Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
File: YNxaADaNiuH7qZVDHwOkExrdipo.mft (raw, json)
Hash identifier: cBTJDPEaIkx+9g0TCEJhzRrGqh8WHBrD39+as10amGE=
Subject key identifier: 83:24:E9:F5:75:AF:1F:93:80:51:27:B2:44:67:81:6B:E2:35:60:08
Authority key identifier: 60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
Certificate issuer: /CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Certificate serial: 019D28843B241241E3534ADA2BF164B0764E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
Manifest number: 0A33
Signing time: Thu 26 Mar 2026 05:00:47 +0000
Manifest this update: Thu 26 Mar 2026 05:00:47 +0000
Manifest next update: Fri 27 Mar 2026 05:00:47 +0000
Files and hashes: 1: YNxaADaNiuH7qZVDHwOkExrdipo.crl (hash: sFWlP0jb4JxA94nDbfXax+rzHc2BlY7WCorqI9GfOn0=)
2: vkhFm3pKUDJNsT0h561aywva_1A.roa (hash: qEY3Sblpt51bVtVlep4x8ewHAAaQFqXMAiyecT6/mqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:3b:24:12:41:e3:53:4a:da:2b:f1:64:b0:76:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60dc5a00368d8ae1fba995431f03a4131add8a9a
Validity
Not Before: Mar 26 05:00:47 2026 GMT
Not After : Mar 27 05:00:47 2026 GMT
Subject: CN=8324e9f575af1f93805127b24467816be2356008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:30:96:8c:d6:bf:ab:17:9f:cc:8b:50:fb:85:
81:4c:7b:f0:70:a4:93:8e:1d:93:62:76:3c:b1:c0:
0d:c4:1d:46:dc:47:6a:a9:52:93:fa:f5:57:72:b1:
17:30:89:6f:6d:1d:93:fd:bb:64:dc:87:6d:4a:d4:
fd:72:20:1c:63:14:49:21:76:92:04:64:46:9b:55:
6f:ba:20:5c:e6:86:58:ef:a7:9c:86:d0:8e:f2:1f:
28:8c:f9:d4:2b:91:05:e2:72:ef:5c:ed:fa:f6:70:
d6:4d:b6:6e:34:d6:30:ee:6b:77:87:6c:06:f1:12:
86:65:85:96:8c:e0:66:fe:e2:bd:90:0a:8c:35:79:
6b:fd:7a:1b:d8:82:49:80:90:29:99:f5:68:28:7c:
1a:1a:8b:3b:20:e9:5b:c5:74:8d:57:68:27:2a:62:
2b:ea:0a:20:62:86:5a:2f:3c:e9:5e:52:07:a3:72:
48:b2:7e:c9:fb:ac:a9:73:42:35:57:7f:99:27:d0:
16:5e:23:c5:8c:6e:f7:df:64:53:58:3c:58:85:5f:
95:42:72:d0:ca:e1:95:78:6b:67:44:34:52:30:cd:
4c:27:6d:0c:fb:df:8f:bd:df:22:d8:21:4e:e1:ce:
ef:ee:3d:a8:d3:36:a9:6e:e8:4e:72:5a:90:44:19:
41:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:24:E9:F5:75:AF:1F:93:80:51:27:B2:44:67:81:6B:E2:35:60:08
X509v3 Authority Key Identifier:
keyid:60:DC:5A:00:36:8D:8A:E1:FB:A9:95:43:1F:03:A4:13:1A:DD:8A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNxaADaNiuH7qZVDHwOkExrdipo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/43d63a-a936-4593-8826-ebb3982c2eb0/1/YNxaADaNiuH7qZVDHwOkExrdipo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:64:e1:5f:fc:84:f1:80:18:15:d9:fe:89:82:bc:d4:83:f2:
80:aa:79:95:60:e6:1a:28:77:34:c0:0c:42:a7:71:b3:b0:b4:
fd:e0:23:34:6d:d3:7a:5e:7f:c3:fe:0c:56:75:37:c8:ea:9a:
07:41:7b:2f:79:c8:28:7c:eb:17:50:5e:ca:f6:63:ae:14:55:
2c:db:70:44:a9:11:1a:46:8b:f8:bd:8c:73:e3:d3:18:75:e0:
87:2c:5f:43:c9:bb:dc:13:a9:d3:9a:cd:9e:7e:89:f4:2c:b3:
58:52:04:a2:2a:04:cd:b1:1e:96:67:52:6a:9e:08:d3:bd:47:
3b:f0:d8:89:d8:7b:e4:5b:9a:57:78:0b:19:96:ec:bf:89:51:
f4:66:3c:4b:05:da:8e:40:58:02:c6:a5:24:d7:49:c2:cf:11:
fa:c2:3d:0e:04:eb:e7:b4:f1:95:0c:a7:e3:e8:fd:dc:a3:b9:
d2:bd:bf:3e:95:cd:80:f4:f7:f9:9d:be:64:2a:69:8a:03:7f:
bd:c3:da:ca:d8:6a:d8:4c:4f:8f:97:cd:31:70:af:29:b9:8b:
c4:57:0b:28:64:68:cf:c4:41:3f:04:c5:0a:03:b0:44:94:13:
0e:aa:a4:f9:b0:83:4b:d1:a9:0e:38:60:6f:f5:d5:fa:16:dd:
9c:a0:55:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:21:05 2026 by rpki-client