBXOw.roa (hash: fVaQ2rKEBssbb0vmO7FX3uJ1zApwIkrOyFVIx+Y+u/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:ad:20:de:47:20:dd:76:85:cc:98:9d:8e:ae:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d18647005fa8b06e47ee2efbfdedc97a0c7755f8
Validity
Not Before: Mar 1 16:00:59 2026 GMT
Not After : Mar 2 16:00:59 2026 GMT
Subject: CN=c575cfbe0999e51ef52a384e892ed6dd58173411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:dd:4c:ab:aa:3f:fc:db:0a:c5:de:cc:fd:d6:
cd:fb:20:46:a6:7f:3d:ed:68:a2:60:cc:eb:8d:25:
e8:3d:ce:e5:fa:9a:92:3c:a2:83:f2:0c:10:06:01:
41:24:4a:92:a0:35:86:b1:42:bc:5e:77:63:81:d9:
a8:b7:d8:8f:99:97:e7:0f:d8:c5:7b:f4:97:4c:7d:
0c:65:d4:70:de:48:f7:85:d3:7f:e3:12:a0:54:0c:
74:64:ae:33:a3:1f:8a:82:47:fc:fa:77:67:51:db:
a5:50:db:e5:ce:93:2c:90:47:a4:e5:3f:48:ae:28:
75:17:9e:34:f0:90:8e:6f:5c:e3:fe:4f:9b:77:03:
e0:f6:4c:fe:c5:e7:b5:04:17:cf:52:91:d8:f1:c2:
e4:77:e0:e9:25:73:29:be:d2:6b:8b:67:da:70:9b:
f2:59:58:74:ea:18:f3:c0:75:2f:68:f5:f1:5a:22:
ef:a2:8f:fd:38:05:06:48:e0:03:e0:de:99:81:a1:
f8:e0:36:76:4d:a2:7c:1d:12:7b:30:c6:0f:93:21:
91:fc:61:07:0b:19:e2:c2:46:a5:ab:85:f5:f8:72:
61:4e:c1:3c:eb:88:7b:34:59:68:4a:ac:cb:cd:d5:
94:40:bf:86:f4:18:6e:16:7b:f5:29:5f:1f:e9:d5:
19:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:75:CF:BE:09:99:E5:1E:F5:2A:38:4E:89:2E:D6:DD:58:17:34:11
X509v3 Authority Key Identifier:
keyid:D1:86:47:00:5F:A8:B0:6E:47:EE:2E:FB:FD:ED:C9:7A:0C:77:55:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YZHAF-osG5H7i77_e3Jegx3Vfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7fa791-b3c9-48ae-8034-c2104673c20b/1/0YZHAF-osG5H7i77_e3Jegx3Vfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:ee:2b:ef:39:60:1e:38:37:74:77:02:f3:d3:17:d4:84:23:
6b:61:78:fe:2d:f8:da:d3:f1:e9:3e:dd:7b:16:a8:6a:07:9c:
bd:07:af:e7:f5:23:df:09:0e:55:94:93:4a:f1:fc:52:69:66:
5a:eb:82:24:22:f0:a3:e3:98:ca:01:42:51:be:a5:da:3d:27:
e1:d9:25:72:e5:e6:67:87:d7:27:51:0c:48:fa:0e:2f:e8:54:
df:c0:af:f0:03:cf:e2:dc:9b:fd:1f:71:9c:a7:e4:cb:91:22:
7b:c0:39:28:28:3d:a8:d8:f5:56:33:6c:93:5f:45:5f:9a:72:
86:b5:ce:b0:2f:5a:d2:e2:f3:e6:af:6c:52:6e:b0:f8:6e:61:
a1:34:12:03:a5:9f:93:44:0e:80:1c:ea:7f:80:c2:83:3c:bc:
8e:ad:91:75:ae:28:62:23:02:68:d2:b2:7d:8e:ad:89:77:b9:
42:17:2e:8d:68:37:54:40:a9:1e:78:d2:67:ba:57:bf:31:a2:
de:da:c4:21:bb:81:3e:cc:ce:be:3b:3d:f5:fd:cf:72:a3:0c:
32:08:8c:6f:0b:93:cb:7e:99:86:fd:c1:54:46:6d:4a:79:30:
3a:c1:ca:70:de:b6:27:9f:31:2d:d9:fd:d6:28:d4:7c:b8:24:
b2:32:cc:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:53:22 2026 by rpki-client