Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.mft
File: mY3mCoZ7SdsppifG99IjomajIqk.mft (raw, json)
Hash identifier: S1uomQW8BcwRdNMdIaFmMbrvD1peiHtGXAwt2jQLD34=
Subject key identifier: 60:99:BF:9E:EB:D3:AF:80:16:0B:E3:5E:9D:AE:9B:1F:DB:15:72:83
Authority key identifier: 99:8D:E6:0A:86:7B:49:DB:29:A6:27:C6:F7:D2:23:A2:66:A3:22:A9
Certificate issuer: /CN=998de60a867b49db29a627c6f7d223a266a322a9
Certificate serial: 019CAA8FE5AD9ADA416A8C154ACF6EDD774A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mY3mCoZ7SdsppifG99IjomajIqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.mft
Manifest number: 0100
Signing time: Sun 01 Mar 2026 18:01:22 +0000
Manifest this update: Sun 01 Mar 2026 18:01:22 +0000
Manifest next update: Mon 02 Mar 2026 18:01:22 +0000
Files and hashes: 1: UXW4TwBbqAg2KVwromTqDGJrE20.roa (hash: iC2l8xQ6yq60AZmCDOxhtpG1B+XfVb2gALUB/AI2BAQ=)
2: mY3mCoZ7SdsppifG99IjomajIqk.crl (hash: kW1hFkCAY6x0aok9lC+q6wElQU0HDAGvRCwcwhCP8JQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.mft
rsync://rpki.ripe.net/repository/DEFAULT/mY3mCoZ7SdsppifG99IjomajIqk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:e5:ad:9a:da:41:6a:8c:15:4a:cf:6e:dd:77:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=998de60a867b49db29a627c6f7d223a266a322a9
Validity
Not Before: Mar 1 18:01:22 2026 GMT
Not After : Mar 2 18:01:22 2026 GMT
Subject: CN=6099bf9eebd3af80160be35e9dae9b1fdb157283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:40:fd:89:6e:3e:a9:ea:d6:4b:42:aa:67:61:
dc:d7:6c:2b:70:e9:95:fc:72:13:6c:ef:43:0f:10:
3d:98:23:37:f6:82:52:60:72:29:07:60:60:28:4d:
ad:68:4e:80:4c:4d:08:e4:c7:33:a5:c0:bb:c7:69:
71:67:e4:f3:e1:9e:ea:54:fb:43:a6:4f:a8:02:c0:
73:54:73:42:e0:63:49:ce:96:15:92:cb:e7:f1:16:
08:08:b0:f6:25:8a:ec:9d:68:e3:41:a3:78:99:86:
d1:01:38:56:36:b8:9f:14:3b:d6:51:2d:f0:64:54:
5b:ee:67:d1:51:cf:5e:25:11:f3:98:e9:63:61:1a:
83:39:cb:21:e9:8d:49:66:21:05:9b:e8:b6:3f:77:
2f:2f:b1:82:bd:d8:99:33:ef:01:32:81:c2:6e:1a:
b3:a0:f1:11:77:f4:4f:4e:d6:6f:02:55:aa:bb:a9:
02:74:8b:9d:c9:e9:43:d2:e0:88:d8:2b:4e:ec:e2:
78:26:e0:96:29:bf:68:38:14:db:95:38:c6:48:ef:
41:b5:4c:21:f5:7a:9b:d9:93:e5:c9:be:71:62:6a:
8f:16:0b:44:fe:05:9d:22:17:e5:0c:e2:22:2a:0e:
35:b6:fc:33:87:38:cc:d2:df:6f:48:69:ee:89:fb:
b5:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:99:BF:9E:EB:D3:AF:80:16:0B:E3:5E:9D:AE:9B:1F:DB:15:72:83
X509v3 Authority Key Identifier:
keyid:99:8D:E6:0A:86:7B:49:DB:29:A6:27:C6:F7:D2:23:A2:66:A3:22:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mY3mCoZ7SdsppifG99IjomajIqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/de171b-5b3c-4b76-b065-20d34e18e270/1/mY3mCoZ7SdsppifG99IjomajIqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:16:1b:ed:f8:10:3c:c4:28:01:78:fa:0b:61:d3:f2:72:44:
4a:9b:c7:d2:60:b4:c4:90:5c:cf:bd:40:13:ec:fc:5f:91:99:
4c:47:31:72:0c:29:53:c2:5b:60:a4:04:8e:8e:57:12:e3:01:
7a:c4:58:ea:7a:11:f9:8f:ea:dd:43:12:aa:0a:4f:f1:2f:e9:
54:7b:2e:a2:c9:53:b8:5e:3d:c1:c6:36:e4:3b:db:06:89:52:
70:c6:87:a2:10:4d:31:53:73:70:5d:09:26:71:cc:89:de:83:
2e:14:e9:0a:d3:06:a2:41:7b:e0:54:88:5d:ca:21:3c:48:5c:
0a:4d:43:8a:36:bd:1d:ac:0b:bc:c2:63:a5:ec:2c:97:1f:d4:
c6:06:22:86:e4:7d:7d:e7:14:86:fc:25:d8:8e:29:c2:ae:a7:
e1:a2:71:72:92:dc:ba:59:33:d2:33:18:28:b3:2a:d7:b8:52:
ce:e9:8b:ac:67:2b:e2:e5:62:0b:f0:ef:73:eb:3b:cd:ff:71:
79:a6:9b:2c:41:5e:de:bf:d3:c8:18:ee:cf:ed:d6:e1:92:98:
31:cc:00:b9:64:9a:6e:fa:6f:61:f5:ce:e9:fa:c1:8b:26:fd:
b1:ca:3e:65:48:95:00:cf:30:83:c4:ad:8c:60:e3:b8:6f:61:
ef:e4:90:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:30:41 2026 by rpki-client