Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
File: A_P-YHUIK-jliDKbQ9dhv257AdA.mft (raw, json)
Hash identifier: uWzWNpS0RLohnqnPg5XFKC/Z/3vyn/JEgZGKgGSduGQ=
Subject key identifier: E8:E6:CD:26:A4:58:9B:68:89:42:ED:DE:3F:E4:54:16:31:A4:B4:96
Authority key identifier: 03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
Certificate issuer: /CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Certificate serial: 019CAC0F92085A016CA1A758EB8A71533F53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
Manifest number: 0A7A
Signing time: Mon 02 Mar 2026 01:00:27 +0000
Manifest this update: Mon 02 Mar 2026 01:00:27 +0000
Manifest next update: Tue 03 Mar 2026 01:00:27 +0000
Files and hashes: 1: A_P-YHUIK-jliDKbQ9dhv257AdA.crl (hash: kMYeD4BtvH5BGLeGWvu/yjoW+KvKE6nS5VXl0AYxAGc=)
2: y8-TomRf2SfXgjAfIqDbASYx4Kw.roa (hash: uG779XP+SowZScRgyybF2Yr7PqJO6NR4pXnq6h4jggk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:92:08:5a:01:6c:a1:a7:58:eb:8a:71:53:3f:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03f3fe6075082be8e588329b43d761bf6e7b01d0
Validity
Not Before: Mar 2 01:00:27 2026 GMT
Not After : Mar 3 01:00:27 2026 GMT
Subject: CN=e8e6cd26a4589b688942edde3fe4541631a4b496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:7e:26:73:27:d9:79:1c:8c:65:83:86:ad:6a:
70:93:b8:e5:4d:e8:fc:53:9c:b4:eb:cd:58:f2:14:
e9:b4:26:67:f0:40:25:fb:ee:8a:df:9d:85:3f:8c:
c3:5c:cb:4c:0d:d9:e1:b1:f7:c2:7a:41:f4:25:48:
4b:f2:90:8b:e0:4b:a1:20:00:3c:b3:c3:74:2e:4d:
3a:a9:62:a4:15:d4:bd:2a:27:6a:a0:5e:87:18:0f:
1f:5d:24:5f:cf:6b:23:40:18:fa:98:12:39:4f:f1:
17:fc:ca:2a:41:65:ef:5a:15:96:6f:41:a6:46:21:
67:07:f6:bb:99:85:7b:cf:c7:04:94:c9:cb:3b:d4:
a4:07:00:ec:20:5e:9a:b9:e6:5b:e0:47:c3:ef:f8:
e1:3d:eb:5c:bc:1a:2e:0e:52:64:f0:33:32:55:f9:
05:e6:85:44:3f:4e:27:56:07:b1:80:1c:5c:7a:15:
5a:ec:51:98:a3:be:c1:54:56:fb:52:6a:dc:84:c6:
e8:9a:7e:a2:37:fe:94:28:cb:e0:32:0e:39:97:16:
5d:9d:b5:f2:03:e1:55:45:35:1c:05:90:23:ae:a1:
c9:38:be:39:05:4a:6b:b8:43:26:ea:e0:72:8c:d0:
83:dc:07:c5:ab:89:09:bc:b7:05:43:20:d7:f9:21:
65:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E6:CD:26:A4:58:9B:68:89:42:ED:DE:3F:E4:54:16:31:A4:B4:96
X509v3 Authority Key Identifier:
keyid:03:F3:FE:60:75:08:2B:E8:E5:88:32:9B:43:D7:61:BF:6E:7B:01:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A_P-YHUIK-jliDKbQ9dhv257AdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/8bf7ea-883a-4c43-946c-82dafe104bc5/1/A_P-YHUIK-jliDKbQ9dhv257AdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:00:a9:05:44:c9:42:d4:68:23:52:80:68:c9:f5:5f:93:dc:
b7:f2:96:42:20:54:c8:81:38:da:58:e8:b3:a6:3d:3a:98:1b:
8d:5d:4a:25:70:ee:c5:6e:f2:fb:aa:23:17:e1:f7:d7:f0:c8:
6e:b3:d0:19:f8:fd:c9:c3:fb:64:a9:f3:eb:ca:b3:1d:e1:87:
ad:ba:f8:7a:26:9c:e6:56:c2:d3:31:e5:c4:8b:54:64:47:7a:
dd:a1:5a:0d:d5:be:08:27:7d:39:dd:f0:f7:1a:c3:36:49:5f:
09:67:bd:e5:69:32:51:0a:69:29:82:92:8a:80:00:ff:15:fe:
95:46:49:ae:f9:d4:a1:be:f7:09:21:14:eb:98:46:62:73:c1:
00:81:fa:60:5b:3f:aa:1b:06:0a:ee:c8:53:87:79:d9:43:6a:
d9:45:de:de:0e:3f:0c:eb:68:e8:95:37:8f:ce:1d:79:82:30:
31:ff:f4:20:4a:26:69:24:ac:b1:6b:6d:cf:d1:a8:e6:ae:d8:
c1:57:87:db:cd:67:65:87:d3:d5:49:8f:76:d0:db:1b:3f:f1:
2d:d7:51:39:d5:c9:7e:7d:9a:1c:aa:f8:ba:dd:7b:ae:36:35:
3e:4f:33:a9:b2:53:08:37:25:2c:68:55:07:14:fd:c4:81:1c:
b0:a1:e3:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:38:03 2026 by rpki-client