Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: iEqGk6AvYrv9xV2bsIcgt7ZMp/f9OhqhNKXcfCgdbmk=
Subject key identifier: 76:CF:D0:2B:48:E2:F6:66:10:0C:BE:7C:9A:F5:BC:C3:17:7A:0F:75
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 019D2628078E7283B95F3F5B91ACC5F4983B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 1476
Signing time: Wed 25 Mar 2026 18:00:50 +0000
Manifest this update: Wed 25 Mar 2026 18:00:50 +0000
Manifest next update: Thu 26 Mar 2026 18:00:50 +0000
Files and hashes: 1: 5eILOK-1-Suo2fVqfn_W0lL0-TQ.roa (hash: NzVDzsu+Kq+X+04Ws4gqYwLVPdBaLiyudai4ILZxsxg=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: gS5OFQn21VIKSPETxp1O//X9V73VjuwsxOC57eSrUbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:07:8e:72:83:b9:5f:3f:5b:91:ac:c5:f4:98:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Mar 25 18:00:50 2026 GMT
Not After : Mar 26 18:00:50 2026 GMT
Subject: CN=76cfd02b48e2f666100cbe7c9af5bcc3177a0f75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:99:19:9c:63:8a:ff:1f:b4:0f:b4:aa:71:b6:
9e:01:7f:79:81:c7:cb:88:0d:c5:6c:26:ad:29:53:
a7:d8:6f:17:c7:45:fc:b0:83:b4:83:68:a1:fb:32:
8f:04:a6:f8:cd:28:8e:b1:18:40:49:a1:97:2f:7d:
ca:26:76:52:15:31:05:18:19:40:ea:20:b0:c7:46:
40:92:7e:93:a3:c9:cb:89:bc:80:c1:43:2d:b5:10:
2d:3f:99:14:df:24:43:d0:2c:6a:ed:0e:2c:a5:3f:
cf:36:2f:ad:e5:c1:92:0c:5c:6f:59:88:ad:7c:67:
2b:f4:d3:8a:7a:53:a5:bd:04:0e:a6:9f:7e:23:61:
f4:69:65:06:09:7f:36:eb:7d:1d:27:00:f4:56:a0:
d3:2f:c7:e6:64:a4:ed:31:bf:41:94:e4:32:2a:aa:
9b:6e:3e:a1:de:66:6b:15:92:4f:b7:60:7d:93:5b:
cb:c0:8e:d5:f2:5e:80:e6:09:88:65:9b:95:24:34:
5e:1d:15:05:56:9f:7b:b4:58:43:30:fe:17:30:d6:
b6:bd:dd:61:7f:db:92:d7:5a:e4:80:ff:2c:ae:cb:
95:6c:de:04:12:05:0f:98:3c:20:77:3e:c8:f7:cc:
be:fa:fa:64:43:46:11:72:97:e6:1f:6b:66:1d:3c:
0e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:CF:D0:2B:48:E2:F6:66:10:0C:BE:7C:9A:F5:BC:C3:17:7A:0F:75
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:c6:be:eb:63:54:18:b1:5b:f1:81:a3:50:ab:3b:fb:e7:d2:
c3:0b:fc:f7:56:0f:02:71:bf:df:37:3b:a6:1a:e4:0d:68:35:
64:1a:61:7e:2e:c8:c9:0b:e3:6a:f4:e9:51:10:98:3b:9a:b3:
a1:db:84:cb:f0:78:1e:76:f9:e3:19:8d:79:66:70:e3:65:07:
cd:b2:57:ec:77:d1:b2:4f:eb:67:67:27:23:5d:66:47:54:3e:
87:99:55:9e:51:2e:96:4e:b4:55:93:f4:93:a8:40:9d:b3:18:
b8:b9:61:0e:52:f7:10:51:b2:9d:aa:a6:e5:88:c5:2d:4c:aa:
4e:70:7c:ac:97:76:b6:a0:5a:cb:eb:c9:f3:e4:64:9d:e2:f4:
f6:12:d6:4c:15:45:24:43:3e:ca:52:11:27:f9:11:f1:ac:ba:
e3:be:e4:88:1d:c2:4d:0e:1c:4b:10:80:ae:18:86:29:7f:34:
3e:12:ac:44:83:6b:c2:c9:5f:ed:63:81:6b:53:76:92:89:b9:
d2:bc:a3:9a:b7:ea:8e:eb:74:aa:c9:1d:8e:dc:be:ca:e5:4c:
e2:13:80:60:e0:bb:0f:63:f7:81:7b:36:b9:54:d9:aa:10:d8:
1c:d2:c0:9f:74:a6:a0:fd:e6:01:3e:5b:4d:5c:b5:82:6b:56:
73:6d:23:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:21 2026 by rpki-client