Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft
File: YWFHDTm-S6LdXfj6R7FjlieOZwo.mft (raw, json)
Hash identifier: 5B1Z3H4NEipCD+mbUkhcywNXA5BMLI7/qnmB3wFwMMI=
Subject key identifier: 2C:19:49:84:0E:FE:47:5C:00:6C:69:DE:29:52:E4:32:13:D4:61:4C
Authority key identifier: 61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
Certificate issuer: /CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Certificate serial: 019D37C0B0C68A5E03CDE0B9511F927BDB36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft
Manifest number: 1443
Signing time: Sun 29 Mar 2026 04:01:08 +0000
Manifest this update: Sun 29 Mar 2026 04:01:08 +0000
Manifest next update: Mon 30 Mar 2026 04:01:08 +0000
Files and hashes: 1: A2edUifbSShzdJ1Gis-SqBKDNH4.roa (hash: Vy37s5YBxFgEPmxrlCq+GM34iA4Ip0Oc6gKZuBhegNc=)
2: BPuWk6CfIovuR0hN4ab9_Vg8fpM.roa (hash: Io/zg3oPjnrBQRK8TUjjHMBbPc/oa9KH3Wg0gDqsd6M=)
3: G3k1ceVeNrPiVfhClGYQkeWRt20.roa (hash: 230dvF/Eg30qO5iDwzXcq17h9jrnLTrgKjBI6YrKsv0=)
4: LYaVyURA1Hqer0FhBdoqEAlltug.roa (hash: NWGVsZzZidWUl0MNChqOvov8kyqJB0zTJQ1HSXjGZw4=)
5: Ll9Fv1iWjrQbay6dldfz3298BT0.roa (hash: sXUak+rlRyYVaN4/qSmJAIPbXZ1DujHL5AjXw6i4lS8=)
6: YWFHDTm-S6LdXfj6R7FjlieOZwo.crl (hash: QPF0TY4VctsIiu8jSW/npIGRnY1mKVkH7rK7zvXYu7s=)
7: qaLHn37xtjw3qy4avBKJZx30pG8.roa (hash: 37z1vS8oU1I2E/gSNbcyl0yQyKdvAVXffCULUq/vHIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft
rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:b0:c6:8a:5e:03:cd:e0:b9:51:1f:92:7b:db:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6161470d39be4ba2dd5df8fa47b16396278e670a
Validity
Not Before: Mar 29 04:01:08 2026 GMT
Not After : Mar 30 04:01:08 2026 GMT
Subject: CN=2c1949840efe475c006c69de2952e43213d4614c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:66:33:64:25:d6:a1:de:1a:5a:51:02:4b:7c:
54:9b:78:bc:17:38:e1:f5:d6:37:99:cf:39:f5:76:
e1:18:45:e9:a4:76:38:7d:3f:90:b6:47:89:9b:87:
3d:82:19:16:a9:62:69:e1:f3:05:51:be:4e:fd:10:
dc:0e:7f:ee:60:8a:11:c1:9a:a9:08:de:8a:19:0b:
9e:cd:64:bb:0d:d2:37:4b:de:d4:53:80:8f:d1:46:
78:b2:a1:d6:c6:f7:ef:39:1c:d5:6c:e2:c0:0a:d5:
8e:c9:33:b4:41:f0:aa:31:bb:1e:c7:7c:59:58:f4:
93:a9:44:05:21:9c:32:fb:19:6a:a5:db:47:f2:56:
e0:52:fa:56:b1:7f:80:84:26:9b:f3:1b:04:0f:c8:
45:e5:ce:0a:f9:e3:1d:8d:8c:e1:ad:7b:08:d3:5d:
3e:ae:73:3c:c7:9c:59:44:14:12:74:0e:7c:96:cc:
90:06:78:e9:53:d8:30:38:16:ad:2d:cb:e4:dc:dc:
39:73:68:60:07:f4:36:4a:86:2b:e5:e1:bb:d9:f0:
f5:47:dc:a4:1b:c6:96:3b:84:7d:7a:c3:9e:6a:92:
25:ad:41:7b:52:e4:9a:05:b2:22:89:db:fc:76:8f:
86:84:d9:5d:a1:68:c8:8b:73:3f:2c:f1:a7:b9:6c:
59:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:19:49:84:0E:FE:47:5C:00:6C:69:DE:29:52:E4:32:13:D4:61:4C
X509v3 Authority Key Identifier:
keyid:61:61:47:0D:39:BE:4B:A2:DD:5D:F8:FA:47:B1:63:96:27:8E:67:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YWFHDTm-S6LdXfj6R7FjlieOZwo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/e51856-e52e-4b24-8c99-c240bfc9cbc1/1/YWFHDTm-S6LdXfj6R7FjlieOZwo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:c9:66:fd:9f:1d:aa:7d:81:29:4b:14:bd:59:41:18:b4:25:
fc:56:4f:64:66:34:29:d8:ff:93:06:e9:6f:3f:b5:b1:54:f5:
37:9a:af:d1:00:b9:29:30:08:96:2b:ca:b4:0c:45:78:bf:13:
56:ff:38:45:7c:f4:89:ba:19:1e:e4:18:f4:e0:71:7a:83:71:
91:65:a6:69:f8:3a:d6:9a:37:33:7e:74:bb:74:f6:ab:6d:91:
8a:a0:3d:f6:60:5a:a7:0e:2d:7b:f9:11:3d:ee:a2:d6:0a:29:
dc:af:86:eb:3a:17:c7:45:97:29:57:3f:ce:cf:67:04:1f:37:
72:c2:f4:ee:76:29:cb:4c:0d:c0:f7:ed:09:7e:d3:34:2b:ec:
ac:64:fb:c5:3d:77:d0:70:53:84:5d:97:5d:cc:a1:6b:e7:5f:
2c:ae:3d:7a:bc:fe:94:e1:db:9e:f5:8a:29:33:4a:8c:64:3b:
bd:de:e1:59:e8:3d:a3:59:98:02:5c:b2:a0:54:fa:5f:3f:f9:
18:80:ca:72:77:ad:05:72:65:6f:6a:c7:7f:7f:40:2c:14:1f:
a1:b3:5c:54:f3:46:98:a6:16:59:e2:23:0d:d2:fd:89:72:a8:
10:81:4c:58:38:bb:ec:a5:e3:54:32:16:65:75:16:76:24:2e:
a2:fc:4a:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:46 2026 by rpki-client