Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
File: YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft (raw, json)
Hash identifier: ZuzXDr5ClNaJKQwT14gzdp1/LUvLn74+SPgJ6dB4ACo=
Subject key identifier: 3E:5D:26:D9:CE:F4:FF:0D:BC:64:33:03:86:56:DB:51:5B:41:6C:94
Authority key identifier: 62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
Certificate issuer: /CN=621310302018a387c692146a35efd33a6ed6b1ef
Certificate serial: 019D37891F75C368FEA3BFF0A306BB15884D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
Manifest number: 1899
Signing time: Sun 29 Mar 2026 03:00:26 +0000
Manifest this update: Sun 29 Mar 2026 03:00:26 +0000
Manifest next update: Mon 30 Mar 2026 03:00:26 +0000
Files and hashes: 1: 1-CQYobvcQG21mAnMiaW7vyH7CXY.roa (hash: F30Qwwm1mnG4O3FtxSySy1RIR2PJUKOcNn6fyL1ZO8E=)
2: Q8ZPUdn-YmcTmBwAi_7GVX9YQUw.roa (hash: kBU03x/ocDiC2CPd5HE27yOrt08fP6gCbdih5TdOqEQ=)
3: Sy7wu7HbvDyeRA19AagewX8X6a8.roa (hash: 3GBSbUmpYJlg9KE6xgU1mWhmKjjwIsWji4O9OpkK8H8=)
4: YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl (hash: QSAV88DubuY2nSNADLqPbbW8WZria5PbJprpYRhGBFU=)
5: bdnGFt0hHzKvmqEY93Eh959DQNM.roa (hash: Uc8DaiaZyUQDwe1ODSCGoQeREP5FCzxxss2vrZnDmR0=)
6: lqsLALggP8BPfl8pdq3Xpv8eVgg.roa (hash: bdexZFMhJLX7gjQGkdBbU8UkKwrPdu12kMoaVc9RB3s=)
7: ruyO6zUfbaRsGVkfFZtSsnxMh1s.roa (hash: zoSCjiMf6V8kppFFwtfWmMhnEG6ujkudnMTWLbB1XSc=)
8: xkh0_qQROZrSh7wQT28dLg374SY.roa (hash: DYUAA1oa5//rqv0OvMnn2Z1Gp+Lzbo3Hx+khO/MXiMs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:1f:75:c3:68:fe:a3:bf:f0:a3:06:bb:15:88:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621310302018a387c692146a35efd33a6ed6b1ef
Validity
Not Before: Mar 29 03:00:26 2026 GMT
Not After : Mar 30 03:00:26 2026 GMT
Subject: CN=3e5d26d9cef4ff0dbc6433038656db515b416c94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ac:19:a5:ce:c1:db:11:52:dc:66:ab:00:7b:
3e:30:47:6a:4d:15:e6:43:10:86:2f:4c:5a:d7:e9:
67:e1:f3:83:77:0a:6d:32:d4:34:90:dd:49:78:22:
06:1f:ae:5c:c6:5e:1f:e9:26:24:57:d4:74:51:60:
b2:e6:0c:9c:b1:1d:16:d6:1a:e4:fa:d5:f6:d9:7f:
00:ee:88:57:42:73:74:c5:b9:fe:33:ba:da:f3:f6:
c1:c7:bc:1b:d5:71:f7:fe:3f:67:15:6e:92:9e:2b:
95:66:e2:9a:fb:ad:d8:05:0f:e1:f2:9b:6f:f5:1b:
9b:7a:c4:3b:27:36:21:c4:d8:55:ce:b1:18:a7:08:
26:6b:5f:5f:ff:ed:06:6d:7f:30:a2:41:d6:12:87:
4c:f9:e0:a3:87:91:c8:59:f1:37:ab:ab:ec:53:62:
32:40:75:1b:5b:a4:45:7b:dc:64:8d:05:f4:a6:44:
31:44:d2:07:f1:73:05:a3:a1:6c:50:c2:d0:54:fb:
5c:14:db:70:4d:7d:2c:a9:8b:ba:54:fe:30:55:f2:
24:bb:38:6f:6a:3a:20:9b:fd:c5:dd:c8:8b:99:4e:
7f:1f:af:d0:f0:e5:14:24:6e:06:06:58:50:b4:90:
c9:e6:9b:20:fd:21:f0:0a:aa:77:1a:a2:cb:ee:6c:
13:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:5D:26:D9:CE:F4:FF:0D:BC:64:33:03:86:56:DB:51:5B:41:6C:94
X509v3 Authority Key Identifier:
keyid:62:13:10:30:20:18:A3:87:C6:92:14:6A:35:EF:D3:3A:6E:D6:B1:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhMQMCAYo4fGkhRqNe_TOm7Wse8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/f58ac8-53e9-4ca6-acb2-be57d7dfa0de/1/YhMQMCAYo4fGkhRqNe_TOm7Wse8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:b5:37:70:fb:b7:3d:d1:c6:cb:96:e6:3b:7d:da:ea:e1:b6:
34:0c:86:c5:d9:2c:4c:40:9e:e9:86:d5:0e:08:7c:86:80:37:
f7:4f:e1:d4:6f:4d:4c:57:fa:c9:a0:18:ed:3b:43:26:ad:04:
d3:ef:37:ed:cd:2f:2c:f4:56:b6:01:01:ba:9a:fb:29:08:82:
67:fe:f9:28:3e:3c:a4:c8:4b:c9:23:4e:c0:33:4b:6f:41:91:
b1:7e:86:b2:33:42:08:2c:26:e0:df:b2:99:64:57:0d:8e:36:
88:e5:1b:b3:75:ab:40:02:47:be:5e:1d:6e:3d:ab:83:54:9a:
77:2f:36:f3:a7:66:e0:cc:b3:5e:38:87:12:19:09:23:c6:5d:
4a:c0:c7:a3:19:80:86:6b:ce:21:b0:90:a3:34:b2:5c:99:e7:
82:f9:2b:da:20:f0:5f:cd:57:19:87:f6:3d:2d:cc:54:8c:6d:
87:5a:0e:6c:dd:51:a5:e4:a8:de:c0:33:19:79:e0:2e:72:2a:
c9:56:f9:e4:a2:62:ff:f4:27:8b:d0:9b:84:f0:b9:8d:e7:ef:
92:ee:94:92:aa:d0:88:63:02:ae:c4:a2:64:9d:51:d7:e4:82:
8b:fa:f2:b9:84:9b:76:3d:55:37:0b:5e:2e:b6:bc:2e:c7:04:
c5:1b:6c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:23 2026 by rpki-client