Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
File: YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft (raw, json)
Hash identifier: zQ7eUPI9hvI0TZEICRV4QR84UtkAD4uHqgiAMwH+iaM=
Subject key identifier: 43:86:BF:7E:FE:4B:AB:D1:82:C2:A9:DC:DB:93:74:B2:8D:0D:5B:83
Authority key identifier: 61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E
Certificate issuer: /CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e
Certificate serial: 019D26960E8ABE8A92D897C33D2098AB9AF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 20:01:01 +0000
Manifest this update: Wed 25 Mar 2026 20:01:01 +0000
Manifest next update: Thu 26 Mar 2026 20:01:01 +0000
Files and hashes: 1: X_VAzsonJf2-Y0J7PUgtiVvr18s.roa (hash: omFujTcefEd3WWyYkvlLAE/INtwxFEvZh0pqgOeoURc=)
2: YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl (hash: jXLdgVBDfaWg9g2Xb0qXV2L4FdYalJvGS60UO3SN4s0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 20:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:0e:8a:be:8a:92:d8:97:c3:3d:20:98:ab:9a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=612aef4c7bfe7e072f62d2dd505ab57e37ea385e
Validity
Not Before: Mar 25 20:01:01 2026 GMT
Not After : Mar 26 20:01:01 2026 GMT
Subject: CN=4386bf7efe4babd182c2a9dcdb9374b28d0d5b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:36:9c:d4:64:47:27:d3:cc:98:4a:e1:ae:3e:
b4:17:b4:81:90:a0:c8:cd:20:fd:eb:ce:f8:21:ff:
5f:74:fd:81:67:13:a0:11:15:d6:89:fe:5a:07:61:
3b:f7:4f:29:65:71:55:22:50:83:bc:57:7c:de:94:
26:4e:d5:7f:c8:e3:22:a5:09:05:f5:f0:b0:05:fe:
84:a1:81:75:80:8b:44:e0:d4:70:d9:3a:4e:cb:7e:
a8:be:27:35:58:d3:cc:b4:6e:9d:74:b5:f6:9f:d1:
e5:5a:f8:e4:14:43:66:71:18:ab:42:e3:b5:c2:42:
5f:68:89:3e:b1:e2:82:14:2a:49:d1:1c:bb:72:1c:
26:bb:6b:13:bc:d7:23:da:80:bf:c1:20:a3:a8:1d:
b4:60:3d:d4:08:ff:55:ff:d7:c4:65:46:f8:63:89:
64:77:5f:b0:00:f3:aa:bc:7a:c2:a0:bc:a6:90:86:
c7:fb:64:f2:ea:70:0d:c4:9d:2a:75:f5:8e:0d:58:
ad:c9:bd:15:33:e0:75:2f:2a:c3:42:e8:8a:c4:a4:
e8:b9:48:48:01:df:ab:eb:aa:bb:22:80:bc:51:c5:
dd:b3:ee:c2:0a:28:72:82:95:23:b1:bd:cd:6e:e5:
af:bc:8a:52:02:d6:55:0c:d2:c8:69:33:5b:40:c2:
a4:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:86:BF:7E:FE:4B:AB:D1:82:C2:A9:DC:DB:93:74:B2:8D:0D:5B:83
X509v3 Authority Key Identifier:
keyid:61:2A:EF:4C:7B:FE:7E:07:2F:62:D2:DD:50:5A:B5:7E:37:EA:38:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YSrvTHv-fgcvYtLdUFq1fjfqOF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7207a9-27f4-44ec-bf78-a207c7a19ed2/1/YSrvTHv-fgcvYtLdUFq1fjfqOF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:36:b1:67:56:90:84:cb:42:94:e3:83:08:a8:90:bc:0b:83:
c8:ce:fd:ad:bc:b0:76:85:0e:f8:81:ba:d2:b0:02:45:f0:f9:
fb:4b:9d:e6:e2:4d:80:85:cf:23:06:a1:b3:e2:f1:df:3b:d2:
db:a2:3d:9e:54:a8:7e:ad:81:70:04:83:b9:76:f2:26:b2:22:
0c:a9:c7:e0:e5:81:af:f4:04:88:65:34:42:02:4c:5f:94:a1:
0c:7a:16:1f:81:42:48:94:c7:e1:f7:5c:e7:ca:1e:e9:6e:2e:
78:ab:b1:9f:5d:22:1b:96:5d:f9:63:90:c3:8b:58:c4:b3:70:
e9:5f:57:2a:92:3d:18:09:52:a3:af:cf:00:9b:cb:f1:2e:71:
f4:de:0b:72:7f:6b:69:5c:1a:54:69:f2:77:ea:b1:a5:41:a3:
9b:0d:56:7a:98:79:1f:f3:c2:d7:e7:29:53:17:3f:32:4d:a5:
9c:e4:c6:26:f6:9e:b9:62:5e:de:21:59:fa:ce:16:63:d5:b4:
24:9c:7d:e8:77:b4:aa:bd:21:4a:9e:9d:9c:86:82:6f:be:ba:
a2:7a:9d:48:fc:69:23:61:3e:55:e2:44:00:2e:7a:b2:74:7e:
f9:55:be:84:fa:39:2e:da:6c:d1:e9:ef:cc:43:2e:68:3e:c8:
60:91:d5:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:09 2026 by rpki-client