Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
File: Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft (raw, json)
Hash identifier: vqOr0fsEwVSvL5jXkyJ0tDQGeg81RDT30fYpE3L+4h0=
Subject key identifier: 87:76:B1:9C:DC:7F:55:75:8C:A6:33:BA:E1:84:1B:77:49:04:DD:A1
Authority key identifier: 63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7
Certificate issuer: /CN=6359a649b036103e80a3ce8f3d1b0138a60581d7
Certificate serial: 019D39407944E88DF4DAA9311B9C408D2D4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
Manifest number: 0CA0
Signing time: Sun 29 Mar 2026 11:00:19 +0000
Manifest this update: Sun 29 Mar 2026 11:00:19 +0000
Manifest next update: Mon 30 Mar 2026 11:00:19 +0000
Files and hashes: 1: T4MHAA0kaBLSaNbR8DoNuRmsGR8.roa (hash: VtgvY+pr4Qh9U0W3p9dUNdOupQfVK9H5yjxhbie2llY=)
2: Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl (hash: d2W8occ8VVCKPIr9jthQ5E+mlVJE6wGtOmBugIQEVG8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:79:44:e8:8d:f4:da:a9:31:1b:9c:40:8d:2d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6359a649b036103e80a3ce8f3d1b0138a60581d7
Validity
Not Before: Mar 29 11:00:19 2026 GMT
Not After : Mar 30 11:00:19 2026 GMT
Subject: CN=8776b19cdc7f55758ca633bae1841b774904dda1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:43:8e:a7:5f:a2:65:a3:b3:43:89:10:3b:9e:
f4:30:37:0c:60:42:e6:07:d2:d1:14:a9:26:ee:87:
7e:2a:e6:cb:2e:7e:e5:ee:b0:71:80:4b:78:55:7d:
77:ec:61:40:af:4d:da:8f:10:b6:b5:e1:96:89:f5:
42:99:9d:9e:7e:d8:15:51:ff:13:03:41:4a:68:9a:
6a:0a:4d:3d:1c:db:d7:42:c6:a5:57:bf:1a:ad:b8:
0a:c8:2d:ec:25:15:6d:2f:d5:1b:f2:40:90:af:c5:
7a:12:f5:59:68:71:c5:38:ce:6c:d1:15:e4:49:50:
e3:0d:d2:4e:62:07:1d:04:00:2a:1b:02:64:45:04:
b2:64:2c:50:25:3b:0d:f9:70:fd:c1:7d:24:e9:d3:
61:8c:1c:9e:4b:74:6d:2e:39:b9:b6:1e:23:f7:72:
1b:79:41:fb:84:10:12:6d:65:07:2f:69:26:d2:90:
1e:a9:07:50:1c:da:20:79:7f:6f:6b:05:b7:c0:5f:
3c:d5:20:77:d3:96:d9:77:43:f8:af:a5:4a:9f:a6:
bb:fd:a9:aa:25:9b:2d:79:a0:55:fc:25:03:e7:a3:
df:84:74:72:97:e4:ba:4c:51:15:2d:64:96:b0:c3:
c5:67:ef:bc:ce:de:ca:d0:47:88:2f:d6:39:e5:95:
08:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:76:B1:9C:DC:7F:55:75:8C:A6:33:BA:E1:84:1B:77:49:04:DD:A1
X509v3 Authority Key Identifier:
keyid:63:59:A6:49:B0:36:10:3E:80:A3:CE:8F:3D:1B:01:38:A6:05:81:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/4574bc-296d-4a58-aef7-d2bbd949c452/1/Y1mmSbA2ED6Ao86PPRsBOKYFgdc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:65:f3:e7:20:40:b6:86:05:61:a1:2b:4e:ab:49:e3:55:2f:
71:ba:25:33:3d:69:c9:7d:15:4a:27:a1:49:88:fc:68:50:a5:
7e:c1:19:29:c6:0f:89:49:1c:60:26:f4:98:7a:a6:f3:a8:19:
fa:ce:b3:61:71:ec:b7:a2:e4:ea:6e:fd:f3:a7:7c:f3:0e:e9:
45:72:36:b5:86:09:c4:b3:34:95:c2:a9:6b:b7:66:da:fa:eb:
5e:b5:43:e2:c6:4c:c5:88:da:27:b9:fb:3d:fc:25:da:7d:f4:
94:7f:7c:55:4f:0a:d4:c5:7e:c3:a4:af:34:41:94:72:98:77:
6a:7a:85:84:8e:34:97:b9:07:74:81:1d:09:b2:b4:8e:75:66:
0f:e2:99:60:df:53:77:d5:dc:1f:82:d6:c2:69:da:41:c4:59:
e7:62:8a:bc:40:08:57:d9:50:f1:e9:4f:94:7b:15:1b:1d:22:
f6:9c:cc:ab:87:0a:e8:8e:70:7b:ef:9f:ac:c6:57:20:3d:0a:
4e:4b:39:9e:a2:bd:25:ab:8d:f0:ba:6e:4a:97:48:d8:77:d7:
6d:9e:5a:ce:a6:e2:4a:f5:31:75:00:c7:74:67:d7:03:a8:2b:
06:51:d5:ec:e8:36:bf:00:3e:ec:c0:c0:e8:5f:f5:b5:e7:c5:
da:65:12:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:44:50 2026 by rpki-client