Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
File: YIYxT4djXnk7wuPbvtZkBbisZ3E.mft (raw, json)
Hash identifier: FTgu1yFH40E+mt+vUEN98tycco6/VUSmaQnQna70hWs=
Subject key identifier: 21:98:33:CD:06:60:26:D5:EC:67:B6:76:A6:8C:74:0B:DC:F6:B6:08
Authority key identifier: 60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
Certificate issuer: /CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Certificate serial: 019D27DF9C84E731A47D966C3BB1D84139C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 02:00:59 +0000
Manifest this update: Thu 26 Mar 2026 02:00:59 +0000
Manifest next update: Fri 27 Mar 2026 02:00:59 +0000
Files and hashes: 1: XXnrfTeMWz5PhgtiK8a4AxaSgho.roa (hash: yESjb+epkWscywuwChkZG1nAsFck4dw/7G4mvFgiS10=)
2: YIYxT4djXnk7wuPbvtZkBbisZ3E.crl (hash: h9DjkxxqswWej3/MstPqKVy2ivaVTJ8qPnPoxiH2HuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:9c:84:e7:31:a4:7d:96:6c:3b:b1:d8:41:39:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Validity
Not Before: Mar 26 02:00:59 2026 GMT
Not After : Mar 27 02:00:59 2026 GMT
Subject: CN=219833cd066026d5ec67b676a68c740bdcf6b608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:30:cc:a3:ba:25:0a:0a:28:6a:0c:0e:e9:5b:
08:47:02:d0:50:11:1b:d8:d6:86:a8:68:3f:d2:03:
2d:da:83:f7:6d:9d:c7:00:5c:12:17:42:99:48:29:
53:a5:6c:43:92:b8:0e:34:90:ef:79:98:07:c8:07:
92:a1:b9:41:7a:b3:c2:20:01:10:76:97:9d:e9:6d:
6b:b4:51:b2:57:b1:0a:6d:33:8e:3f:c7:e4:f9:d2:
b4:52:96:2b:e8:2d:71:e1:cf:25:71:9c:70:ec:50:
51:ac:da:51:84:74:a4:9c:a8:35:41:52:b4:12:26:
e3:29:86:e2:e6:1d:cf:6b:90:69:1b:ba:c7:3b:a4:
ee:57:b0:4a:55:6a:bd:64:2d:93:73:1c:56:e6:95:
d7:88:b6:15:43:ab:6b:d5:fa:47:08:29:96:54:59:
66:cf:84:b7:ed:d6:04:69:a4:ac:9c:fb:52:2a:07:
57:27:60:d4:58:8f:bd:3f:ab:dd:62:e9:56:6e:a6:
9d:0b:d5:90:7b:c5:67:94:49:c0:7e:63:fc:46:b3:
17:a2:c0:77:29:05:69:09:83:ef:0f:68:e3:46:e9:
50:45:94:99:4a:ab:19:92:a9:bf:55:8e:99:6c:b9:
f1:d1:ae:fb:c4:e8:4e:8a:5c:da:68:86:8f:6f:46:
ee:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:98:33:CD:06:60:26:D5:EC:67:B6:76:A6:8C:74:0B:DC:F6:B6:08
X509v3 Authority Key Identifier:
keyid:60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:f5:1c:3c:27:da:f0:1d:e4:1d:4d:2a:57:da:54:fb:6f:62:
52:95:40:40:5a:5c:fd:55:27:41:79:d6:f9:97:ae:05:aa:4c:
72:4b:e2:18:bd:23:1b:14:71:c6:72:d3:e0:8f:8f:7b:55:60:
ca:fc:88:2d:1c:c5:5e:fb:b9:2a:43:d0:f2:20:48:cb:97:cc:
7c:b5:22:f0:27:90:2a:b6:c1:2d:88:26:1e:c1:36:f1:c0:31:
a8:39:9a:d3:8c:d9:c6:eb:df:14:bd:39:97:f1:65:95:54:3e:
17:a7:ee:1e:e4:bc:a4:d9:b0:6e:14:b3:04:47:6f:bd:7f:8f:
5f:56:47:f7:db:cf:b4:d2:8f:c0:14:fe:d8:13:47:75:65:83:
1e:ec:42:74:ba:54:6d:57:63:21:db:f5:5d:85:77:f6:95:f2:
06:0a:0f:08:a8:de:56:e6:b7:07:4e:1f:52:ba:b9:61:b7:74:
40:af:70:dd:12:87:ee:b2:c7:70:b6:35:82:5b:79:d0:05:50:
4f:00:3d:99:d8:e9:80:ca:cf:b2:b1:c9:b2:8e:9b:d2:c3:30:
54:07:57:5e:5f:ad:33:85:f0:e6:80:ec:3e:ea:26:25:34:fc:
56:68:07:dc:f7:41:ff:fc:07:c4:c5:93:3e:91:ce:01:f9:24:
cb:0b:8f:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:51:09 2026 by rpki-client