Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
File: YAJlJf1EpPx1siRPgNAiY09fdjU.mft (raw, json)
Hash identifier: 3lhwoknHx3sYc2NpRFcHYd9u81fRkhr0gt3ILp0yDcg=
Subject key identifier: 0E:96:4A:B2:26:F7:B3:90:A4:4E:C5:F0:63:8B:54:88:14:AE:23:20
Authority key identifier: 60:02:65:25:FD:44:A4:FC:75:B2:24:4F:80:D0:22:63:4F:5F:76:35
Certificate issuer: /CN=60026525fd44a4fc75b2244f80d022634f5f7635
Certificate serial: 019CB05B3CD2C199033F4AC82A100E358AE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
Manifest number: 0241
Signing time: Mon 02 Mar 2026 21:01:35 +0000
Manifest this update: Mon 02 Mar 2026 21:01:35 +0000
Manifest next update: Tue 03 Mar 2026 21:01:35 +0000
Files and hashes: 1: 1sBpsAgGmSmkI2DNNDGh5oQcGy8.roa (hash: hMp3WaNL7UAirQa4ZKu/uxZXkQM56eznsw/jc56uSx4=)
2: YAJlJf1EpPx1siRPgNAiY09fdjU.crl (hash: Sq97Y3qbbuz/CUEQskavvxR/QyF5UPyyUu7b32xMYio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:5b:3c:d2:c1:99:03:3f:4a:c8:2a:10:0e:35:8a:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60026525fd44a4fc75b2244f80d022634f5f7635
Validity
Not Before: Mar 2 21:01:35 2026 GMT
Not After : Mar 3 21:01:35 2026 GMT
Subject: CN=0e964ab226f7b390a44ec5f0638b548814ae2320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:13:11:77:22:80:0f:af:f2:1a:8e:db:fa:8e:
a7:e4:97:4e:31:0c:46:4c:06:29:dd:a9:98:d4:28:
37:1d:70:5c:ec:89:93:52:29:6e:f6:fb:7e:07:62:
ca:15:68:2e:ab:55:0d:9e:29:d1:f6:34:52:0a:ea:
2e:af:2b:4c:47:b1:5f:36:bf:6b:15:3a:b3:2f:94:
7b:f4:de:c7:f2:23:0b:7b:6c:41:c6:e7:3d:68:d3:
55:1f:6f:4f:d3:9a:4a:5f:c7:8a:01:b9:ad:cf:6b:
7b:fe:0c:5f:ac:fa:13:22:68:df:52:21:50:72:58:
3a:b0:5a:ea:00:72:cc:a5:79:91:c2:37:04:f0:15:
d3:d8:0b:f2:7f:03:3a:da:5e:76:f9:26:fb:88:79:
17:8a:ac:c0:f5:e7:96:4a:80:68:39:84:11:f2:79:
9f:91:f4:ca:7b:30:0c:0c:96:80:0a:8b:f6:fb:11:
34:06:c4:df:da:17:81:98:81:aa:93:60:c8:e0:68:
89:24:f7:c0:70:7c:06:55:24:cf:c2:10:13:21:71:
2d:65:7a:ff:6e:87:01:d9:fe:c8:09:3a:4b:fb:ea:
47:1a:6d:c4:8f:2c:08:e7:57:e7:9c:11:7e:54:03:
3c:93:68:9b:47:27:77:d9:10:dc:e2:8b:e2:95:4d:
a5:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:96:4A:B2:26:F7:B3:90:A4:4E:C5:F0:63:8B:54:88:14:AE:23:20
X509v3 Authority Key Identifier:
keyid:60:02:65:25:FD:44:A4:FC:75:B2:24:4F:80:D0:22:63:4F:5F:76:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAJlJf1EpPx1siRPgNAiY09fdjU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/7afb6d-a899-4bd3-8e2c-fa9233535ff1/1/YAJlJf1EpPx1siRPgNAiY09fdjU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:bc:45:b5:c0:ef:cf:22:bd:fe:a7:37:cf:13:d9:00:3f:b7:
86:97:9f:a5:ad:2f:33:1d:e8:52:86:46:61:d7:66:0b:87:57:
d8:be:75:df:60:46:8c:6b:23:b9:69:d9:81:b1:74:ad:39:b6:
b8:27:d7:e6:15:fa:a6:f1:ed:a7:73:4e:57:cc:87:12:8c:b0:
6a:c2:20:e5:ad:4e:e2:18:90:90:44:ee:f1:e4:5c:aa:19:63:
fa:da:de:13:8a:12:b7:66:a0:60:0e:ed:10:fe:ab:68:e5:b2:
0f:55:93:b3:f8:b3:87:5e:93:a3:27:72:0c:8b:c4:43:c5:72:
c8:d4:49:52:b0:2a:c3:ad:dc:9a:8b:f6:8a:a8:b3:99:06:74:
49:46:9a:10:1c:02:02:0b:a4:18:86:01:23:d3:22:24:e5:44:
eb:0c:f6:53:68:c4:da:ec:11:7d:ae:a7:8d:4a:f9:28:d6:49:
c0:be:e8:b0:e2:91:e8:34:b4:81:02:eb:ae:c3:9f:dc:dc:b1:
a7:5c:19:14:57:63:cb:a9:34:b7:5d:57:a0:15:ec:1d:92:87:
ef:fb:25:a8:ab:43:24:08:ea:8c:ed:6c:17:2c:36:74:4f:cd:
57:25:f2:2b:20:df:5d:50:e5:7d:ab:70:a2:3e:80:24:27:f9:
e3:4a:51:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 23:24:05 2026 by rpki-client