Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
File: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft (raw, json)
Hash identifier: IV9xLHvh77GPXcWUah+pPh2qtVNFsub1pTL2ljhwjZA=
Subject key identifier: 3D:5D:CE:68:0C:AC:CA:C7:80:DC:D4:DF:24:79:6C:31:0A:50:AE:D1
Authority key identifier: C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
Certificate issuer: /CN=c8544c778152f0fd85e5dcb44904f001e5987424
Certificate serial: 019CAB6B66DA8FC3597DF123E96812B556CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
Manifest number: 08F2
Signing time: Sun 01 Mar 2026 22:01:08 +0000
Manifest this update: Sun 01 Mar 2026 22:01:08 +0000
Manifest next update: Mon 02 Mar 2026 22:01:08 +0000
Files and hashes: 1: H1VE2ZkBqR8y9rnIA-ZTuzeFoCk.roa (hash: 3CEpvrN229vRpcqITP4Y01YD4936c1DOC0Lixuq0wEM=)
2: qRXAdJp0xbYo0FT6eucc0rsG8Yw.roa (hash: fUKa/Z+tq+35Z3GUfMU3rii79affOtxwZwlAfn3uJ6U=)
3: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl (hash: bF2TZS/Fs2/Eylg3iNXiAKvXFk63aSPYTrBfx6yKRaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:66:da:8f:c3:59:7d:f1:23:e9:68:12:b5:56:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8544c778152f0fd85e5dcb44904f001e5987424
Validity
Not Before: Mar 1 22:01:08 2026 GMT
Not After : Mar 2 22:01:08 2026 GMT
Subject: CN=3d5dce680caccac780dcd4df24796c310a50aed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:a5:66:c4:60:b5:ae:ae:da:7d:e4:b9:cc:20:
8a:e6:29:3f:0f:e8:31:2a:9b:23:7f:73:c9:e1:a3:
d2:43:31:99:74:cc:84:20:cb:7f:f0:0c:d9:8b:1a:
84:41:66:81:4c:f5:74:42:c9:dd:c9:3e:bc:37:cd:
af:b7:5e:a9:fc:76:08:02:0b:8b:60:cb:f2:cd:d0:
8d:a6:72:84:2b:d5:01:63:1d:be:2c:b2:94:21:38:
b4:c9:98:54:e4:ea:f7:14:51:f8:83:0f:fd:08:d4:
29:eb:a9:45:6a:53:e1:d6:b9:cf:63:53:c6:d0:80:
3a:9e:40:03:45:a5:cb:7a:6b:03:6a:eb:aa:70:39:
1e:d0:cb:19:83:cb:a3:8f:0f:62:7a:a8:b9:b2:e3:
b4:fa:e6:cc:21:1c:9b:09:4d:3c:c0:e5:05:22:18:
89:a1:3d:27:b9:85:91:74:09:16:1a:e6:27:ff:f8:
95:f0:d9:fe:13:52:c5:6e:73:d5:e7:82:b5:b2:6d:
6f:05:86:33:ec:5b:35:c8:76:8c:f6:cf:5a:f5:a0:
68:45:ed:5a:d7:23:04:5c:29:88:73:b6:94:3f:75:
a6:96:fc:98:63:0a:41:f4:70:4f:9f:7c:79:a3:d5:
77:c2:6b:30:c0:0c:bc:dd:54:55:26:a4:04:2d:26:
cb:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:5D:CE:68:0C:AC:CA:C7:80:DC:D4:DF:24:79:6C:31:0A:50:AE:D1
X509v3 Authority Key Identifier:
keyid:C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:78:b2:e2:85:4d:5b:21:3a:fe:10:ad:dc:58:12:65:ee:a7:
a5:68:dc:9e:ee:ed:82:17:31:7b:e1:66:63:2b:83:9e:3e:07:
22:90:95:db:41:39:e1:50:1a:fc:88:5c:e2:3b:64:3f:3e:0b:
a0:63:14:81:4b:a2:02:83:66:16:1b:52:a5:4a:a7:f4:93:7d:
2c:69:0d:63:52:0c:cf:24:22:b9:d0:31:67:89:40:e2:62:98:
66:79:2c:c4:1e:78:0d:9b:cf:71:f4:13:82:8d:c0:a3:60:59:
e9:8f:dd:6e:c6:ab:2f:22:5d:ce:cc:fc:e2:97:88:7a:24:30:
4b:27:d0:34:e8:45:b5:e5:a3:97:29:6a:d2:a3:94:df:58:0a:
fe:9b:f0:2f:e0:96:d8:66:19:20:40:13:73:e6:b6:41:6a:a7:
7e:bd:a8:80:3c:0e:c4:3f:c9:c4:c2:c6:21:c9:11:51:df:80:
64:58:c0:98:e8:f1:ef:14:05:87:bb:7c:06:a6:e2:27:c4:9c:
74:12:c9:14:fc:39:15:b1:c4:be:e9:68:fd:9d:34:93:3b:33:
c8:6c:74:88:de:18:6b:57:44:df:54:23:01:05:db:af:ae:7b:
df:48:eb:6e:4e:7e:e0:82:c9:ad:cd:bc:0b:3e:5d:05:77:77:
40:cd:4f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:59:04 2026 by rpki-client