Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
File: YgTQ-JHcR16nA-be89bq0ej3wtY.mft (raw, json)
Hash identifier: MlH+kjePxaVEEK4nzJ/gl2/1TSq12sOuVvInDn+jwjQ=
Subject key identifier: 66:C7:56:EA:8D:3A:56:5F:46:DD:C0:85:66:A9:A2:A9:2D:2D:70:13
Authority key identifier: 62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6
Certificate issuer: /CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6
Certificate serial: 019D27E00827677F6DC1042F0D2CFC164492
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 02:01:26 +0000
Manifest this update: Thu 26 Mar 2026 02:01:26 +0000
Manifest next update: Fri 27 Mar 2026 02:01:26 +0000
Files and hashes: 1: YgTQ-JHcR16nA-be89bq0ej3wtY.crl (hash: jDEN+IzOCsSc7CRqFbUgyf45nlrk091s4HtRA+n0ar0=)
2: pYLH_zSZV0273TNEBYT79f1lmcg.roa (hash: k3iAoFqBBNaSN0iQRFo4OKQZqr7mC8NP7hdAPA1B80I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:08:27:67:7f:6d:c1:04:2f:0d:2c:fc:16:44:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6204d0f891dc475ea703e6def3d6ead1e8f7c2d6
Validity
Not Before: Mar 26 02:01:26 2026 GMT
Not After : Mar 27 02:01:26 2026 GMT
Subject: CN=66c756ea8d3a565f46ddc08566a9a2a92d2d7013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:14:05:10:e8:01:e7:64:93:57:cc:82:02:36:
9f:cb:fe:46:12:a4:dc:96:c8:5c:aa:26:62:1d:fc:
d4:44:af:1c:80:56:62:9c:0d:43:8e:d7:10:24:f0:
b4:4a:d8:87:48:19:4a:ab:28:6b:c0:37:d4:4c:ed:
b8:7a:81:c9:8c:4f:00:21:df:29:de:99:c5:46:ba:
2f:7e:a6:f3:2b:59:3b:da:63:28:b7:a1:a4:2b:7d:
7e:53:bf:bc:54:cc:03:3f:6a:d4:f2:ce:49:25:67:
20:35:d2:6c:e5:a3:f3:d8:b3:aa:55:1e:60:e6:4d:
0d:94:82:f8:cd:18:6d:03:d5:b2:a5:ff:95:a8:6d:
2c:6a:7c:56:cc:fb:6e:76:24:63:24:3e:6f:4f:8a:
e7:ff:bf:dc:63:59:80:f5:fa:2a:4f:92:5b:15:5b:
1f:9f:2f:5a:17:e9:6d:21:6f:d9:1f:46:ee:a2:73:
e4:ea:65:f6:c6:4f:d4:72:a1:1f:89:3f:91:22:9a:
fa:07:72:54:36:bc:0d:2b:ef:0d:3a:e0:92:71:61:
ea:dd:52:45:55:a1:64:e8:d3:2a:7c:3d:7d:d0:5e:
a5:43:a6:ba:05:6a:c2:ca:51:9d:75:f0:f0:ee:db:
4e:38:fc:32:b1:fa:a1:37:bc:1c:a7:d9:8f:da:40:
f6:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:C7:56:EA:8D:3A:56:5F:46:DD:C0:85:66:A9:A2:A9:2D:2D:70:13
X509v3 Authority Key Identifier:
keyid:62:04:D0:F8:91:DC:47:5E:A7:03:E6:DE:F3:D6:EA:D1:E8:F7:C2:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgTQ-JHcR16nA-be89bq0ej3wtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/f96121-0335-402d-8491-4d88fce32399/1/YgTQ-JHcR16nA-be89bq0ej3wtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:15:66:24:d4:39:19:57:4d:85:23:13:2a:f0:d0:8d:fb:58:
53:91:8b:e7:05:01:36:86:32:62:17:a2:fc:f4:2e:ff:a8:4c:
2b:92:95:75:34:4c:28:94:a1:4a:ec:10:fc:71:da:12:cc:47:
e3:65:3c:99:86:36:62:71:64:9d:76:bc:6a:e0:a4:d3:3c:b5:
4f:28:8c:e4:c4:dc:22:4a:16:a0:78:b7:cc:7d:19:c4:82:74:
90:0e:d5:20:e8:07:57:17:94:3a:fb:92:87:2d:da:af:4e:a1:
40:be:ec:71:b8:4c:bb:fb:87:b6:93:ba:9b:1a:c1:6b:2e:e6:
81:71:8f:e2:24:2d:95:71:ff:f3:9c:49:9a:67:64:12:5c:bf:
15:2a:51:16:4f:0b:83:b0:e6:37:2a:0f:3a:15:df:09:fc:ea:
00:2e:55:fe:0a:7f:05:c1:a6:fb:aa:7e:e8:9e:29:fb:9d:dc:
89:56:3e:64:e8:07:b8:0d:8c:65:ad:4c:27:e2:55:a5:a0:a2:
3d:56:36:48:58:64:a6:2e:fd:7d:5d:6a:49:4f:b9:9d:0a:3b:
e7:b9:4a:33:4d:62:7a:f5:6d:c5:df:16:2d:df:40:5a:bc:93:
b0:d8:f2:13:67:cb:8e:3e:98:b9:41:41:bf:fa:9b:e7:cd:8e:
ce:b6:3f:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:31:03 2026 by rpki-client