Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: a2ks3f3TwsJA7JufS700IDIr60/huF58qLoFRjaV5tU=
Subject key identifier: 82:21:CF:C8:A4:3D:66:90:59:63:AE:C7:1A:D7:FE:06:09:1A:EB:73
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 019D27A8EB118827E46C8642D9292405A63B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0E98
Signing time: Thu 26 Mar 2026 01:01:14 +0000
Manifest this update: Thu 26 Mar 2026 01:01:14 +0000
Manifest next update: Fri 27 Mar 2026 01:01:14 +0000
Files and hashes: 1: UUfjp8DsgnyXyAKHpxYY24nPV9k.roa (hash: z2A5oacpxbaOodlp6c1sfM8uFMWqz0u+N2Xu9qkatg0=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: zLEgFOx2abTLsjfHy5/7Lpq32vQnkTTcKTqzw+9SbDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:eb:11:88:27:e4:6c:86:42:d9:29:24:05:a6:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Mar 26 01:01:14 2026 GMT
Not After : Mar 27 01:01:14 2026 GMT
Subject: CN=8221cfc8a43d66905963aec71ad7fe06091aeb73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5b:9d:72:9c:88:92:72:7b:b5:99:b8:df:5a:
fd:46:04:57:c7:ff:47:ef:db:71:54:d1:9d:75:12:
7d:24:a7:f4:a3:5d:62:a5:7e:f8:ab:33:12:61:26:
8a:44:55:0e:87:ea:ae:80:83:50:01:ca:e3:ed:4b:
86:6d:90:a1:03:92:9b:1f:6e:cf:9c:da:5e:4a:b8:
4c:50:89:b3:c0:49:ca:31:a6:d3:2a:96:37:bd:6e:
2d:db:b7:37:f6:0d:02:f4:6c:e2:c2:33:60:7a:db:
64:63:df:ed:71:86:1a:22:f7:ad:6e:4d:0e:98:53:
38:27:e3:a8:e2:58:9a:48:ca:6d:50:a3:e5:b5:34:
93:ed:c1:ed:90:cb:cb:30:3d:5c:81:67:b7:e0:1c:
41:7c:c5:e7:d2:56:73:9e:b2:79:18:ad:81:b5:5d:
d3:2a:65:4c:ea:71:2e:1b:bd:eb:01:06:04:99:f0:
f1:72:c0:5e:a2:3b:10:9d:d7:5c:05:36:25:8a:44:
e6:1c:1b:61:3f:fe:e4:f6:d8:1b:6f:4f:16:55:51:
df:6c:2a:e0:07:f1:6d:ec:f3:f8:6e:95:cd:39:02:
e7:9a:ac:19:3a:08:ab:21:5a:ec:90:f8:f2:03:26:
28:8a:d2:5c:88:57:74:4d:22:5c:f9:96:7a:c5:af:
1a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:21:CF:C8:A4:3D:66:90:59:63:AE:C7:1A:D7:FE:06:09:1A:EB:73
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:c4:1d:c5:c6:5b:b2:c1:d0:a3:aa:19:53:08:ea:e1:e8:d7:
c6:6a:26:91:29:d1:f3:26:72:c7:53:dc:52:88:1b:5d:f2:b1:
be:5e:80:ad:45:d4:5b:5d:9f:25:9f:38:05:8d:19:aa:83:86:
0c:e3:76:9e:7f:0b:54:09:2f:2c:0f:b0:8c:ef:f4:2d:91:fa:
7f:5f:2b:75:d9:8d:fa:e8:07:64:29:b6:1e:60:59:20:06:f0:
91:b6:e5:2a:51:be:2c:49:94:b5:84:62:ae:af:20:c3:27:6c:
08:85:f1:7e:df:63:5b:b0:1d:a6:7d:6d:23:03:39:19:ff:b0:
6d:6e:ca:c3:e8:5d:8d:a7:60:5b:6a:3c:c6:5e:00:0a:89:c8:
33:f3:69:af:00:f7:3c:e3:0e:2f:e8:ac:9e:40:83:f1:9c:c6:
a4:9e:97:45:ab:bb:00:fd:1a:9e:9b:46:6e:f2:08:4e:bf:c0:
87:9a:c9:ee:26:32:98:c5:52:f9:a5:6e:ba:28:21:a3:55:6a:
9e:fb:1f:fd:de:b4:18:ff:a4:a1:7c:a9:86:c2:12:3a:a4:17:
9a:2b:76:91:12:a8:88:b3:8d:32:78:91:cd:15:4c:f7:d1:82:
73:c0:40:8a:44:3a:57:87:e4:de:b4:8e:57:00:56:15:71:7d:
0a:ce:ff:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:51:13 2026 by rpki-client