Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
File: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft (raw, json)
Hash identifier: l/2cp5u0LtTYOORrUCMcu6+oqjOWrhG+aLXhPfPMxc0=
Subject key identifier: 70:CB:8B:2F:B9:C8:01:9A:F0:33:83:20:F3:0E:87:7C:83:08:65:01
Authority key identifier: A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
Certificate issuer: /CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Certificate serial: 019CAAFD70ABEFA17F379DD994D8D2A18F84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 20:01:01 +0000
Manifest this update: Sun 01 Mar 2026 20:01:01 +0000
Manifest next update: Mon 02 Mar 2026 20:01:01 +0000
Files and hashes: 1: pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl (hash: 3Gw8+DmFotHPnjySVXBlNsmJGRZsXSvbCZ/g+5fSQZ0=)
2: vagnBvJ7GZHzOrybHsBa0u1gBGs.roa (hash: AHj1V+feefzLimbaTSC6tcBNqcISih6luVdAk+cmYzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:70:ab:ef:a1:7f:37:9d:d9:94:d8:d2:a1:8f:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a585e5e15aa34287cae4368cb58e7227fd87ecba
Validity
Not Before: Mar 1 20:01:01 2026 GMT
Not After : Mar 2 20:01:01 2026 GMT
Subject: CN=70cb8b2fb9c8019af0338320f30e877c83086501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ba:7d:b3:14:82:4d:63:57:d9:9e:52:a4:69:
c2:69:42:98:80:bd:e2:a8:77:d0:6a:d4:d3:e0:4d:
61:3d:d9:42:b6:39:05:00:fb:a4:ad:40:be:99:26:
43:ba:ed:59:3e:89:9a:97:3c:a9:d0:5a:5a:bb:55:
c0:ec:24:73:56:7a:7b:1d:a3:7e:1e:84:50:39:79:
a0:52:ef:d7:62:12:f8:3e:31:32:1b:c8:08:77:09:
a8:35:da:c9:30:91:78:14:ba:08:b6:4f:89:d4:5a:
3c:b8:86:cc:26:f4:07:35:be:f5:d3:f2:56:f1:21:
b8:d8:fe:56:ba:56:e3:40:57:60:3a:14:dd:ee:67:
db:aa:d5:69:78:7b:91:7f:5f:9d:7f:a2:4c:52:f5:
0a:4d:df:9d:98:28:8f:7e:3d:96:17:6f:1a:61:c6:
34:af:33:72:42:d1:05:6a:e7:39:66:86:3f:2b:ba:
1f:34:f3:52:3b:c3:6c:fe:37:c2:65:08:ff:a7:ab:
48:3b:7c:93:fd:df:15:be:5d:4d:1f:7f:47:db:e5:
79:39:85:51:55:27:c2:07:72:2b:73:ba:43:4c:07:
81:07:87:d3:bc:e6:d0:12:8b:93:3b:24:b3:c8:14:
44:bb:92:58:b7:53:70:65:5e:fa:d9:95:fe:af:21:
e1:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:CB:8B:2F:B9:C8:01:9A:F0:33:83:20:F3:0E:87:7C:83:08:65:01
X509v3 Authority Key Identifier:
keyid:A5:85:E5:E1:5A:A3:42:87:CA:E4:36:8C:B5:8E:72:27:FD:87:EC:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/066509-7a91-45f9-9e18-a9e7b343bc66/1/pYXl4VqjQofK5DaMtY5yJ_2H7Lo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:fb:17:d7:44:38:05:74:85:fa:af:c7:d3:9f:5a:20:4f:50:
3c:5a:86:ff:9f:0c:77:d0:30:65:3c:e1:b5:5e:e8:4e:43:bb:
1f:aa:4f:70:99:5e:43:e7:c0:95:a3:e2:dc:8b:8a:e0:51:b3:
9e:cb:b2:7d:da:62:19:a8:3a:49:ca:03:53:e9:f5:c1:9f:55:
0b:b3:43:2d:22:85:ac:27:02:2e:16:d4:49:c6:3d:0d:fb:3b:
88:03:fa:ee:a8:f8:b8:f5:3e:d3:05:5d:03:47:0d:d4:d1:0e:
59:8f:8c:c2:aa:c9:8d:7d:4d:75:4a:32:df:5e:5d:fb:d5:42:
e3:56:47:56:e0:77:9a:4c:ad:bb:ed:4a:b3:0f:42:45:8e:57:
4d:62:81:8c:20:fc:9e:b2:c3:1e:fa:b7:e9:ad:81:e6:3d:62:
32:42:13:a6:f8:52:c6:c1:55:6a:61:97:be:b8:e0:f2:3d:bc:
59:dd:11:33:c0:9c:68:9e:40:d7:b0:dd:a1:e5:4b:55:6f:97:
70:9c:2e:9f:06:2c:af:03:ab:2e:7d:e9:ad:b6:1c:08:b6:e6:
fa:3d:57:8c:42:4a:5c:f4:2f:18:16:88:8d:fa:bf:1b:c6:14:
5a:63:a9:9e:4d:2c:d0:6a:b8:43:1d:7a:56:91:95:d4:5e:9e:
92:4a:de:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:15:22 2026 by rpki-client