Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: FwPE1Gom0FRUUm/0frTGu9JghaDP7IA+1GeRvxZTmCY=
Subject key identifier: 43:B5:16:F3:1B:72:0C:13:1B:9B:C3:6F:50:22:80:03:BD:3D:7D:2D
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 019D2816AF7BF47D778905D48D3E2EF69613
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 06AF
Signing time: Thu 26 Mar 2026 03:01:08 +0000
Manifest this update: Thu 26 Mar 2026 03:01:08 +0000
Manifest next update: Fri 27 Mar 2026 03:01:08 +0000
Files and hashes: 1: Rmbqki6sfeVONmSCUKVbSwnLV2w.roa (hash: m02OGs1ERDq2Tep5VBBDirUwK9M85zv/SGcl5/T9Gng=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: LeYwP+tqrxIB39qsqNE46Cj7yTfip+jTxxR0iOf/O48=)
3: YrjDjaI3_Q6KPQ90f8RoYBEvTqI.roa (hash: VmD17BnA3G7W1dMkZraFPy0h1sdRJ/jQerJj3HVgUI8=)
4: mEMBpqCiAZX-66IM2v28OLBYmaU.roa (hash: D0q/tQQJTMQWefAkqZBJ1Tlw8AdCPKqxL86ZtoZ1fgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:af:7b:f4:7d:77:89:05:d4:8d:3e:2e:f6:96:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: Mar 26 03:01:08 2026 GMT
Not After : Mar 27 03:01:08 2026 GMT
Subject: CN=43b516f31b720c131b9bc36f50228003bd3d7d2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:31:12:f6:ae:42:9c:ca:ec:7d:7d:ab:63:d0:
88:04:98:94:9b:5c:bb:2b:2f:7d:a5:e4:e8:fb:f6:
74:e2:16:4d:c6:44:6b:46:17:4f:64:d9:50:96:8f:
37:c0:f0:9e:5f:1d:2b:bb:14:2e:b5:a9:a8:f4:80:
44:75:72:13:e3:57:78:22:c9:0c:0e:81:38:98:8d:
85:01:0e:b9:23:5c:53:5d:80:08:d4:d9:37:00:79:
66:27:5e:a9:5a:13:be:29:c4:ec:a6:cd:da:85:75:
05:1f:d5:50:0a:f5:0a:f8:1f:66:f2:26:2e:03:19:
fb:ed:fe:a7:78:69:0b:11:6c:1f:bf:54:72:96:33:
9c:f3:63:87:c6:a0:1d:e9:2d:a6:90:8a:d7:e4:24:
6f:7f:33:98:5e:17:57:57:1b:c8:d6:d2:91:cc:c3:
13:70:db:7c:ff:d2:cc:d0:bb:44:e1:a9:ca:2d:39:
fe:8d:24:fe:ff:dd:4d:dc:f7:6d:31:27:65:65:72:
51:49:da:11:1e:df:a2:a9:7d:60:88:2d:dd:1b:70:
e7:3d:bb:28:06:48:b0:42:71:c3:5e:55:df:92:c7:
89:de:84:b9:44:7c:85:09:d1:b5:57:47:01:eb:7f:
5a:72:81:11:34:c9:73:f4:9d:ab:ce:c6:a9:6a:7a:
7a:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:B5:16:F3:1B:72:0C:13:1B:9B:C3:6F:50:22:80:03:BD:3D:7D:2D
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:6e:37:f6:b3:96:3e:8f:1a:d1:3d:67:a4:d1:20:21:63:83:
99:cd:ff:29:2b:45:1b:18:10:e4:d6:d3:a7:d0:77:79:59:52:
b5:7e:00:a3:7f:bc:18:92:6d:77:f0:56:60:4f:c4:22:bd:28:
b6:8d:df:ac:7c:6d:94:c7:e4:65:2f:8d:b2:bc:9d:c2:f4:7a:
f7:ce:b5:7e:9e:92:5b:af:8a:7b:7d:a3:9d:14:50:03:c6:92:
fc:e4:ea:1c:1a:71:0b:ba:de:00:45:33:ef:e5:8b:21:46:5b:
47:a5:5a:4b:da:75:38:17:87:50:12:e6:18:23:23:ae:96:eb:
35:cb:dd:b3:b2:da:a9:43:36:e2:91:4a:ca:51:75:95:c0:2a:
3b:35:d5:3b:59:46:9a:47:4e:bc:bf:3c:01:9c:f8:24:d4:ee:
4a:50:57:43:04:cc:d2:58:82:db:6a:40:4f:5e:3c:89:56:aa:
b0:76:a8:a5:9a:29:c0:18:c7:b3:87:c5:f4:c9:cd:74:fa:bb:
61:4d:6a:f3:4d:95:79:27:aa:26:f4:1f:a5:f7:42:d9:65:38:
8b:3c:46:b6:93:46:96:2e:70:49:bd:15:67:f0:a0:fc:db:6c:
e4:37:7f:a9:31:d1:9f:a7:2e:24:9d:da:d4:68:00:2d:9f:81:
0b:b4:1d:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:28:23 2026 by rpki-client