Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
File: yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft (raw, json)
Hash identifier: OXC1aZ5EV42QLsq3uVKymqsTJjnor2G3oo3PKi6ofuU=
Subject key identifier: 93:C5:2B:09:17:69:38:38:CB:78:F8:D4:3D:C5:34:80:2C:A1:8C:67
Authority key identifier: C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
Certificate issuer: /CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Certificate serial: 019CAA8FAAD08C68E568DE4A6E56F874A9E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 18:01:07 +0000
Manifest this update: Sun 01 Mar 2026 18:01:07 +0000
Manifest next update: Mon 02 Mar 2026 18:01:07 +0000
Files and hashes: 1: Y7bdVsOqZQqj1I_OKBkoS9oMFd0.roa (hash: uxAajtv2PDYgeD7fkffrgQE1gHL9LPe5ZmBXFSGnqgI=)
2: yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl (hash: c3PlajhUth6RRsf0IIEaTNji1bjCwIv2EhK2lUGr8T8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:aa:d0:8c:68:e5:68:de:4a:6e:56:f8:74:a9:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Validity
Not Before: Mar 1 18:01:07 2026 GMT
Not After : Mar 2 18:01:07 2026 GMT
Subject: CN=93c52b0917693838cb78f8d43dc534802ca18c67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:74:22:aa:24:59:ef:26:80:16:31:9f:1f:14:
41:d9:bf:dc:d7:be:29:78:0f:59:b5:7c:c4:7f:4f:
91:8f:0b:c8:14:ce:6f:22:2f:b6:24:72:e3:49:73:
da:fe:c4:de:5d:39:20:27:11:41:7f:7c:02:4b:b4:
72:b4:ad:0f:4b:19:ca:b7:ed:fb:b2:9b:13:a2:9d:
57:6c:51:f8:37:ed:bf:c5:74:9d:ac:fa:45:d9:d0:
22:ba:5b:bd:2f:c0:1a:d9:2d:09:47:e2:2a:a4:92:
63:b0:17:f9:72:54:24:e2:3e:93:2d:a3:82:89:e4:
db:e5:bb:e6:15:9f:35:25:26:59:42:1f:77:de:d4:
fe:6d:09:84:58:bd:32:35:79:60:73:a2:ec:1b:1f:
23:c9:9f:af:03:2a:6c:ae:b9:f5:4d:8c:65:c6:92:
4e:87:3c:d1:4e:34:a5:c3:32:6d:26:11:a3:5f:ff:
cf:b9:5e:52:ec:10:36:d2:1b:5a:67:cd:a6:33:f7:
89:e0:05:a5:cd:8b:ab:c4:bb:78:e8:ea:4b:8e:85:
23:f2:05:63:55:78:f0:67:27:ed:ea:40:29:51:8b:
61:6b:4f:02:b5:81:7c:74:48:5f:a9:c7:31:72:10:
41:82:55:03:79:34:5c:f1:9f:6d:de:ce:8b:92:68:
41:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:C5:2B:09:17:69:38:38:CB:78:F8:D4:3D:C5:34:80:2C:A1:8C:67
X509v3 Authority Key Identifier:
keyid:C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:65:cd:8c:6f:fb:dd:88:7f:1f:e4:91:f8:5e:14:3a:bd:d1:
34:b0:dc:83:bf:8f:81:41:46:87:4c:83:48:21:7e:d6:bf:a3:
78:a6:b3:74:e9:f8:39:aa:35:f9:ee:08:27:a8:9b:c0:2c:a8:
8c:bf:1e:6c:04:63:20:15:37:cb:04:98:8c:56:0c:07:05:11:
94:4a:c8:a3:b5:3d:79:1e:6f:d8:f4:89:b7:69:b6:af:fb:09:
34:f4:cc:48:b8:38:6b:b2:b3:8d:1d:fc:f6:4d:ef:cb:83:50:
e7:8c:a0:03:ce:8f:8d:37:e0:fe:e9:e1:6f:0f:fc:74:00:cb:
b8:6f:6a:71:95:eb:7f:51:7c:f8:be:6c:b1:a9:14:1d:cd:2e:
12:7f:61:ac:4b:4d:d1:97:b9:48:3b:e3:26:68:ba:70:13:fe:
3f:fd:a5:c7:ed:0c:6c:35:39:da:31:7e:73:52:1e:2c:c3:9d:
da:85:b1:63:2c:91:84:5f:ab:e5:fc:3b:42:4c:2e:7a:27:dd:
74:86:3b:fc:a7:82:6c:e6:15:a0:38:33:59:66:eb:6c:a0:29:
93:4a:51:24:ac:47:a3:d3:89:b0:f0:da:a5:57:bb:cd:87:f9:
d7:43:1f:02:3d:e1:5a:a4:92:fc:e5:a4:d7:9d:5e:eb:b3:b8:
51:45:f1:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:07:31 2026 by rpki-client