Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
File: YhuOSG7srmEk3hBJT9OROe1KN8s.mft (raw, json)
Hash identifier: G9NTmyaci9GGUlKESUXZcSyjr9yYpxqj11q81YZZN8s=
Subject key identifier: 75:0C:F2:5F:21:2C:60:C5:45:A8:75:CF:7D:DC:7E:E7:DD:42:DD:B8
Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb
Certificate serial: 019D2A0457E7861EA5FFB494253BAA516451
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 12:00:20 +0000
Manifest this update: Thu 26 Mar 2026 12:00:20 +0000
Manifest next update: Fri 27 Mar 2026 12:00:20 +0000
Files and hashes: 1: BwYYOmhJLJqapgE9lvV3d7BEWAU.roa (hash: ME1eFTl4ynavuH8tL0n87NqGZ4of85as6TbMREzi3Ig=)
2: YhuOSG7srmEk3hBJT9OROe1KN8s.crl (hash: Mc2L0RiQPdzWS//4dDqxELb8e2hyZoDFBQS5Ds1lQkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:57:e7:86:1e:a5:ff:b4:94:25:3b:aa:51:64:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb
Validity
Not Before: Mar 26 12:00:20 2026 GMT
Not After : Mar 27 12:00:20 2026 GMT
Subject: CN=750cf25f212c60c545a875cf7ddc7ee7dd42ddb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:5c:6a:68:33:cd:5d:51:fa:ea:3c:e2:30:c3:
d1:83:f5:78:a0:72:fc:b7:50:49:e1:83:43:0c:1a:
52:45:c7:cc:3c:3a:41:6a:5d:b8:2b:9f:9b:f5:b0:
23:cc:b0:a5:09:12:e8:8b:3e:cc:13:9f:57:87:bd:
ff:18:23:f0:2f:df:b6:56:29:40:5e:85:13:3d:10:
d3:8b:d6:fc:54:9a:3b:ef:25:dc:5f:93:0b:df:f7:
1f:4b:4f:a2:02:af:51:f0:b7:59:02:fa:53:39:7d:
3c:e4:6d:83:13:ad:fa:3f:e6:db:da:6e:7d:37:2b:
21:97:ba:9c:44:e0:93:1c:8d:0a:ff:69:10:42:a7:
f8:ca:1e:e1:44:84:0d:52:56:48:11:97:8e:87:1b:
5a:80:30:a0:f0:a9:4b:0c:4f:83:88:df:fc:46:a3:
72:56:c2:be:b2:95:21:9e:38:62:6b:78:b9:0d:f1:
14:1f:d4:43:25:1e:f4:87:bc:c3:56:f3:75:d7:43:
25:56:63:34:ce:c8:18:95:26:d2:10:22:aa:d5:4b:
5c:fb:c8:1c:6a:c9:46:27:cb:c7:47:cf:99:dd:1a:
84:ef:ff:3e:64:54:1a:10:6a:40:d7:e3:04:7d:55:
53:ab:39:4f:26:e1:2e:4b:64:9b:c6:5b:e6:48:c7:
a7:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:0C:F2:5F:21:2C:60:C5:45:A8:75:CF:7D:DC:7E:E7:DD:42:DD:B8
X509v3 Authority Key Identifier:
keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:69:b4:e3:94:b9:b9:db:c1:ac:fe:d6:74:85:d9:b9:47:af:
0c:af:69:7c:0a:63:8b:3a:f6:88:a4:6e:72:06:2e:dd:d0:d4:
fe:a1:8a:e4:d4:3f:61:a8:b1:1d:5e:09:e5:34:74:4b:ae:2b:
20:a6:6b:b9:8d:3c:ae:84:d1:2c:82:9f:f8:c6:30:4a:67:ca:
90:2c:e0:8e:0c:af:08:5f:52:b3:d1:f3:ec:86:68:64:c4:c7:
ca:33:2e:33:65:af:70:1a:79:10:0c:75:02:c3:09:a4:b6:11:
e1:db:e8:06:f9:e5:3f:96:05:b3:b5:eb:db:3a:82:10:be:29:
10:29:9f:f7:92:b5:8d:fe:10:e3:1a:cd:13:28:63:6f:17:53:
9e:a4:ec:5c:7c:1d:9e:3c:ae:fb:fb:a6:c9:9d:66:19:4f:2a:
23:bf:8a:11:ad:48:40:61:ed:fc:cb:f6:ea:ec:c9:48:d8:80:
01:4f:fc:ed:c8:a5:77:14:24:08:42:ec:80:35:85:cc:78:76:
22:c0:34:fb:26:98:05:60:38:0a:c0:44:a1:6f:7f:5a:81:41:
e6:c9:24:46:4a:d6:78:fb:7e:8b:01:9d:e9:6f:56:de:d1:4d:
46:d6:0b:c2:b1:c2:b6:76:d7:c3:98:83:41:19:8c:7d:27:84:
04:59:f9:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:41:33 2026 by rpki-client