Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
File: Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft (raw, json)
Hash identifier: DqC6IgiZRKcsDXDW8KZLyXWbqFG4jmHbTjeU/OzN+qo=
Subject key identifier: 03:C5:48:38:76:2E:0B:21:50:CA:95:FC:81:75:4A:D6:3E:F0:5E:5A
Authority key identifier: 62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
Certificate issuer: /CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Certificate serial: 019EB8B3F3CD87A29CB7364D4C52CCA95B3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
Manifest number: 1954
Signing time: Thu 11 Jun 2026 22:01:01 +0000
Manifest this update: Thu 11 Jun 2026 22:01:01 +0000
Manifest next update: Fri 12 Jun 2026 22:01:01 +0000
Files and hashes: 1: 2gO3AZ0wf5H55So82hrCWwWbVuI.roa (hash: U66k5TcWQ7PD9bBki0lUlKhjoZI0ZIMVHk6yyW5wKeQ=)
2: Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl (hash: ZtotpRWceW6RrxNsR/1eUIrQF2McqzCS80hJ8i0VyDw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:b3:f3:cd:87:a2:9c:b7:36:4d:4c:52:cc:a9:5b:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Validity
Not Before: Jun 11 22:01:01 2026 GMT
Not After : Jun 12 22:01:01 2026 GMT
Subject: CN=03c54838762e0b2150ca95fc81754ad63ef05e5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:aa:c1:15:ec:ca:11:26:04:27:3f:11:21:7d:
25:a4:36:83:a0:9c:64:f1:20:63:64:fa:08:2c:b7:
ac:8e:32:9e:99:82:61:46:28:d9:37:3a:1e:a9:31:
3f:c3:47:ca:9a:12:1d:a2:60:54:13:20:2a:c1:bc:
18:e0:81:55:67:81:71:71:e9:d9:51:72:21:1b:4d:
7e:22:8b:c6:4d:99:40:f9:29:b8:68:66:10:e3:ac:
19:38:d2:77:33:1a:07:04:75:0c:d7:ff:8b:c1:7a:
42:09:b7:4e:9c:d1:8c:fc:f2:75:5a:10:31:e9:a4:
49:58:27:83:75:c8:34:59:ba:f1:35:e1:86:49:b3:
c3:a7:70:42:0e:dd:c6:ed:2e:91:b0:32:8d:80:86:
c5:e6:1a:13:49:a4:64:3d:14:d7:f0:ba:80:5e:bc:
25:41:50:ff:77:04:4f:e8:13:f0:9b:95:88:e2:da:
a2:34:dd:da:6c:5c:79:78:7e:f0:4d:98:78:e6:83:
2a:78:60:c3:db:9c:cd:b0:c8:dc:b0:a1:99:c8:ac:
ca:63:19:da:bc:7a:9f:68:56:67:13:91:46:28:9d:
c6:bb:09:74:b8:b9:1f:6c:df:dd:56:1e:83:60:f4:
6e:e6:63:9f:93:d1:47:8b:26:7e:d5:6f:c1:cd:b6:
4a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:C5:48:38:76:2E:0B:21:50:CA:95:FC:81:75:4A:D6:3E:F0:5E:5A
X509v3 Authority Key Identifier:
keyid:62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:26:05:36:7a:12:9e:db:da:7d:28:56:41:81:55:49:f9:b2:
26:fa:1d:0f:3e:d2:32:d2:ea:2a:f4:c1:0a:e0:56:d0:82:21:
a1:a8:f2:58:63:0e:d6:f6:bb:ec:6e:18:9f:09:24:0c:51:bc:
e2:9f:1a:ab:25:49:d5:2e:0d:5b:01:0b:0f:28:1a:01:51:45:
af:d3:07:b4:9c:12:c0:67:04:61:84:39:46:0e:1f:42:2e:ca:
ec:d7:6f:de:c7:06:0d:6f:73:26:d9:ac:46:26:91:42:83:2c:
8b:f2:a6:97:4c:fe:ed:df:7f:c2:51:3d:c3:77:0b:7b:56:33:
c6:78:2b:13:ca:64:96:5c:c7:bd:da:2f:f8:92:84:fa:39:e7:
af:44:0c:f6:4c:e7:a0:9c:3e:d4:11:41:ad:4d:3a:b1:92:46:
68:9a:d0:9b:72:ea:6b:ae:1d:cc:65:47:2c:07:af:5f:65:8e:
3f:19:34:5b:be:16:45:ae:ef:c3:35:57:34:ee:9c:d1:50:fa:
a6:45:ac:0e:01:e0:62:f9:db:26:8b:d4:56:fb:ec:39:bd:98:
bd:9d:cd:cc:7c:00:5a:0f:34:b1:ac:c9:f1:00:b9:da:5e:16:
26:d4:15:e3:0b:11:9b:fc:da:70:3f:c3:46:7d:43:a7:17:09:
55:80:5a:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ64s/PNh6KctzZNTFLMqVs6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyZDZlNGJmZmEyYjRkMWJjNDBlOTJiMzBhZjBkMjFhNzRi
MGJiZDAwHhcNMjYwNjExMjIwMTAxWhcNMjYwNjEyMjIwMTAxWjAzMTEwLwYDVQQD
EygwM2M1NDgzODc2MmUwYjIxNTBjYTk1ZmM4MTc1NGFkNjNlZjA1ZTVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwKrBFezKESYEJz8RIX0lpDaDoJxk
8SBjZPoILLesjjKemYJhRijZNzoeqTE/w0fKmhIdomBUEyAqwbwY4IFVZ4FxcenZ
UXIhG01+IovGTZlA+Sm4aGYQ46wZONJ3MxoHBHUM1/+LwXpCCbdOnNGM/PJ1WhAx
6aRJWCeDdcg0WbrxNeGGSbPDp3BCDt3G7S6RsDKNgIbF5hoTSaRkPRTX8LqAXrwl
QVD/dwRP6BPwm5WI4tqiNN3abFx5eH7wTZh45oMqeGDD25zNsMjcsKGZyKzKYxna
vHqfaFZnE5FGKJ3Guwl0uLkfbN/dVh6DYPRu5mOfk9FHiyZ+1W/BzbZKeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAPFSDh2LgshUMqV/IF1StY+8F5aMB8GA1UdIwQY
MBaAFGLW5L/6K00bxA6Sswrw0hp0sLvQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDIt
ZjE1NTU0ZmE0YjBiLzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi84NzY3NTAtYTIzMC00ZjI2LWI0NDItZjE1NTU0ZmE0YjBi
LzEvWXRia3Zfb3JUUnZFRHBLekN2RFNHblN3dTlBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlSYFNnoS
ntvafShWQYFVSfmyJvodDz7SMtLqKvTBCuBW0IIhoajyWGMO1va77G4YnwkkDFG8
4p8aqyVJ1S4NWwELDygaAVFFr9MHtJwSwGcEYYQ5Rg4fQi7K7Ndv3scGDW9zJtms
RiaRQoMsi/Kml0z+7d9/wlE9w3cLe1YzxngrE8pkllzHvdov+JKE+jnnr0QM9kzn
oJw+1BFBrU06sZJGaJrQm3Lqa64dzGVHLAevX2WOPxk0W74WRa7vwzVXNO6c0VD6
pkWsDgHgYvnbJovUVvvsOb2YvZ3NzHwAWg80sazJ8QC52l4WJtQV4wsRm/zacD/D
Rn1DpxcJVYBagQ==
-----END CERTIFICATE-----
Generated at Thu Jun 11 23:57:25 2026 by rpki-client