Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
File: yBi-GcEJgPFbze4HZpAHhJGoqiE.mft (raw, json)
Hash identifier: OAXhYBfZHNs14IonKlrITPvG067/j5VN6JCwI7Y57qw=
Subject key identifier: AA:D0:08:41:80:EC:07:00:8E:54:8C:A5:1B:9C:9B:47:DB:76:81:45
Authority key identifier: C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
Certificate issuer: /CN=c818be19c10980f15bcdee076690078491a8aa21
Certificate serial: 019D270459835A9C9416A19810B0E57CFDF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
Manifest number: 0EB4
Signing time: Wed 25 Mar 2026 22:01:29 +0000
Manifest this update: Wed 25 Mar 2026 22:01:29 +0000
Manifest next update: Thu 26 Mar 2026 22:01:29 +0000
Files and hashes: 1: j-_-OLKpvCpzT4pF0J3tbQLvCOk.roa (hash: Suu8haJW2xwfl33lBXaWemEMPHtEd4FyCegVEYmcMLQ=)
2: yBi-GcEJgPFbze4HZpAHhJGoqiE.crl (hash: jk9A0uQWCqWR/P4nnjkLt5PF63yeAWbEJUQ+MnKaxAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:59:83:5a:9c:94:16:a1:98:10:b0:e5:7c:fd:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c818be19c10980f15bcdee076690078491a8aa21
Validity
Not Before: Mar 25 22:01:29 2026 GMT
Not After : Mar 26 22:01:29 2026 GMT
Subject: CN=aad0084180ec07008e548ca51b9c9b47db768145
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:60:a9:59:a6:95:c2:a4:94:be:68:2a:3b:8e:
3e:18:08:cf:b8:1e:79:1b:e1:e5:81:ff:58:00:f3:
2f:ee:31:ea:58:8a:7d:45:ce:5d:8c:ed:74:a5:0b:
c3:d6:a9:60:04:f8:77:6c:eb:3c:9e:1d:84:91:5e:
7b:1e:df:8a:a2:23:7a:68:9a:6e:f3:9d:dc:b9:b0:
9d:f2:be:14:5c:fb:48:63:3b:7f:35:86:2c:e4:c4:
e5:67:f9:40:7a:76:4f:08:3e:c1:03:38:57:7a:46:
6d:1a:5a:41:df:f9:49:8d:9f:ca:0c:4f:37:63:6c:
fd:bf:c7:c5:ec:b6:3f:a0:e6:ca:04:ea:b8:39:2c:
80:c9:36:dd:82:8f:8d:de:7b:e2:8e:af:d1:e3:16:
ca:71:03:97:cc:70:4b:82:84:0d:fe:f4:ca:40:cf:
2d:94:46:da:ca:29:d9:4b:e1:47:cb:80:cf:0e:2a:
37:ef:68:5c:1e:15:c6:a3:88:e1:02:ec:94:18:91:
48:a3:e9:db:13:75:13:cb:8b:a5:ec:f0:fa:61:26:
0d:17:2d:ea:a8:3b:a4:62:a8:74:35:d3:fe:0f:1a:
8d:84:6a:47:dc:2e:46:ca:be:66:0b:ea:9b:22:43:
40:27:d2:55:58:f8:0a:77:f4:fa:49:e5:7e:95:65:
b8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:D0:08:41:80:EC:07:00:8E:54:8C:A5:1B:9C:9B:47:DB:76:81:45
X509v3 Authority Key Identifier:
keyid:C8:18:BE:19:C1:09:80:F1:5B:CD:EE:07:66:90:07:84:91:A8:AA:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yBi-GcEJgPFbze4HZpAHhJGoqiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/8840f0-271e-4527-a413-6c4719bcf9ee/1/yBi-GcEJgPFbze4HZpAHhJGoqiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:dd:24:c7:6d:96:e6:00:60:c5:49:3e:0a:99:aa:62:de:a4:
57:0c:80:84:74:e8:b2:17:19:ed:eb:c7:2e:fd:2d:fd:7b:a4:
c6:f3:43:b7:2c:58:8d:37:d6:a1:17:42:da:a6:d7:e6:7a:6b:
12:2f:bc:93:40:17:98:75:64:61:dd:01:4e:4e:fd:ad:5c:e1:
95:27:45:5e:f3:c5:17:e4:44:0c:10:27:ae:5c:51:43:9e:14:
0a:77:19:d7:93:0f:a6:40:6a:64:d2:bb:f7:00:21:5e:e3:f8:
51:39:e5:e0:2f:be:6a:af:31:de:a9:fd:f4:d7:3c:20:ab:56:
3d:91:35:a2:29:85:31:19:e7:c7:05:60:be:04:50:15:85:53:
5e:9c:4b:41:11:98:b9:ca:b3:ac:ca:84:10:73:dd:8a:e5:ce:
42:5b:6d:af:c1:91:f2:3a:2c:c9:be:d8:02:01:72:f1:1d:f5:
1f:5f:27:3b:e5:b6:16:cc:e8:3d:2e:3b:6c:ac:cd:f9:39:91:
88:fc:21:49:3e:77:9a:f5:38:c6:c6:b9:98:dd:5b:fd:78:09:
e7:0e:5a:fa:62:32:cc:81:b4:6b:4a:48:83:ce:a6:e9:30:06:
6c:73:c4:74:f4:09:2d:2c:c5:dc:ab:7c:fb:4a:a3:de:83:a6:
41:98:21:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:57:17 2026 by rpki-client