Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
File: dy9i9-iZgXRBGAk19CuCo5mAotw.mft (raw, json)
Hash identifier: jMkEFKvXAiIDsQd52W+KsOsPwktfDl7uBAEmpVJ7VXg=
Subject key identifier: 84:73:0F:0D:22:33:9D:B0:47:7A:B7:5D:87:FC:8F:52:85:11:94:F3
Authority key identifier: 77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC
Certificate issuer: /CN=772f62f7e899817441180935f42b82a39980a2dc
Certificate serial: 019CAEA31AB2049B1900E102D1E6EC56B7A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
Manifest number: 06F3
Signing time: Mon 02 Mar 2026 13:00:50 +0000
Manifest this update: Mon 02 Mar 2026 13:00:50 +0000
Manifest next update: Tue 03 Mar 2026 13:00:50 +0000
Files and hashes: 1: 6yY6DHXCUp0-mtoCCLRQRpOy0Lg.roa (hash: 2i0eUBbBDwosjWl+pJkRt8nwBhZb81HA+7BnLWvezVQ=)
2: 72o1zQG6O8_8WQS5xWxLLwedUHA.roa (hash: hxPUIpJCQ0HNeMfrnwSBVOj6gd6VpV7h2c++shFRmY4=)
3: dy9i9-iZgXRBGAk19CuCo5mAotw.crl (hash: aYYZicVPpizGVsT1UVhqgNrW7lzsJ0vIndq6aggWVGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:1a:b2:04:9b:19:00:e1:02:d1:e6:ec:56:b7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=772f62f7e899817441180935f42b82a39980a2dc
Validity
Not Before: Mar 2 13:00:50 2026 GMT
Not After : Mar 3 13:00:50 2026 GMT
Subject: CN=84730f0d22339db0477ab75d87fc8f52851194f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:87:cc:12:a2:43:55:5b:1f:02:ae:26:0a:2d:
8b:f1:23:5f:d8:48:60:30:92:ce:34:8f:4c:f6:5d:
5e:6b:1a:0b:fd:d5:78:59:c6:e3:64:03:82:a0:e6:
8a:87:04:40:6a:a6:ec:b6:1f:2c:e8:b1:9d:0f:56:
da:ed:df:74:17:04:a9:59:2a:3c:30:9f:0f:31:e1:
f0:91:99:18:1f:cf:40:19:db:ea:a9:8c:9f:5f:8b:
a5:7f:73:8f:54:f2:34:4b:09:0c:88:cd:d5:0c:1d:
f5:7e:d8:d5:4a:20:9a:47:17:43:db:53:99:fd:65:
6f:ac:61:7f:64:1d:1c:e5:83:25:52:66:37:00:ff:
ac:68:73:6e:19:41:78:f9:6e:0b:66:72:f5:59:a2:
21:e2:15:d0:20:86:89:4f:4d:be:c9:cd:7f:55:3a:
78:0c:1e:0e:16:9b:71:de:5c:a3:26:3b:f7:1d:1b:
a7:06:0c:d4:84:50:cd:fa:ee:e0:54:5e:1c:b0:84:
d9:2a:51:f4:22:42:da:e8:32:9f:09:59:5f:a5:ac:
ac:e0:17:88:21:89:65:1a:e5:19:31:ae:9d:4f:67:
3f:df:bc:4e:8f:cf:2f:1e:c1:fd:fe:b0:ca:03:9d:
50:3d:d8:fc:30:fb:b6:ff:9f:0f:97:c8:26:fe:09:
54:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:73:0F:0D:22:33:9D:B0:47:7A:B7:5D:87:FC:8F:52:85:11:94:F3
X509v3 Authority Key Identifier:
keyid:77:2F:62:F7:E8:99:81:74:41:18:09:35:F4:2B:82:A3:99:80:A2:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dy9i9-iZgXRBGAk19CuCo5mAotw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/150d2b-a088-401d-b559-a061a8c77f16/1/dy9i9-iZgXRBGAk19CuCo5mAotw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:ce:3b:42:97:23:98:9a:64:d2:5d:6b:9a:48:bb:0e:97:15:
62:ff:70:ec:57:5c:f5:e5:06:73:da:d4:26:9e:52:56:72:cf:
77:20:dc:87:e2:67:9a:02:87:71:bc:0b:96:23:6e:63:d1:14:
c1:c5:7e:e4:c6:01:5a:c1:96:c6:39:91:6b:b5:a4:96:14:fc:
f4:ca:59:cd:5e:72:64:29:cf:1e:ea:64:e2:f0:2d:b2:6e:fc:
f3:d1:89:00:7c:9b:45:86:8a:ab:3c:88:43:ab:79:f6:18:be:
8d:e2:96:c2:a3:20:9d:33:40:8f:5a:46:32:d3:ac:fb:99:95:
fc:15:1f:a4:28:32:5c:16:d7:10:e7:a3:b7:d9:72:e5:48:6a:
c3:a2:47:29:4a:2f:ae:b1:6b:d0:5f:7a:c7:69:53:b9:61:7c:
ce:85:1d:af:57:1b:13:9c:b8:7a:f4:cb:cd:20:d6:19:77:4d:
91:f0:8c:12:af:7f:73:2f:66:a4:cd:63:ba:11:51:60:fe:e4:
5a:5a:1a:16:f1:7b:42:ce:c2:a2:61:0b:a7:14:8f:57:57:a9:
34:9e:d4:9c:c9:e1:60:c4:b9:d9:7e:d2:2e:af:54:f7:79:ad:
ec:8b:ed:d6:48:11:21:9b:44:d9:ae:bf:08:b1:75:fd:8b:75:
3b:f9:66:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:10:49 2026 by rpki-client