Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
File: YG03z4fxLyqy3vMTgMOGuCbBnWU.mft (raw, json)
Hash identifier: 0gAA48nPdG/7hcL3G5pjpcSL9y4nSvDS937lgo6MDgc=
Subject key identifier: F9:C0:81:40:25:69:08:A0:41:D0:93:27:28:26:17:89:12:87:C2:07
Authority key identifier: 60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
Certificate issuer: /CN=606d37cf87f12f2ab2def31380c386b826c19d65
Certificate serial: 019D29CE77B44F63E066D478A3E2926A3EE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
Manifest number: 1884
Signing time: Thu 26 Mar 2026 11:01:29 +0000
Manifest this update: Thu 26 Mar 2026 11:01:29 +0000
Manifest next update: Fri 27 Mar 2026 11:01:29 +0000
Files and hashes: 1: YG03z4fxLyqy3vMTgMOGuCbBnWU.crl (hash: mXi1kClbb3KZoFG3BIaNC/dJWImKI1Tp3pzF6bhR9Wk=)
2: nYvqn5kV5F9eabpIomemvJsL_Qg.roa (hash: V5VSGZcEQmaqLWAdKNhlKguBGH4P4kr/kPeIkQ2hxfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:77:b4:4f:63:e0:66:d4:78:a3:e2:92:6a:3e:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606d37cf87f12f2ab2def31380c386b826c19d65
Validity
Not Before: Mar 26 11:01:29 2026 GMT
Not After : Mar 27 11:01:29 2026 GMT
Subject: CN=f9c08140256908a041d09327282617891287c207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e9:32:0b:4b:bd:0c:30:d3:33:1b:ff:49:9d:
88:c1:41:50:7d:14:d7:b5:f3:7a:de:cb:68:d8:ab:
14:75:66:f6:66:14:87:45:63:9a:9b:b8:c1:db:30:
84:54:e7:ee:5f:b5:ac:bf:ad:5b:87:76:92:76:19:
e7:ee:ee:1b:13:7b:56:9f:45:ed:62:bd:2e:3f:e7:
8f:52:bc:4b:6e:2d:cf:a2:83:8d:78:4a:96:81:9a:
e3:02:9e:24:02:03:74:03:d8:50:ee:7c:f3:01:ab:
68:f9:da:76:ac:4e:b1:07:b0:9f:a5:b1:30:06:2b:
6a:95:45:e9:e2:34:dd:8a:16:e9:d3:cc:6b:ce:b9:
9b:7b:f3:90:8e:d2:7f:06:b3:3e:e6:56:83:4f:d0:
77:60:50:5b:42:41:97:c3:cf:7c:e9:bc:85:06:84:
a5:59:bf:93:b3:b3:bc:63:0a:56:58:f9:34:c1:33:
00:aa:d1:05:66:a5:dd:47:3b:5c:d8:77:16:4c:4b:
03:dc:87:08:2e:bc:e6:12:3e:1b:52:5a:f6:0d:6c:
39:0b:5f:24:74:ea:14:ad:b1:ba:2f:56:ee:f1:12:
48:e4:28:a0:2a:aa:9d:b2:4b:cc:36:3d:a8:1b:df:
a7:8f:f0:fe:91:87:fd:a9:34:4c:05:39:5d:be:93:
ed:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:C0:81:40:25:69:08:A0:41:D0:93:27:28:26:17:89:12:87:C2:07
X509v3 Authority Key Identifier:
keyid:60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:bb:10:00:f3:9b:3c:02:66:24:60:d7:d4:35:46:49:53:13:
8a:42:10:e0:7d:0c:58:07:af:5d:b2:df:29:c3:3d:eb:e3:5c:
21:f1:1a:48:eb:96:81:41:c7:84:6c:fb:82:fb:19:bb:9f:77:
11:ec:01:d3:7c:ba:26:39:56:63:04:40:2d:45:43:56:9c:31:
77:94:92:90:0a:06:cc:da:9a:af:53:47:ab:fa:83:5e:35:36:
5c:4e:85:3c:58:19:f8:04:c3:73:7f:d0:db:a7:8c:e1:b7:c8:
75:3f:d6:69:e8:57:76:2f:fa:5a:07:2f:1a:5d:63:99:6c:53:
10:46:12:8b:db:43:87:7c:61:47:aa:f4:b2:bc:48:82:1f:de:
7e:23:97:a9:ef:e3:a5:ad:d7:b6:46:eb:8b:39:6c:04:a3:fa:
db:b4:3f:b4:b0:71:18:28:d7:39:c1:0f:74:e6:c2:0a:35:f6:
63:1e:b8:59:d0:b0:fb:6e:28:38:ff:36:cc:14:99:3f:68:05:
c8:3e:43:01:9c:c1:42:f1:cd:53:5e:f0:eb:c4:ec:71:be:20:
9b:c4:21:5b:9b:6c:f4:d7:4b:79:5f:25:b2:a2:7d:8d:40:2f:
0d:01:6e:3f:b0:5f:10:4f:3d:7c:70:db:e2:a3:77:a5:62:62:
b0:63:bc:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:55:08 2026 by rpki-client