Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
File: yy2f-G42PbNNBVbsFkUfL38wPSQ.mft (raw, json)
Hash identifier: 6N5jlkQLoXEGseIPC4FSDW03svsXHNjJOLMZHJ2tSTM=
Subject key identifier: 57:4D:55:AB:4C:49:09:4A:14:63:3E:61:99:6F:59:19:04:B5:A5:52
Authority key identifier: CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
Certificate issuer: /CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Certificate serial: 019D28F2DE687FF11CA0DFF3C952B5E47BA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 07:01:38 +0000
Manifest this update: Thu 26 Mar 2026 07:01:38 +0000
Manifest next update: Fri 27 Mar 2026 07:01:38 +0000
Files and hashes: 1: Wx516h-ycz_F6WDuwcZAFe5X748.roa (hash: OBge6N4+W5EoPiH34P9HhCCHgJeyBg+k4ngzYQtz6A0=)
2: yy2f-G42PbNNBVbsFkUfL38wPSQ.crl (hash: c2V4rKvcNFEwP31rbuB54/YiQ8Sb4kGkJ2dGVt2aZCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:de:68:7f:f1:1c:a0:df:f3:c9:52:b5:e4:7b:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb2d9ff86e363db34d0556ec16451f2f7f303d24
Validity
Not Before: Mar 26 07:01:38 2026 GMT
Not After : Mar 27 07:01:38 2026 GMT
Subject: CN=574d55ab4c49094a14633e61996f591904b5a552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c3:8e:8e:22:13:18:02:a1:0d:5d:11:6a:91:
45:57:13:5c:d5:64:eb:aa:18:b5:9f:40:0d:18:8c:
5d:54:0c:41:f4:98:ff:50:3c:6d:97:85:07:39:49:
a7:6b:96:e3:3e:88:62:21:16:e8:35:13:d1:25:d6:
93:d0:94:a3:8e:84:35:b0:85:af:4b:4f:7a:c1:37:
ac:1a:a4:a0:40:6c:99:7b:43:e4:78:41:99:33:b1:
4c:3c:42:40:e7:08:f3:d7:03:bc:e5:6c:72:4d:4d:
0c:f2:ab:07:94:a0:21:08:2b:c8:8f:df:75:8b:97:
9d:8b:f9:9f:21:a7:f6:59:4e:fa:c9:b0:c6:56:c4:
73:25:e0:b8:5d:57:cf:e3:ae:0e:e8:fe:ea:f4:69:
19:07:7e:0d:f8:66:c0:71:bd:75:5e:09:25:58:b8:
07:b2:fe:91:ac:9e:42:71:ed:5e:85:31:97:7a:de:
15:bb:42:08:e0:4d:58:b6:b1:77:ed:42:11:cd:2d:
37:6a:f2:72:dc:ff:f3:f8:ca:57:dc:ae:28:2b:e0:
f6:b6:50:91:a5:bb:40:02:29:ab:69:ee:48:48:1c:
76:ef:e0:40:13:6b:53:81:b7:ab:5e:ab:f9:4b:53:
a4:7d:aa:f0:fc:3c:95:ca:c5:2a:a1:69:ab:2b:ea:
b8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:4D:55:AB:4C:49:09:4A:14:63:3E:61:99:6F:59:19:04:B5:A5:52
X509v3 Authority Key Identifier:
keyid:CB:2D:9F:F8:6E:36:3D:B3:4D:05:56:EC:16:45:1F:2F:7F:30:3D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yy2f-G42PbNNBVbsFkUfL38wPSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/b1af5b-089e-4cbe-bbe9-425ee968df0b/1/yy2f-G42PbNNBVbsFkUfL38wPSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:12:82:24:93:f4:71:32:24:7f:c6:56:bb:a3:fe:38:e6:3c:
c4:aa:6d:b0:52:55:61:a3:cd:ec:c9:06:0b:9f:12:a1:47:61:
d7:6f:59:36:cf:10:7d:6b:84:a0:07:03:f2:6e:a0:cc:db:57:
3f:91:e5:cf:3e:bc:8a:d0:96:b4:00:66:08:a2:d6:cc:60:e7:
10:20:64:e5:f3:5d:9a:17:8b:95:e2:17:c4:46:cb:01:a1:f8:
46:0f:7f:7e:54:6b:cb:ab:a7:81:12:ff:f6:db:30:ac:eb:80:
af:7c:52:02:6d:dd:f2:d4:4b:f5:f8:2a:91:c4:14:70:1a:6d:
13:9a:d3:e1:c6:53:2e:12:1d:43:cf:47:08:ca:c9:dc:01:04:
16:6a:67:79:95:75:f8:1d:c3:e1:2f:e9:96:f1:b0:67:09:79:
a4:3d:7b:11:9d:4b:15:29:37:33:20:21:84:3d:30:56:8e:d6:
e4:70:7e:ed:83:9a:a2:d1:3a:8e:de:12:d8:95:62:b8:e3:3a:
b7:c9:3b:97:90:34:be:62:ae:14:00:fd:48:3b:bd:34:8f:9d:
60:0e:3c:45:46:67:a7:d2:49:11:2d:41:a7:83:a6:14:a9:e6:
1c:77:d8:0d:fb:6b:63:c6:eb:01:3c:a5:b9:fa:9f:a1:6d:81:
ba:39:a2:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:32:54 2026 by rpki-client