Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
File: y5idLhUgGyDjQIjdHARVslRE-Pw.mft (raw, json)
Hash identifier: cX5XhSZnayCnYl3Gq5b09+DrXkWJTuWQ6R5wdASS8w8=
Subject key identifier: 4E:EA:F1:15:F6:BA:9C:AB:E4:55:E5:9C:75:37:35:AA:3E:39:EC:38
Authority key identifier: CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
Certificate issuer: /CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Certificate serial: 019CADFE330BCCC3C3002D9EB23A3380D558
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
Manifest number: 0E81
Signing time: Mon 02 Mar 2026 10:00:43 +0000
Manifest this update: Mon 02 Mar 2026 10:00:43 +0000
Manifest next update: Tue 03 Mar 2026 10:00:43 +0000
Files and hashes: 1: H7NifDoSU6PPqAYGiGzy4_-XfNw.roa (hash: sk5Lex95/S0IAQQhow818tnsCZwdWLab0EALvw3QhYw=)
2: y5idLhUgGyDjQIjdHARVslRE-Pw.crl (hash: VGvfBPZrgK+KXvGE+9KdQ3Za/wxbsw2HQFsM+q60hUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:33:0b:cc:c3:c3:00:2d:9e:b2:3a:33:80:d5:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Validity
Not Before: Mar 2 10:00:43 2026 GMT
Not After : Mar 3 10:00:43 2026 GMT
Subject: CN=4eeaf115f6ba9cabe455e59c753735aa3e39ec38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fb:b8:7c:58:2e:1b:c4:03:95:79:fd:7a:5d:
c3:9b:1d:f6:16:e3:de:bd:0d:02:70:d8:38:7e:36:
9a:b6:aa:34:28:db:7a:ee:d4:1d:41:95:9a:6c:1a:
cc:07:07:17:44:f2:dc:c1:46:53:25:e4:1c:04:57:
3e:8a:6c:20:4f:64:2a:7b:4c:d8:ca:45:f4:a9:6f:
55:ac:8b:cd:c9:af:c5:ea:f6:ff:c0:8d:f3:df:a5:
5a:3c:34:db:4e:b7:54:21:8b:08:63:f0:e6:4c:21:
e0:4d:29:a3:b1:8f:87:2d:95:bd:44:f4:fc:66:4e:
98:0c:0e:29:df:92:73:0e:fc:ff:47:fe:0f:ac:cd:
cb:d9:bc:0a:65:be:a0:54:44:a7:62:4b:6e:f7:8c:
21:6b:43:37:47:88:6c:9e:97:fd:af:7b:c6:8d:8e:
e2:93:4d:d2:1d:e6:67:2d:21:69:45:eb:5f:3e:ca:
28:ab:a6:e5:1d:8e:41:c5:23:c3:7a:78:8f:67:0b:
83:3e:68:4c:75:2c:25:59:84:cc:7c:26:2d:d0:06:
f9:3e:08:e2:29:98:d9:59:b0:e3:db:97:cc:f3:e5:
85:23:57:c4:77:32:7a:9b:67:cf:4c:ce:c9:ae:34:
a6:28:ae:80:03:d1:b1:fb:d3:e3:11:63:47:0a:82:
d3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EA:F1:15:F6:BA:9C:AB:E4:55:E5:9C:75:37:35:AA:3E:39:EC:38
X509v3 Authority Key Identifier:
keyid:CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:41:3a:84:38:b9:be:d8:6c:b6:b8:ec:8c:31:3d:db:90:b1:
cb:e2:f8:f2:95:6d:8b:bb:31:49:cd:18:9d:3a:62:e2:81:61:
5f:96:ff:92:06:d4:c3:c7:b1:81:35:95:67:54:b7:a2:d0:ed:
3b:4f:6d:e0:c5:d1:f3:8f:dd:2d:3d:d0:7d:c1:31:72:d3:aa:
fb:3a:cc:df:29:b3:94:9d:99:b0:87:0c:9b:dc:73:58:9a:38:
55:9a:e3:b8:d1:4f:74:75:dc:2e:30:49:1c:fd:f4:73:2f:8e:
45:df:70:ae:1f:86:0c:65:f7:5e:cb:4f:f1:d8:df:27:7c:22:
2c:0a:16:f7:00:bd:70:c8:a6:b6:d6:c1:c7:42:c9:7d:c6:01:
ec:f2:9c:e0:32:1b:5c:ab:3d:89:e2:33:73:08:4a:00:26:60:
24:f8:9c:a7:0f:27:57:d2:41:c4:42:f1:0c:0d:ca:ae:6b:62:
84:28:6d:b1:78:98:1d:20:67:14:12:5e:fb:f9:73:30:45:ff:
60:d7:14:63:85:e4:0d:94:4b:ca:e1:6b:a5:b1:ce:57:e9:51:
2e:0a:a4:81:f8:f0:74:02:71:c3:6e:28:fc:a7:a4:a1:05:57:
9c:01:92:84:62:49:6d:63:0f:6c:99:eb:47:8e:9d:36:c4:03:
8f:24:fa:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:16:15 2026 by rpki-client