Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
File: yQs5SsYzN2B_obsOq6EUU6gx85g.mft (raw, json)
Hash identifier: hzP8azuF9/AabF2aCJlrfcm8TaU8tGIycRKwqqgcuxc=
Subject key identifier: 84:DC:37:B1:C1:31:A5:AE:1E:7B:57:07:BA:FE:0B:43:B3:CA:EB:D8
Authority key identifier: C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
Certificate issuer: /CN=c90b394ac63337607fa1bb0eaba11453a831f398
Certificate serial: 019CAC7E3F5A730DA960DEA4EDE4F2E2C0C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
Manifest number: 0EE5
Signing time: Mon 02 Mar 2026 03:01:20 +0000
Manifest this update: Mon 02 Mar 2026 03:01:20 +0000
Manifest next update: Tue 03 Mar 2026 03:01:20 +0000
Files and hashes: 1: XsUKN2cOhLRHhR3AtKfxWQhi9jo.roa (hash: 6oB/bvwt2D2mFpVBEQFtPNnqH7Wf192r6bul35x6h9A=)
2: yQs5SsYzN2B_obsOq6EUU6gx85g.crl (hash: iPVOwq1IQIMdiZCsAOdg8GAGGk6mgcCiSyhBSkh3JWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 03:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:3f:5a:73:0d:a9:60:de:a4:ed:e4:f2:e2:c0:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c90b394ac63337607fa1bb0eaba11453a831f398
Validity
Not Before: Mar 2 03:01:20 2026 GMT
Not After : Mar 3 03:01:20 2026 GMT
Subject: CN=84dc37b1c131a5ae1e7b5707bafe0b43b3caebd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d4:88:ca:ae:ae:2b:18:b8:9f:d5:46:f1:3f:
06:e3:fc:3f:eb:eb:f2:13:0b:0c:10:72:e7:8d:4c:
37:d0:d6:06:b3:8b:9e:fc:93:17:34:6b:64:21:cd:
92:26:76:95:46:ec:1a:99:e7:2c:e6:d5:33:55:9b:
0d:31:15:53:50:1e:6a:ff:3c:d9:0b:07:0c:e0:f5:
71:9e:56:e5:13:92:aa:8d:2f:8e:8d:43:54:d4:ea:
dc:77:23:8a:71:e6:3a:ae:c5:b5:15:8a:e6:f7:fc:
fa:05:cc:f5:73:60:ba:e5:8f:f4:86:1a:af:c5:33:
ca:ce:25:7a:8d:51:db:fb:45:57:7d:67:8f:73:63:
ce:04:98:ca:c3:42:52:95:b4:b1:1c:b5:65:64:a6:
ce:da:8b:2d:1e:bc:79:51:8c:8f:44:07:57:cd:65:
ba:5a:6b:7a:ea:d8:53:ef:2d:16:c5:f7:00:bf:c1:
6b:43:fa:fb:32:21:f1:13:5a:21:54:93:f2:61:d8:
86:0c:69:53:64:2d:a6:e0:2f:97:d4:aa:d4:30:1f:
d3:60:3b:18:46:d4:6d:b3:bf:92:86:99:9e:fa:ac:
6c:00:bf:0b:35:66:cb:f0:b8:2e:e0:91:ab:8c:df:
4e:3b:33:fa:06:66:61:2d:d8:f5:ad:cb:c6:d4:68:
98:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:DC:37:B1:C1:31:A5:AE:1E:7B:57:07:BA:FE:0B:43:B3:CA:EB:D8
X509v3 Authority Key Identifier:
keyid:C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:2c:98:80:5d:aa:95:93:1f:ad:18:ba:3b:09:6a:5b:de:9d:
53:50:8d:0e:fd:13:d0:9e:bc:5b:6c:e7:08:16:75:0d:ca:7a:
6b:fa:20:8e:ed:01:22:06:8d:03:87:e7:74:10:01:98:89:15:
fd:f5:9d:86:e1:cc:59:fa:c8:53:80:8b:4f:dc:4e:03:8d:09:
9f:7d:34:10:92:50:24:de:de:ee:8e:31:20:bf:cd:87:e7:e0:
9f:bf:38:24:39:73:f2:ba:70:95:d3:e6:8b:40:5a:7e:37:ca:
de:5a:64:52:71:a5:91:1d:af:d1:66:d9:10:f1:05:80:74:03:
98:5f:d5:e7:de:19:db:17:9c:89:88:47:a4:2c:d3:99:9a:a2:
60:80:e2:6c:57:9e:58:69:c4:4c:6f:01:94:41:1f:ef:61:5f:
b9:09:49:08:eb:f4:96:09:59:3f:40:15:32:c2:15:e4:3f:b6:
ca:dc:f3:b5:9c:28:4a:de:69:3e:c0:f4:60:22:53:7c:c9:47:
59:8c:a3:0f:ea:d0:51:fd:09:01:e4:2c:e2:8f:72:3b:ad:fd:
83:7a:b8:6c:97:22:a2:8d:73:77:8d:84:06:f5:8a:4b:b0:cd:
9e:86:51:67:06:e8:d1:b7:e0:c8:b3:20:60:86:2f:e8:d7:e2:
17:27:22:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:52:15 2026 by rpki-client