Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
File: YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft (raw, json)
Hash identifier: jIlKBxch+e5oZL+QSQ8MZ68RfP4vTApEPCyuvcD5SvU=
Subject key identifier: 1D:8B:EB:4F:9F:1A:1B:31:B0:DD:E5:A3:BB:15:7E:B3:F5:B9:49:B2
Authority key identifier: 60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C
Certificate issuer: /CN=6052e1592b12ad2cd39f5be57c058535edb12b9c
Certificate serial: 019D2583B72D5BBFE1C3C5B08D25B02DB010
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
Manifest number: 0E19
Signing time: Wed 25 Mar 2026 15:01:22 +0000
Manifest this update: Wed 25 Mar 2026 15:01:22 +0000
Manifest next update: Thu 26 Mar 2026 15:01:22 +0000
Files and hashes: 1: YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl (hash: bJGlSW3nciNuE5wqC5FNWwc1dVl4eTeivnfKzs47AiA=)
2: kpscRgt1dWh-e--UZ-snvDVaW_w.roa (hash: IsbQ4B6Zgegpb0g9cDD/2L4au9/OQroMRlOlBHTs7Hc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:b7:2d:5b:bf:e1:c3:c5:b0:8d:25:b0:2d:b0:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6052e1592b12ad2cd39f5be57c058535edb12b9c
Validity
Not Before: Mar 25 15:01:22 2026 GMT
Not After : Mar 26 15:01:22 2026 GMT
Subject: CN=1d8beb4f9f1a1b31b0dde5a3bb157eb3f5b949b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:63:ae:f5:6b:fc:0a:07:9a:e4:6d:fa:23:ac:
5b:04:0b:43:ca:28:4d:44:44:10:c5:41:c2:9b:d4:
fc:a3:38:d2:b8:f2:a0:97:50:11:ad:96:f9:1d:31:
bd:45:75:4a:a4:69:52:38:d1:e8:84:75:13:07:c7:
24:b0:d1:5e:5d:bb:36:c1:31:89:a2:b9:af:99:9c:
80:0c:e9:99:3b:3d:c3:f8:fb:b2:6f:ae:1e:f0:91:
61:0a:97:62:e5:94:ff:7a:f8:37:f3:20:ab:3b:7b:
f5:df:49:3d:7b:a7:f7:90:83:96:2b:9f:45:41:b3:
e9:dd:8e:92:b2:75:ac:6e:5c:e4:c5:7a:2f:21:e6:
0b:c5:93:51:6b:64:7b:18:66:01:3d:96:fd:fa:4e:
da:31:7a:29:c5:f4:09:a1:b9:93:dd:e4:fb:fb:19:
51:64:9a:11:74:7d:33:e8:5f:0f:58:ab:50:5b:5a:
6d:1b:9f:32:24:fb:28:0e:8b:1d:05:20:1d:93:33:
d2:33:6c:67:fb:80:b9:3d:c5:93:20:b5:01:64:d2:
45:97:af:0d:1a:39:29:c1:50:05:7a:f4:c7:53:1a:
b1:b7:ee:a4:a0:e4:8b:7c:d5:d8:9f:13:b0:1a:f5:
6b:ed:11:34:4f:62:ea:fa:2d:0b:08:62:c8:3e:d8:
ff:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:8B:EB:4F:9F:1A:1B:31:B0:DD:E5:A3:BB:15:7E:B3:F5:B9:49:B2
X509v3 Authority Key Identifier:
keyid:60:52:E1:59:2B:12:AD:2C:D3:9F:5B:E5:7C:05:85:35:ED:B1:2B:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFLhWSsSrSzTn1vlfAWFNe2xK5w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/583a2c-946d-4517-8083-26985ce45978/1/YFLhWSsSrSzTn1vlfAWFNe2xK5w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:99:8a:ce:12:32:64:fd:d5:19:b7:23:32:36:2c:ff:3c:e5:
ff:c7:78:1e:87:78:04:33:1c:7c:7b:85:57:d4:d0:8c:ef:51:
88:47:52:e3:ae:67:32:92:27:cc:c1:75:fd:94:a4:77:f1:18:
82:1f:d3:c1:ed:11:fd:54:6b:eb:86:cb:55:2b:79:89:d6:6d:
41:04:d3:8f:35:fd:91:49:28:de:2f:48:04:b2:ed:18:41:30:
55:45:e3:71:d9:d0:99:7e:56:4e:6f:7c:3e:c4:4a:cc:4b:51:
13:26:32:ef:97:4c:4f:c9:6c:c9:d6:c8:05:07:29:c6:00:b3:
13:bc:00:75:20:66:4c:fb:e6:6b:14:46:66:6d:51:7c:66:95:
8c:ef:cb:96:1a:eb:37:c5:31:0e:4b:9a:96:dc:a6:44:c6:17:
4e:17:68:74:49:da:8c:44:36:95:de:6d:f9:d4:5a:10:23:1a:
5b:ff:bc:b7:94:f3:f3:8d:18:c4:ed:80:e1:04:40:21:6f:0e:
9b:7d:69:85:f7:e8:86:77:4a:3e:39:7d:5e:f8:3d:d6:61:fe:
55:db:58:95:ca:3a:f5:d1:ad:36:83:f3:8c:92:d3:37:9b:73:
7c:8b:39:a6:f4:00:37:b8:e6:6b:be:7d:e7:fd:c1:06:e2:96:
95:f4:47:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:13:50 2026 by rpki-client