Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
File: yniqfjFrIfhDz7lYEMaAzdv6bm8.mft (raw, json)
Hash identifier: y/4k649TP+c1GG1dWIONoNvDMOAkGZqkIgtXTpn9jvE=
Subject key identifier: B7:C9:6C:14:AB:7A:90:EA:41:A3:FD:AC:78:AE:81:03:AE:39:EB:15
Authority key identifier: CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
Certificate issuer: /CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Certificate serial: 019CAD2310514DD94F47F03DF594D965A1A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
Manifest number: 0598
Signing time: Mon 02 Mar 2026 06:01:22 +0000
Manifest this update: Mon 02 Mar 2026 06:01:22 +0000
Manifest next update: Tue 03 Mar 2026 06:01:22 +0000
Files and hashes: 1: NmILLaZO13ylxBiJtXCUuUjLxwc.roa (hash: ouwe61Qw3KErUT8wYroof+WiBVltIWBJpKDg8a/XyWg=)
2: yniqfjFrIfhDz7lYEMaAzdv6bm8.crl (hash: V2D1yifovTOO23t8CvnSpYey0Z1FbREnm1E4ie1j8J4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:23:10:51:4d:d9:4f:47:f0:3d:f5:94:d9:65:a1:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Validity
Not Before: Mar 2 06:01:22 2026 GMT
Not After : Mar 3 06:01:22 2026 GMT
Subject: CN=b7c96c14ab7a90ea41a3fdac78ae8103ae39eb15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:e7:b5:4c:46:35:dc:e6:11:f5:9c:a6:6b:5d:
2f:64:97:6e:ff:47:2b:fa:07:2e:55:52:f9:77:aa:
b6:aa:7a:e1:c1:5b:93:02:0d:f5:fa:5d:ac:4c:b2:
25:32:6e:b2:23:77:6b:52:8e:35:0c:30:1f:ab:b8:
60:52:87:a3:7f:46:ea:27:1a:d1:ab:66:64:36:03:
f4:fe:44:63:a7:9c:db:c3:81:b7:24:b5:1d:9f:77:
94:af:aa:bb:cd:a6:16:7e:d8:5c:cc:c8:a5:40:b5:
26:b4:be:34:5c:c3:98:09:6e:e8:96:00:a9:cb:08:
11:b4:32:ce:54:56:07:57:d8:c5:3d:76:72:b1:59:
14:dd:87:c9:a6:0a:ce:e6:ba:f3:61:39:b4:a8:0f:
8a:f9:d0:26:f1:26:00:69:a0:da:7b:4c:4a:3a:e6:
73:b8:d7:fb:8e:66:26:e9:4a:95:03:6e:ba:74:3c:
f0:88:8f:8f:9c:82:9e:16:02:66:4f:75:67:a3:89:
85:b1:21:2c:3d:b1:a1:58:db:cc:3f:82:e8:34:9d:
2c:a8:6d:a1:2a:8c:ec:05:9b:b8:c5:6c:aa:07:49:
ad:eb:7e:19:c9:30:bd:79:1f:aa:d2:1d:8b:ae:6b:
13:99:e3:d7:f7:43:f5:4a:35:c0:47:4e:b0:cd:33:
f2:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:C9:6C:14:AB:7A:90:EA:41:A3:FD:AC:78:AE:81:03:AE:39:EB:15
X509v3 Authority Key Identifier:
keyid:CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:31:37:a2:28:65:60:69:a9:85:be:85:c3:53:bd:e1:04:3d:
37:4f:b5:ac:b9:3c:12:c1:20:b8:b9:62:e1:1e:27:ee:7c:2e:
3d:55:c1:2a:f9:40:c3:bd:91:83:dc:2c:4a:6b:60:b7:fe:0c:
7f:b0:c0:31:43:63:57:e1:b6:87:6f:22:63:ad:94:62:d2:33:
7d:0c:28:3c:97:b5:9b:68:64:19:84:c4:cb:a0:e9:00:94:86:
fc:81:48:a6:66:2e:a6:e8:c0:f5:ca:d5:c7:f1:dc:6b:14:d5:
9c:02:15:20:ba:1e:c2:9b:48:1b:76:d8:70:fa:19:95:9e:8f:
e1:1a:f0:ea:bd:48:10:aa:b3:32:02:38:59:92:f7:1a:24:7b:
1e:79:a2:41:e6:89:77:70:e7:54:1f:c9:10:4e:73:b4:91:52:
3f:cd:4d:60:0c:23:e2:56:a1:8c:5a:f3:d2:44:7d:ee:a4:7c:
e2:84:e6:63:c6:76:1c:2b:11:5e:e5:b5:e3:0a:91:21:5e:ea:
21:01:88:f3:ab:eb:56:57:69:51:69:4f:88:69:65:45:ed:3b:
52:03:79:a8:6f:5d:98:25:51:8c:3b:78:8b:78:54:a3:02:27:
c4:12:87:f6:79:66:8c:b9:3d:6b:c8:f5:55:48:1d:b4:a1:42:
fe:ae:29:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:16:50 2026 by rpki-client