Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json)
Hash identifier: NMxHQWaU8CxuqbioP3InGDgA5iopTpdsp9fs0iKj1Ns=
Subject key identifier: 2D:1F:C7:F8:DD:A4:1B:81:BD:CA:B8:A1:ED:E4:C8:11:E8:EB:5B:6E
Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Certificate serial: 019D284DC58688FF84F760973CF9D8C9193D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 04:01:18 +0000
Manifest this update: Thu 26 Mar 2026 04:01:18 +0000
Manifest next update: Fri 27 Mar 2026 04:01:18 +0000
Files and hashes: 1: X2IqazocGBh2TzPpbjgU543EV3k.roa (hash: bpCuK7CG9CoRNnFqOKdhYMABq2l/U8E9Zuo+llQrjU0=)
2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: NZ8M+ck9o3/vBYR0g8eq6ArrSgVXiFMzTSNlD0Klxck=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:c5:86:88:ff:84:f7:60:97:3c:f9:d8:c9:19:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Validity
Not Before: Mar 26 04:01:18 2026 GMT
Not After : Mar 27 04:01:18 2026 GMT
Subject: CN=2d1fc7f8dda41b81bdcab8a1ede4c811e8eb5b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:4d:ee:73:87:c3:33:08:b7:f7:1b:43:b7:45:
3e:88:c3:8f:e2:d9:14:2d:96:b7:c1:67:0a:9f:71:
3c:e5:4a:5b:62:f3:34:d8:0d:1d:a9:02:f2:4b:f7:
12:7e:5d:ba:8f:8a:ae:d6:50:14:85:d2:62:43:79:
da:92:67:bd:1c:e7:5e:68:23:62:1b:16:fe:d4:96:
90:24:a8:6e:5b:6d:5a:8f:17:fe:ce:5f:82:b3:d0:
37:df:05:06:17:52:95:b5:f0:41:d5:fe:00:67:c4:
2e:0f:77:b4:63:37:7e:89:82:77:7a:1b:6c:4f:2e:
d1:cc:78:48:0e:8e:7a:b0:08:d3:15:bb:b8:78:e0:
0b:28:16:03:a3:17:01:71:5b:f1:54:69:0a:32:1d:
a8:f5:4b:58:76:3a:1d:40:75:e5:e7:da:5d:21:c3:
60:75:b1:dd:66:fc:ba:b6:52:ca:ff:91:c6:63:8d:
1e:b5:bf:69:7a:fc:dc:55:9e:ba:ec:bd:93:5d:1e:
b9:8c:62:58:12:c4:1e:08:5b:46:33:f1:c2:f5:06:
72:10:95:9b:41:5d:20:cb:d3:b8:fe:7a:19:1b:74:
18:d8:49:8b:e8:25:94:68:93:ae:a9:08:c0:6e:cd:
84:86:ea:2c:21:64:85:4a:dd:68:b7:1d:77:92:95:
a7:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:1F:C7:F8:DD:A4:1B:81:BD:CA:B8:A1:ED:E4:C8:11:E8:EB:5B:6E
X509v3 Authority Key Identifier:
keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:b7:c6:46:34:c2:66:13:5b:a2:11:cb:7e:0a:a8:8a:58:74:
53:5b:83:22:f6:e8:b5:b4:cf:2d:ee:7f:b5:9f:e8:2d:74:db:
47:0b:31:6b:ac:8a:b0:d4:29:33:25:7b:a7:d7:00:38:4e:02:
59:d6:58:d0:09:4e:93:f9:16:d3:d1:dd:51:a6:82:e5:fc:04:
a9:3f:5b:04:e5:cc:07:07:af:54:9a:5e:dd:59:ae:f5:62:bf:
e8:34:5f:af:94:14:ff:57:2d:54:ef:a6:d3:56:51:ec:df:ab:
24:87:9f:d8:01:ce:2d:a7:cd:30:7b:58:3d:5c:7f:d0:68:6b:
32:16:c8:ef:76:88:dd:19:68:62:e5:29:41:67:ac:bc:06:14:
91:d0:8a:41:0f:9a:e2:20:df:e2:82:0e:bd:23:2d:58:3a:18:
ad:77:1e:de:60:ef:0f:91:4b:2b:4a:3b:43:ff:80:c1:65:a9:
5d:58:93:36:ba:46:b2:7f:2e:6e:e0:35:1f:fd:4f:23:31:78:
2e:e8:3a:66:55:3d:2c:6f:f4:91:bb:95:6f:30:da:7a:16:b0:
e7:b6:a3:ce:78:e1:9f:1f:ce:6e:3f:53:8e:3e:6c:19:5f:77:
0f:ff:eb:8f:95:c5:36:c0:d4:cd:c6:5a:6c:4a:1f:1a:3b:9a:
31:6d:a5:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:37:25 2026 by rpki-client