Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
File: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft (raw, json)
Hash identifier: 5LX/crh2f4zX7oZuzVQoH78Lrtwjo7d9WYeYJp7DCeM=
Subject key identifier: 20:41:7C:3D:8B:8E:F6:3F:36:5B:87:B0:4A:EE:88:28:A0:2F:E0:8D
Authority key identifier: 62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B
Certificate issuer: /CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b
Certificate serial: 019D2961892EB42CAEE4D29FF9CC594A7700
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
Manifest number: 0475
Signing time: Thu 26 Mar 2026 09:02:31 +0000
Manifest this update: Thu 26 Mar 2026 09:02:31 +0000
Manifest next update: Fri 27 Mar 2026 09:02:31 +0000
Files and hashes: 1: EfXSoXJaCrM2oY0uZltd_MsMcGg.roa (hash: UdYFHNky4AHMOhO+Oudhljz1aWNykblXzASt3L7R1FM=)
2: YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl (hash: yTIdi5hXJw30JI1U0VhmWYI17+kr8mNIPGe4HHMiMLM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:89:2e:b4:2c:ae:e4:d2:9f:f9:cc:59:4a:77:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=627a99509ed51df93a33f2a4e2fd662d1c8d660b
Validity
Not Before: Mar 26 09:02:31 2026 GMT
Not After : Mar 27 09:02:31 2026 GMT
Subject: CN=20417c3d8b8ef63f365b87b04aee8828a02fe08d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ed:08:63:55:9d:f1:ce:5d:f6:55:b4:c0:8c:
46:08:aa:f6:f7:93:39:3f:3c:79:a9:88:54:17:7b:
a4:16:50:f9:38:f8:cb:0c:e0:91:2f:59:db:9a:78:
04:8b:49:cf:95:b9:12:16:48:d1:0c:fa:7c:e4:20:
2f:dc:d4:e1:53:ba:cd:a2:59:9e:b5:d3:2b:a3:fe:
f5:66:90:d4:8e:9b:ad:be:dd:65:5a:ee:1f:b2:90:
07:a4:97:c1:c3:42:cc:15:86:18:09:94:e8:a2:3c:
03:e5:20:1b:4b:61:31:a6:45:38:b8:56:d9:4f:fe:
6c:a1:8b:24:ee:b5:85:65:91:26:be:42:30:f6:b0:
63:bb:6f:a8:16:a6:f9:ea:a0:e9:3f:b5:f3:fd:78:
1d:57:84:09:b7:3c:b5:fe:46:c9:1a:43:0b:ff:33:
fd:32:3c:4a:21:20:33:cd:08:60:e0:86:2c:a6:76:
2f:46:f1:34:71:28:a6:fa:d0:fe:8b:a9:fd:3c:b7:
fa:e4:85:b1:bb:dd:cd:65:64:f3:2e:2e:bf:55:7d:
cf:89:a2:1b:2d:05:63:b3:82:0f:4a:9b:55:a1:d7:
75:c7:99:94:9a:50:ea:12:1d:6f:0e:4a:23:f2:e0:
b0:05:0e:5b:82:19:4d:56:7c:d3:28:ab:a4:32:03:
f4:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:41:7C:3D:8B:8E:F6:3F:36:5B:87:B0:4A:EE:88:28:A0:2F:E0:8D
X509v3 Authority Key Identifier:
keyid:62:7A:99:50:9E:D5:1D:F9:3A:33:F2:A4:E2:FD:66:2D:1C:8D:66:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/463666-00e0-492e-a463-0128d97179e8/1/YnqZUJ7VHfk6M_Kk4v1mLRyNZgs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:a4:d7:fd:ac:b8:17:3e:f5:7e:aa:5e:9c:b8:09:1c:45:8d:
89:e6:3c:03:09:c1:75:5a:e3:f1:3e:11:03:e9:bb:fb:9b:a0:
b3:bc:63:1a:28:31:47:a2:dc:60:f9:d3:0b:98:4f:5e:87:ee:
b0:8a:1a:4d:3c:0a:8a:c9:ec:10:30:7e:c9:40:98:94:8d:76:
f9:50:ea:28:c0:71:03:e1:0f:8f:6a:e2:e4:a8:5c:38:3d:d8:
b4:3b:72:53:1a:0a:3c:8a:97:3a:f3:22:36:48:6e:9b:0d:69:
fc:e0:32:e1:fa:8a:de:54:54:cd:9e:f4:06:62:1d:6c:c4:05:
11:8d:bd:5c:83:d6:07:70:97:33:73:06:bb:b2:24:d0:33:45:
1c:83:ca:92:e5:52:2b:e9:a2:1c:ad:59:6a:54:61:44:c8:10:
53:ad:34:08:bc:17:0c:bf:ad:86:2e:83:91:72:7d:b2:15:83:
a8:69:db:92:3f:25:68:a5:bf:4b:af:c8:2c:32:85:1a:55:67:
f3:57:2f:d7:79:94:e5:e0:48:88:39:b0:ec:05:fb:19:49:58:
b6:2d:f1:c8:1b:0f:b2:90:c9:97:08:70:c2:93:24:7c:02:56:
e3:93:23:1e:9d:ac:83:6a:50:5a:67:3b:52:8e:5f:b7:be:14:
d7:00:7b:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:23:13 2026 by rpki-client