Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
File: YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json)
Hash identifier: XdeXQrmBZoCrtbf9dVDWU4hdRAsRp6Ru9HuAIwgPurU=
Subject key identifier: DF:CF:08:50:FE:DB:DA:B2:C9:12:AE:46:68:8F:C3:B6:EF:30:0A:0A
Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
Certificate issuer: /CN=602f27fad92452a254b30a060ed383b13c758ed6
Certificate serial: 019D25BAB1DECB66BDF43155AA7E10C5FA31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
Manifest number: 0AEA
Signing time: Wed 25 Mar 2026 16:01:25 +0000
Manifest this update: Wed 25 Mar 2026 16:01:25 +0000
Manifest next update: Thu 26 Mar 2026 16:01:25 +0000
Files and hashes: 1: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: AoYv0CIvW1yWWEZUjfttwfpWJCQuwo3Fco3VE+sXWtg=)
2: yjdYp8YMAtj2_Dytxy6NEaoV14M.roa (hash: /wldluyAt2xqR07lomlO0CgTxaAUVhzs9ZM3VW1cPGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:b1:de:cb:66:bd:f4:31:55:aa:7e:10:c5:fa:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6
Validity
Not Before: Mar 25 16:01:25 2026 GMT
Not After : Mar 26 16:01:25 2026 GMT
Subject: CN=dfcf0850fedbdab2c912ae46688fc3b6ef300a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d1:c2:db:0b:95:db:ca:ef:0f:af:bd:b1:f1:
da:fb:e6:c5:df:70:87:04:dd:4a:ed:f5:ef:a1:51:
ce:b9:73:5f:db:c7:5c:81:d3:7c:94:9a:f1:ac:23:
5e:af:f3:14:2d:ef:1c:8a:ab:cf:81:63:62:91:71:
1c:7c:bf:4a:4d:70:52:a3:0b:07:37:aa:df:3f:a7:
77:f5:a7:3a:33:61:72:15:2b:98:79:72:7b:be:f9:
e8:51:c5:f6:30:38:09:d2:44:0e:83:66:9c:97:6c:
52:66:09:e3:19:c7:a6:62:50:26:ee:43:41:e8:2f:
17:5c:71:52:c0:b2:82:05:08:69:c4:9b:38:42:7d:
fb:aa:bb:38:ed:60:9a:be:53:30:a2:bf:97:da:43:
48:d6:0f:bf:8e:d4:72:d4:4a:d1:46:f9:39:e0:3a:
67:23:77:3e:67:f5:46:00:92:72:0a:1d:83:04:24:
16:99:99:6a:b2:ce:19:90:9e:3c:80:60:cd:30:58:
ab:52:d6:de:33:5c:7b:ba:bd:de:7b:f9:22:fd:fa:
72:be:11:a6:e7:08:4d:ee:7a:3d:61:e0:6c:a4:70:
e5:b1:54:f5:db:3e:52:3a:cd:cf:a8:b6:b9:cc:c1:
22:b2:4f:35:42:94:51:95:53:c3:48:6e:10:14:0f:
d1:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:CF:08:50:FE:DB:DA:B2:C9:12:AE:46:68:8F:C3:B6:EF:30:0A:0A
X509v3 Authority Key Identifier:
keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:bb:d3:d8:53:39:2d:04:1d:1c:f5:e8:af:b7:4a:da:0c:71:
59:de:7b:15:f8:ed:b6:f4:fe:cc:73:5f:77:e6:16:62:73:c7:
f2:9d:2f:88:ab:49:83:a4:b5:62:c0:71:95:6f:03:86:6e:61:
8a:d6:89:7b:f6:9c:05:ff:4a:e7:ed:85:e0:df:bc:1b:9c:b2:
f2:13:78:28:69:22:85:60:8b:d8:a9:ee:5f:d7:14:75:51:57:
88:fe:33:2b:63:dc:ca:de:ae:1c:e9:9a:f3:b5:6a:55:f7:f1:
40:ae:99:3d:c2:e9:0e:d4:7b:66:5d:b9:0d:e7:f4:93:be:75:
f3:bb:62:bd:60:06:2c:ba:a7:7c:94:4b:32:01:0a:7e:07:3d:
bf:39:39:2d:1c:8a:a3:d3:2f:70:ae:4f:ac:46:d0:d8:34:e9:
cd:fd:15:84:c2:1f:47:33:e3:13:b5:25:fa:58:f2:9c:01:74:
dd:7e:8f:56:59:b3:39:08:f0:79:52:b8:62:af:fa:6d:4f:7f:
65:cd:4d:c6:f2:72:b7:22:bf:c6:e8:26:dd:21:23:ae:ce:a6:
ff:ca:7e:74:1c:22:7b:b6:1f:39:93:ec:44:d9:f3:e9:b0:71:
35:d1:e3:69:3a:00:01:c0:85:ca:c7:ef:9c:8a:65:bf:a6:ae:
1a:b1:ff:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:01:20 2026 by rpki-client