Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: aiWbbpNx+V8K6vQOiSGECEh1s6BmotxSjKH731TR2lI=
Subject key identifier: B8:A6:8F:EB:0C:D9:6D:EF:B5:F0:79:F7:34:CA:2E:8B:AA:D1:B7:4E
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 019D265FD44EEC9A13434BD20AE87E5EB201
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 036B
Signing time: Wed 25 Mar 2026 19:01:47 +0000
Manifest this update: Wed 25 Mar 2026 19:01:47 +0000
Manifest next update: Thu 26 Mar 2026 19:01:47 +0000
Files and hashes: 1: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: +bV6yNE1aVEnGSFfymnkBmNfqS1A9UQTJaZPPDtJSaI=)
2: bqQFNJsrG869RK3Nfbwr65mLsd0.roa (hash: lGIgTiJR2g5VC3z+XfnzZ2hEM7gGKI2STx8vdvlyfrE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:d4:4e:ec:9a:13:43:4b:d2:0a:e8:7e:5e:b2:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: Mar 25 19:01:47 2026 GMT
Not After : Mar 26 19:01:47 2026 GMT
Subject: CN=b8a68feb0cd96defb5f079f734ca2e8baad1b74e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:86:06:06:d4:82:43:1c:69:84:4a:c0:28:c2:
cb:78:34:4d:23:fb:19:4f:5c:3f:22:b7:e8:e4:cd:
ef:9b:a9:ef:4e:f6:2f:d3:03:64:d8:5e:20:68:e0:
59:0c:1b:e4:cb:67:a2:d2:5f:c6:c1:a1:47:08:0f:
10:38:d7:0f:3d:30:e9:9c:44:dc:41:1b:0d:13:ed:
f8:4f:75:85:91:0b:ee:be:16:b9:05:c1:ce:e1:59:
c8:e4:bd:f9:0f:2b:f7:5e:b0:d7:0c:44:37:05:3a:
ad:41:9b:19:74:37:c3:9e:a8:15:a8:90:ee:e9:fa:
17:4f:90:a5:4c:f8:36:6c:d6:74:e4:80:4a:b4:70:
31:83:df:5c:8f:48:a8:af:5e:04:1e:ac:82:80:19:
6c:12:50:10:e1:82:05:4f:5a:a3:77:ac:27:b0:57:
18:92:38:3e:9e:f3:10:3c:2d:8c:5f:2b:a8:66:8c:
73:f5:5e:39:f1:34:a1:8d:b5:ac:a6:5e:42:3b:4e:
8d:29:fc:e4:e8:1a:7c:5e:2c:b2:8d:34:99:02:74:
71:25:26:1c:f7:3c:e3:c7:d7:32:19:ea:e9:53:3c:
70:c9:69:71:d6:e1:14:76:e1:17:07:11:ca:e2:6b:
37:13:fe:17:6e:d2:a8:08:c8:bf:94:70:4f:29:08:
55:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A6:8F:EB:0C:D9:6D:EF:B5:F0:79:F7:34:CA:2E:8B:AA:D1:B7:4E
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:0b:4f:f8:18:f7:6c:a2:dd:f0:07:ab:53:db:ed:93:7f:29:
69:47:22:c6:38:d9:11:44:f3:1b:00:9b:36:e0:d7:d4:da:b1:
6d:e2:70:8b:aa:f6:e2:90:14:a9:ca:03:46:4e:09:53:43:75:
ac:6f:f3:ea:dd:54:c3:d4:44:8c:ad:d3:cb:63:dd:ea:62:d5:
64:7f:32:00:20:4e:97:b4:d2:3a:2f:f3:c2:b8:19:63:4a:ea:
25:4b:08:01:77:0a:c0:4d:f1:9d:63:62:a6:c4:d7:14:49:37:
70:0a:05:2b:3c:04:1e:93:44:49:dc:33:92:c7:de:41:8c:b0:
f6:97:cd:be:d0:c3:0b:de:80:c9:88:ce:7b:41:24:03:cd:1d:
ce:15:25:83:7d:1c:53:65:7a:9c:e2:14:63:ae:4e:cf:8f:9a:
48:6b:92:ee:9c:7c:f5:9e:a4:56:22:78:27:58:3d:a2:27:41:
77:fb:c2:89:07:1a:86:28:3c:8b:ef:7e:ac:12:cc:15:f1:72:
4d:3b:32:82:2b:22:08:5a:92:b3:19:e3:5a:8c:0d:a3:9b:31:
82:28:24:a0:f2:4e:7a:07:89:b9:d3:62:a6:e3:f6:24:7b:33:
37:4e:32:f6:1e:52:ce:a7:20:79:2d:8c:96:aa:15:6a:64:bb:
f5:14:67:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:45 2026 by rpki-client