Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: l2vqhVBx24H09HR1roqM/XEar8ao/a12pW3nnhYZe6k=
Subject key identifier: 17:15:83:B7:A4:CD:C5:43:45:12:5E:25:25:AA:38:E5:4D:4C:A1:10
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 019E1F7F09C0098390AE9168E02BFDC5B126
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 03EC
Signing time: Wed 13 May 2026 04:01:19 +0000
Manifest this update: Wed 13 May 2026 04:01:19 +0000
Manifest next update: Thu 14 May 2026 04:01:19 +0000
Files and hashes: 1: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: uhKQ7u+rnaj5zhOV35dBVq+Prs+bBPPE/tpm+x8QcaI=)
2: bqQFNJsrG869RK3Nfbwr65mLsd0.roa (hash: lGIgTiJR2g5VC3z+XfnzZ2hEM7gGKI2STx8vdvlyfrE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7f:09:c0:09:83:90:ae:91:68:e0:2b:fd:c5:b1:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: May 13 04:01:19 2026 GMT
Not After : May 14 04:01:19 2026 GMT
Subject: CN=171583b7a4cdc54345125e2525aa38e54d4ca110
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5c:63:aa:cd:03:4e:ad:de:d0:62:32:a5:09:
49:44:81:14:e8:14:18:be:03:aa:bb:7d:f7:12:4d:
d8:14:b9:7b:75:3e:f3:44:68:a0:88:20:0f:bd:09:
e4:63:58:54:54:04:54:36:8c:57:5f:39:19:92:0d:
37:90:0c:9c:1f:d2:2b:d6:cc:3c:b6:aa:2d:65:38:
81:09:d5:78:0b:e5:ef:27:05:6e:d3:2b:48:c1:54:
2a:35:77:80:3d:ec:2f:3d:aa:87:ca:5b:06:ba:8d:
c1:69:7f:d4:b7:ca:3b:1d:d8:5e:9d:72:89:f3:60:
03:50:e9:c7:7e:b0:a5:b7:c8:aa:af:ce:bf:87:fb:
13:10:a5:02:f5:94:82:19:b4:1d:48:47:a4:cc:e8:
e1:cf:6f:eb:9d:f8:5f:b7:e8:d5:4f:24:3a:b3:67:
fb:9a:cd:06:fd:40:d9:f8:28:5a:28:26:0b:fa:25:
6a:e7:85:35:4a:f8:0e:61:0b:2d:a0:12:14:9a:4f:
88:6d:32:31:b0:a8:77:6c:22:e9:14:1d:cc:93:af:
c0:ea:80:40:fc:a3:d2:4f:ed:50:28:c1:a7:2e:2e:
fc:0a:19:d7:81:36:63:20:79:9e:b6:c3:0a:11:dc:
c2:dc:43:23:b0:30:85:97:c2:8f:f3:2e:3a:ca:1b:
39:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:15:83:B7:A4:CD:C5:43:45:12:5E:25:25:AA:38:E5:4D:4C:A1:10
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:fb:7e:c8:c1:dd:f2:98:8e:26:90:b7:f7:a0:9b:d2:b0:22:
b8:78:ec:f7:0e:df:0a:51:d3:91:5e:5a:ab:e8:d0:61:0d:a5:
dd:ca:c9:ab:9e:80:d7:4e:2a:92:d8:8e:0d:71:eb:9b:bf:7a:
9e:ca:19:73:f8:c3:31:82:c8:35:fa:35:ec:34:4b:53:8b:ec:
a4:1c:97:50:73:92:e5:b2:10:21:60:57:9e:73:fa:49:c4:b2:
a4:9e:54:25:de:c5:23:38:82:0c:6c:66:6c:dc:ec:fd:f5:c3:
4d:ce:25:2f:19:cd:05:e5:cc:c5:be:9d:5e:4c:ae:7d:9e:c5:
43:86:5a:49:d7:02:af:49:e2:1e:50:aa:84:19:01:0e:92:1a:
19:9f:cb:ff:15:95:16:7e:4f:cf:45:43:5d:59:48:b9:70:9f:
2d:89:93:23:d3:6e:f2:86:ee:07:11:08:5f:92:b2:1e:c2:fa:
82:04:75:6c:5d:1e:18:b6:60:b5:cb:93:a5:75:6a:e9:9f:88:
95:a9:50:2b:2a:0b:5e:c5:1c:5d:2e:fe:91:8f:46:6e:77:bf:
d1:86:69:1f:81:c7:73:04:4a:23:b3:61:27:4f:ac:83:91:ad:
a9:3c:98:9e:88:82:55:86:e4:7a:4c:b0:a5:26:f9:a0:aa:9f:
fe:64:e9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:48:07 2026 by rpki-client