Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
File: Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft (raw, json)
Hash identifier: wediCsQq+OW7qjo057Bz+MGuaCdBMN2KZJpsIyD/LEw=
Subject key identifier: 0E:18:D6:99:FA:14:47:E6:48:CE:0E:34:D4:6B:A4:5C:9B:D7:88:13
Authority key identifier: 62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
Certificate issuer: /CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Certificate serial: 019D3A544AAD53AE3239CF6FBB9EDB01F304
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 16:01:35 +0000
Manifest this update: Sun 29 Mar 2026 16:01:35 +0000
Manifest next update: Mon 30 Mar 2026 16:01:35 +0000
Files and hashes: 1: 2gO3AZ0wf5H55So82hrCWwWbVuI.roa (hash: U66k5TcWQ7PD9bBki0lUlKhjoZI0ZIMVHk6yyW5wKeQ=)
2: Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl (hash: 0EEI3zfCV1Y9mSpMFOqNuozroIwKQ3q+hzIuhqueJgQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:54:4a:ad:53:ae:32:39:cf:6f:bb:9e:db:01:f3:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Validity
Not Before: Mar 29 16:01:35 2026 GMT
Not After : Mar 30 16:01:35 2026 GMT
Subject: CN=0e18d699fa1447e648ce0e34d46ba45c9bd78813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:a7:5d:36:c1:8f:eb:89:5e:87:ac:f1:c0:d7:
e2:e1:01:16:8d:de:51:33:73:16:17:c7:bb:a6:c0:
36:25:ce:1e:8a:9d:f3:b5:c6:71:0c:2e:92:83:e2:
b1:c5:e4:5f:52:f1:fc:b6:6f:73:a7:ab:8d:78:b2:
07:4d:bc:f7:21:82:f8:5c:4c:82:37:0d:90:75:66:
e8:d4:fb:98:2f:04:3d:23:43:2e:e1:ef:9f:79:4b:
20:79:2a:83:6c:bd:8a:7a:2e:44:a6:24:80:31:ca:
26:59:66:a0:a6:b0:9e:71:db:f5:0b:4a:4f:63:23:
8a:0b:ef:24:fc:98:f3:6e:6f:94:2b:af:a4:ee:98:
1e:a3:73:17:3b:ca:a1:b2:54:f7:d6:fe:f1:6c:32:
f1:bc:b0:33:0f:27:81:6a:27:89:ec:ed:e7:9a:d3:
e7:ad:76:95:b6:41:53:13:0c:0c:89:79:a0:96:fe:
78:e6:91:b4:6f:11:39:17:c5:00:b4:e0:0f:2e:20:
75:ec:a9:85:7f:27:47:84:fe:d0:e5:a3:fe:ed:f6:
75:3d:15:9c:96:d9:fe:be:10:cb:45:70:c6:73:3f:
b8:1e:52:dd:ae:1c:cd:4c:eb:45:78:2a:91:97:c4:
22:ce:23:3d:e1:81:9c:d3:30:12:f0:7a:a5:d7:f2:
30:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:18:D6:99:FA:14:47:E6:48:CE:0E:34:D4:6B:A4:5C:9B:D7:88:13
X509v3 Authority Key Identifier:
keyid:62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:3f:50:dc:fd:c0:10:31:b1:8a:a6:39:80:8b:e8:cc:5d:58:
17:a7:ca:2a:7c:ab:e0:8e:e5:18:61:e6:f3:33:ff:46:95:3e:
7c:49:f7:fe:f9:dc:1e:d8:1b:ea:49:68:4b:43:cc:b5:1b:32:
48:88:bb:bd:24:0f:3a:09:43:2c:75:ff:66:2b:9c:d1:7e:3d:
dc:c9:77:bf:87:2e:2b:eb:49:cc:ba:8c:8c:a4:b2:c6:a4:ea:
50:ed:8a:ea:52:e6:61:d7:cd:4c:09:63:5a:d3:dd:a8:ec:54:
7d:f2:5d:da:78:91:70:29:0a:9a:56:f3:c0:dd:36:20:2a:6e:
73:c8:31:b2:0a:66:af:b3:fc:76:4e:86:53:a5:e5:58:c9:8f:
44:d0:3e:0c:48:30:0b:65:36:14:20:9e:bc:e1:4e:1a:83:db:
56:4f:00:9d:60:77:e7:5a:a6:e8:91:9f:ba:9a:b8:fd:54:b3:
6c:ba:bd:db:40:79:03:84:bd:17:9d:dd:8d:70:29:69:79:10:
ba:11:88:b4:2c:d1:42:67:03:84:d8:62:23:6e:7f:0e:2f:7f:
3b:44:13:59:30:bd:60:ec:13:de:d0:1d:5f:8c:b3:af:98:ea:
81:97:a5:90:75:e6:61:d8:52:f6:71:95:aa:33:69:16:8d:be:
37:67:55:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:29:20 2026 by rpki-client