Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
File: YFUCYwejbuxeaBw5SK71Oif5lzY.mft (raw, json)
Hash identifier: vLcK4ui0vMDJ2SSSWSC4GvZ2RnHPHtGEaSZWsK8tC0E=
Subject key identifier: 66:EE:63:41:AB:58:85:38:AC:DC:4F:97:38:4A:D0:91:24:CC:94:58
Authority key identifier: 60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36
Certificate issuer: /CN=6055026307a36eec5e681c3948aef53a27f99736
Certificate serial: 019D27A8756CF84139F36AB033AA243CEB38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
Manifest number: 02A3
Signing time: Thu 26 Mar 2026 01:00:44 +0000
Manifest this update: Thu 26 Mar 2026 01:00:44 +0000
Manifest next update: Fri 27 Mar 2026 01:00:44 +0000
Files and hashes: 1: 96tI9F9CMFNRZ6DCnRVD97jz1K0.roa (hash: Eq3ZNRGvPrY91tNLfyf2rbXZuZF3eXFbsefGVwqCF/E=)
2: YFUCYwejbuxeaBw5SK71Oif5lzY.crl (hash: +9X5lq7zAL0YX0nKevPdMVUEv5r+eEGBDGTV3LpXBAc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:75:6c:f8:41:39:f3:6a:b0:33:aa:24:3c:eb:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6055026307a36eec5e681c3948aef53a27f99736
Validity
Not Before: Mar 26 01:00:44 2026 GMT
Not After : Mar 27 01:00:44 2026 GMT
Subject: CN=66ee6341ab588538acdc4f97384ad09124cc9458
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:39:19:2b:70:27:ea:2a:30:ae:c6:7f:18:69:
90:79:63:a4:11:44:f3:a5:b8:57:49:9b:ad:a0:7e:
3e:ca:3f:ce:c9:98:f1:9b:b7:23:df:30:7a:00:5f:
04:26:6b:f1:12:81:e4:7d:b1:ae:74:91:a7:a3:50:
93:33:fa:cc:a3:41:da:f6:ce:e1:85:70:48:66:52:
6e:f0:ab:19:b0:d2:41:32:4c:e2:79:21:25:6b:bc:
8b:79:d8:a2:8f:9d:b7:f7:db:7c:ee:91:ca:62:dc:
ee:60:83:49:e6:b0:de:7d:a5:e2:1b:5e:d0:a9:f3:
37:47:11:1f:94:05:38:86:77:14:67:3b:59:d6:4b:
87:6d:95:e8:6c:12:64:89:77:ec:11:0b:0b:34:f2:
ee:0a:b3:86:53:6f:65:43:25:ff:1e:16:12:55:31:
f0:7c:b2:f6:4d:25:4f:40:f1:ad:d6:f1:cf:fb:8e:
7a:50:44:6d:28:01:b6:5e:67:cc:50:18:86:35:da:
60:f7:06:52:fc:24:e6:bb:a2:4d:6f:b0:8b:ff:f1:
44:fd:fc:c0:a1:9f:94:2b:a8:3f:5a:32:d7:6f:45:
ff:54:51:59:6a:a9:4c:94:91:7a:86:e2:3a:ea:01:
86:b8:72:15:73:2c:59:13:cb:f0:e0:61:94:03:88:
ea:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:EE:63:41:AB:58:85:38:AC:DC:4F:97:38:4A:D0:91:24:CC:94:58
X509v3 Authority Key Identifier:
keyid:60:55:02:63:07:A3:6E:EC:5E:68:1C:39:48:AE:F5:3A:27:F9:97:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YFUCYwejbuxeaBw5SK71Oif5lzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/9aa858-e1be-40e9-bd9a-0ee63357d847/1/YFUCYwejbuxeaBw5SK71Oif5lzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:db:69:9a:62:8a:ae:a2:d8:f2:9a:6f:6d:fb:65:d3:b0:11:
19:12:79:1d:3c:a9:c1:75:41:f8:54:ef:07:be:45:d4:bd:2b:
c4:68:a3:24:e3:78:44:fa:ee:35:d7:83:37:95:db:95:b4:9a:
68:2d:fc:ba:11:ba:49:ea:b7:97:36:c5:8d:72:9c:5b:79:4d:
00:12:e2:be:76:73:11:8f:98:76:1e:e2:30:de:e2:6e:3f:77:
cd:2a:1f:4a:5b:35:9d:8c:66:28:17:5f:e9:a4:dc:ae:56:b8:
24:3a:8a:e5:86:16:24:be:77:22:d1:fd:b6:81:e3:4d:de:3a:
31:ba:ae:c5:bc:1c:dc:51:3b:cc:66:cc:5e:2e:37:dc:d5:be:
19:d8:b7:b5:03:41:0d:ca:2d:d4:e2:7a:10:24:96:80:50:46:
06:21:c3:58:21:c2:aa:f0:bf:2b:c4:11:7a:d2:2e:d7:83:da:
17:3c:bb:01:78:00:4e:73:66:d1:79:af:10:86:aa:ce:8f:6c:
0f:90:4c:d2:c8:9d:6a:e3:9a:e4:f9:47:72:51:1b:63:4c:42:
0b:8f:7d:93:21:1c:6e:cd:4d:40:75:0e:0d:e8:45:01:5a:58:
e2:1a:0a:0f:03:06:ce:9a:99:1b:92:85:84:52:1d:21:a4:fd:
5e:e0:e6:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:29:53 2026 by rpki-client