Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
File: YIYxT4djXnk7wuPbvtZkBbisZ3E.mft (raw, json)
Hash identifier: VVWlHTiDGoPkI6SPp28Y4EvfPMBjaWYk/bjBPA9mYNQ=
Subject key identifier: 71:F8:A3:B1:39:8D:6D:D0:9A:4C:3D:60:67:2F:6B:92:1D:CE:C2:46
Authority key identifier: 60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
Certificate issuer: /CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Certificate serial: 019D3940CFF84913CF5B45C678267F7470DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 11:00:41 +0000
Manifest this update: Sun 29 Mar 2026 11:00:41 +0000
Manifest next update: Mon 30 Mar 2026 11:00:41 +0000
Files and hashes: 1: XXnrfTeMWz5PhgtiK8a4AxaSgho.roa (hash: yESjb+epkWscywuwChkZG1nAsFck4dw/7G4mvFgiS10=)
2: YIYxT4djXnk7wuPbvtZkBbisZ3E.crl (hash: rtV19xUS1xqZjTACHtIk/CmhRklLTLYLwuuiiFbITdc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:cf:f8:49:13:cf:5b:45:c6:78:26:7f:74:70:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6086314f87635e793bc2e3dbbed66405b8ac6771
Validity
Not Before: Mar 29 11:00:41 2026 GMT
Not After : Mar 30 11:00:41 2026 GMT
Subject: CN=71f8a3b1398d6dd09a4c3d60672f6b921dcec246
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e1:58:f0:07:80:a5:fb:77:ea:8b:8f:c7:3d:
03:26:ea:5f:0a:7f:ea:7b:09:39:cb:bf:15:90:a7:
9f:47:8e:fb:fe:09:c2:2d:68:68:da:1e:f6:ba:b6:
39:4b:dc:0b:a9:68:88:04:92:9e:72:7d:f0:67:36:
35:95:f9:04:c3:8d:f6:40:16:46:1a:8d:a5:72:c0:
b5:b0:f7:f8:4e:ce:32:63:1d:2c:c8:4d:70:8e:5a:
13:f3:3b:54:5c:f8:f9:94:4b:fb:8b:db:14:93:f3:
28:4e:99:e8:bf:d3:47:57:db:8e:00:84:d9:49:91:
c8:71:0b:24:d6:2a:12:d0:85:83:23:1b:06:97:3f:
9c:e8:d3:8e:4f:a0:b4:1d:5e:40:f7:f8:67:cb:9d:
e5:59:89:1b:8d:ea:ae:a3:42:a5:ef:b1:01:0f:9f:
e6:48:89:5a:f1:94:99:88:4b:0d:29:34:b1:9a:fb:
33:0c:40:3f:0c:0d:ff:ae:a9:8a:25:a6:a4:26:18:
4a:71:96:6f:1e:63:8e:11:17:b0:d0:90:d4:44:ca:
5a:e6:f4:77:00:96:30:78:08:fa:97:05:c5:7e:f1:
46:76:4f:06:b5:cf:e6:45:5d:52:aa:c7:e4:9a:18:
20:57:c8:34:fb:60:39:c0:1e:4a:56:30:df:cb:55:
48:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:F8:A3:B1:39:8D:6D:D0:9A:4C:3D:60:67:2F:6B:92:1D:CE:C2:46
X509v3 Authority Key Identifier:
keyid:60:86:31:4F:87:63:5E:79:3B:C2:E3:DB:BE:D6:64:05:B8:AC:67:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIYxT4djXnk7wuPbvtZkBbisZ3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0fbc5f-7c04-40da-9d5a-0280598f19e3/1/YIYxT4djXnk7wuPbvtZkBbisZ3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:46:2a:d9:2b:33:84:5b:38:d2:b1:af:2e:02:96:47:f9:cf:
65:9b:67:d7:e8:6f:db:1c:08:be:1d:c4:71:3d:2a:47:74:3e:
1e:ca:8e:80:a4:93:87:e1:44:b2:7c:ad:70:fa:b6:42:5a:9f:
d2:e2:95:cd:fc:65:8d:93:e7:43:0d:7d:c6:84:81:63:74:ed:
42:fe:6e:20:f1:91:fd:74:f7:0c:e4:c3:82:35:86:5a:b2:c9:
a3:8f:f1:22:68:99:c2:59:5c:6d:94:89:b3:17:af:ec:90:d9:
e0:5d:77:e9:80:da:ca:bb:a8:b9:1d:8f:7e:55:64:f2:c0:b7:
35:8a:74:01:42:0a:9b:8a:6a:b2:3e:26:0b:0d:16:d6:f0:6a:
08:ea:95:e6:03:4d:61:4b:36:83:be:30:b7:60:6e:2b:20:44:
75:9c:c0:92:d8:da:ed:a2:dc:c6:9b:ee:24:88:1f:87:27:87:
c3:46:de:f8:ee:74:09:5e:fd:c9:0c:0b:38:93:5e:a1:b3:dd:
16:33:2b:4f:ed:af:75:4c:a8:6c:c7:cf:d8:14:80:7b:22:4c:
23:6e:e3:ab:dd:ce:e4:4c:47:2d:c0:ff:85:02:94:d1:8b:bd:
16:30:ba:63:9c:18:4f:42:00:fb:b8:5e:e9:85:db:48:06:b1:
e5:a3:46:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:06:34 2026 by rpki-client