Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json)
Hash identifier: 87gcn6LWN0yXkONWl5O3N9OO08HvbuduoEgEEaMKcb8=
Subject key identifier: B5:EA:29:59:14:1E:D8:75:56:0A:90:C0:8A:32:96:AB:0B:86:D4:5C
Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Certificate serial: 019CAAFD680C023B93124BEDCDFEB8DA03A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
Manifest number: 17E9
Signing time: Sun 01 Mar 2026 20:00:59 +0000
Manifest this update: Sun 01 Mar 2026 20:00:59 +0000
Manifest next update: Mon 02 Mar 2026 20:00:59 +0000
Files and hashes: 1: BqLAw4i8RwTxiSET0W9t_-557cY.roa (hash: 3vmf1uaZgtPEqrsbNZ2vEk3NVigksfRtXsG72qUjM2Q=)
2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: 63WCbOomYhVya5GtnlB1hX2V69V4ahbgWZrdece1FEE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:68:0c:02:3b:93:12:4b:ed:cd:fe:b8:da:03:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Validity
Not Before: Mar 1 20:00:59 2026 GMT
Not After : Mar 2 20:00:59 2026 GMT
Subject: CN=b5ea2959141ed875560a90c08a3296ab0b86d45c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:5e:5f:27:96:58:38:6d:9f:08:42:54:eb:7e:
8f:58:8f:c1:d7:b9:fd:96:45:af:5f:8e:7d:27:cc:
1f:39:97:da:88:0f:39:e7:1a:67:12:46:24:d4:5c:
7f:6c:ad:31:97:56:0a:6a:ad:b5:2c:de:b2:25:52:
78:69:d8:3a:08:0b:4d:ad:ef:11:96:5a:7e:24:6d:
3c:32:f5:de:88:a0:08:ac:54:82:af:03:45:c5:9c:
40:07:ab:1b:16:9e:b5:2a:d7:36:e7:0a:00:a7:a2:
55:dc:19:52:e8:d8:f7:ac:d5:d4:1f:ce:40:d2:86:
9f:78:22:2e:a7:61:58:e7:75:ed:bf:5f:2c:09:b6:
6d:79:0e:47:4e:39:38:39:2a:c4:c2:05:9b:c8:47:
6f:9d:d0:5d:d2:23:03:90:59:07:96:77:08:18:8c:
9b:bc:34:be:9e:b9:83:c0:c5:62:23:41:97:86:49:
66:74:30:58:61:39:f5:b3:ed:05:4d:35:02:85:96:
de:0b:25:79:40:d7:50:3d:03:6d:eb:3a:47:a9:e0:
ee:a3:0c:f6:b0:d1:71:30:7d:f4:4b:db:03:07:27:
17:3b:a0:6a:f5:35:fe:d0:55:02:27:f8:65:94:9b:
dc:70:99:7b:90:0f:a6:2b:9a:42:16:7b:c7:18:53:
d6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EA:29:59:14:1E:D8:75:56:0A:90:C0:8A:32:96:AB:0B:86:D4:5C
X509v3 Authority Key Identifier:
keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:a4:17:23:79:04:88:03:cc:b6:14:7f:04:e1:d5:39:a7:d2:
57:e7:cf:7f:7a:4b:46:c9:a7:fc:94:8e:9d:01:05:94:4b:35:
a4:d6:49:9b:ec:b5:5c:e9:d7:2c:9a:54:19:30:43:7f:9b:4b:
e2:b1:c1:7f:19:d6:e1:d4:66:92:b4:70:88:ce:72:82:f6:9c:
d7:e8:a3:99:09:da:9c:35:1d:e7:d1:ee:03:cb:98:88:ae:c0:
a0:b0:dd:b8:b0:0b:1a:a9:c7:70:af:e9:f2:9e:0b:e2:01:80:
5e:64:64:1c:ee:95:1f:d0:5c:c9:3a:c1:b3:cf:d2:f5:c9:1b:
47:93:64:2e:01:40:6d:ed:27:2a:82:a6:a0:bc:4f:ce:79:bf:
d6:be:da:4c:fe:89:c9:fc:4e:4d:71:25:af:3c:01:04:1b:d9:
0d:17:b3:b2:de:67:f0:6c:c9:55:44:10:c3:2a:0a:cb:d8:46:
64:a5:93:c5:98:bb:85:fd:ad:ec:1b:6b:4e:12:90:5a:b8:22:
d4:af:b3:8d:54:99:65:fb:11:9e:1a:50:63:31:ff:81:13:5d:
85:da:f1:d2:fe:aa:d0:67:2e:6d:fa:26:b7:82:2f:f2:b7:d9:
9e:56:6b:e4:cd:5e:02:b4:61:99:ae:5f:6b:a9:25:ee:6a:11:
03:14:e0:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:56:22 2026 by rpki-client