Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
File: yu79CETrE5qyH4DUByzguO3MBrU.mft (raw, json)
Hash identifier: xPBlL3KJtzLs+zo6Kd8to/iOFeL5vh3KpoqSmRafk6U=
Subject key identifier: 4D:11:CD:7D:F0:44:6A:50:40:8B:AC:65:E5:C0:16:AD:4B:08:B1:D3
Authority key identifier: CA:EE:FD:08:44:EB:13:9A:B2:1F:80:D4:07:2C:E0:B8:ED:CC:06:B5
Certificate issuer: /CN=caeefd0844eb139ab21f80d4072ce0b8edcc06b5
Certificate serial: 019CACB53B4E4B08845877C0B8D3FDE68428
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
Manifest number: 0498
Signing time: Mon 02 Mar 2026 04:01:24 +0000
Manifest this update: Mon 02 Mar 2026 04:01:24 +0000
Manifest next update: Tue 03 Mar 2026 04:01:24 +0000
Files and hashes: 1: LJiVGCgYbyx1YrovDxbErOmKKZE.roa (hash: 36LJeXEZNvyiVyB06FojXdU1rTulFSqDFXw050tNGLw=)
2: yu79CETrE5qyH4DUByzguO3MBrU.crl (hash: C/lSi6LyyXpUCQ5i5cOSUKZSFpCzbFES9t7se9gu1l8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:3b:4e:4b:08:84:58:77:c0:b8:d3:fd:e6:84:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caeefd0844eb139ab21f80d4072ce0b8edcc06b5
Validity
Not Before: Mar 2 04:01:24 2026 GMT
Not After : Mar 3 04:01:24 2026 GMT
Subject: CN=4d11cd7df0446a50408bac65e5c016ad4b08b1d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fa:af:94:52:e8:43:17:c5:bd:ed:f8:18:b5:
04:92:c0:21:6f:dc:f9:d8:1b:39:38:28:d9:0b:7d:
63:ff:ec:f1:35:78:57:f0:ba:14:6b:09:09:84:fe:
7b:d7:e3:09:b8:4c:75:83:a9:75:92:fb:f0:99:d0:
86:e2:a8:51:49:6f:d1:16:74:58:ec:70:d1:66:47:
66:a7:45:8f:6e:7f:c8:e1:41:dc:25:31:b5:d0:95:
07:85:0c:34:fb:41:96:d9:e3:cc:03:14:80:68:34:
eb:3e:c4:a0:c1:22:8c:a6:06:4a:1b:30:63:bd:37:
da:1c:be:f9:32:e0:02:1a:2a:38:2c:cb:e5:8e:3d:
78:bf:5f:08:e6:9d:fc:17:04:3f:c7:97:1e:6d:cf:
52:24:a5:9b:ce:07:b0:b8:7a:63:47:aa:06:23:3f:
ae:f6:4b:62:e3:c3:67:3c:09:2a:8e:b8:1c:7d:32:
73:99:0e:9f:34:81:bc:c2:d1:70:d2:15:81:4a:3e:
97:db:11:a0:f8:96:01:45:21:a1:5f:96:5c:a9:7d:
ab:e1:8f:ac:47:37:ca:b9:2d:ac:52:c0:aa:93:26:
66:2d:5b:80:7c:4e:c9:67:4f:8b:ac:94:a4:ac:5c:
f6:fb:55:9b:10:c6:45:14:f9:79:38:a7:12:f2:8d:
ee:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:11:CD:7D:F0:44:6A:50:40:8B:AC:65:E5:C0:16:AD:4B:08:B1:D3
X509v3 Authority Key Identifier:
keyid:CA:EE:FD:08:44:EB:13:9A:B2:1F:80:D4:07:2C:E0:B8:ED:CC:06:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yu79CETrE5qyH4DUByzguO3MBrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/7f569f-cc3c-429e-bd1d-b4b97f11c3dd/1/yu79CETrE5qyH4DUByzguO3MBrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cb:96:80:81:95:b0:65:83:41:63:64:d9:6c:ae:21:96:31:e8:
4e:77:e8:62:9e:2d:b2:af:e5:52:f2:c3:41:e9:e6:20:51:56:
ed:3a:9c:e2:c6:13:10:ec:9d:55:8a:99:8a:98:f6:d1:96:e3:
3b:7f:4c:03:01:1f:f2:46:33:bb:fc:f2:71:2e:bd:d4:71:bc:
81:3f:ce:1b:94:7c:a4:96:bb:f8:e9:68:f5:68:b1:2e:44:68:
50:57:e0:a6:c0:2a:9d:2c:b0:de:b3:d1:56:a6:fe:01:f1:49:
c8:eb:cf:7d:73:ed:8e:d3:82:61:a7:57:91:48:97:e1:82:71:
3e:75:f8:4b:ca:bb:ef:8f:eb:4c:73:81:eb:93:f8:aa:62:b9:
48:c4:f8:b5:96:c4:07:ad:0a:ae:c8:41:33:4c:aa:0b:6d:88:
b4:ce:57:40:ca:0a:95:f1:58:80:71:0c:a0:fd:66:03:91:99:
af:c2:1e:59:06:e5:0b:15:91:71:9f:72:43:ac:c8:4c:30:77:
91:ee:1b:8f:30:1c:4a:a5:30:c9:9b:b0:5f:d9:9c:a7:19:f1:
9a:05:2d:92:f3:cf:5e:9b:40:19:9c:5e:fd:73:ae:2e:dc:c0:
d1:f7:dc:dd:54:d2:50:2e:5c:ea:9d:41:64:dd:0d:32:a0:6b:
17:67:54:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:01:42 2026 by rpki-client