Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
File: YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft (raw, json)
Hash identifier: ttRKw0kO0Z+hV05YwaoDqTs7Hd5AHOqiUa1ALaTji2M=
Subject key identifier: 2C:25:41:0D:43:0C:7A:4F:99:84:89:6F:0F:9F:8D:80:4C:80:52:95
Authority key identifier: 61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
Certificate issuer: /CN=6149cbba3e6629beaebfb69668678ada51744898
Certificate serial: 019E9C29ED8E192D4B8A77A1CCB0CE8C780B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
Manifest number: 1670
Signing time: Sat 06 Jun 2026 09:00:53 +0000
Manifest this update: Sat 06 Jun 2026 09:00:53 +0000
Manifest next update: Sun 07 Jun 2026 09:00:53 +0000
Files and hashes: 1: YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl (hash: WMv1lbM0pbDb/9Bq3+2SERiUIxe4gWe3Z4hRn1IfyEg=)
2: v872mIxxwSGV2ha6Yd9jq9CMUao.roa (hash: 1G9sBjvfPqj7U0dttH4sUsWBNP9ecKYoKzenyr22mAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 09:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:29:ed:8e:19:2d:4b:8a:77:a1:cc:b0:ce:8c:78:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6149cbba3e6629beaebfb69668678ada51744898
Validity
Not Before: Jun 6 09:00:53 2026 GMT
Not After : Jun 7 09:00:53 2026 GMT
Subject: CN=2c25410d430c7a4f9984896f0f9f8d804c805295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:24:0d:a9:3c:10:6a:1e:b1:7d:e4:83:b0:b9:
31:ff:8c:e6:d0:a6:3d:f2:d1:f1:86:c9:59:f5:33:
5d:e8:b7:48:38:3b:4d:e7:c7:58:f1:d3:2e:56:c8:
25:ae:a3:dc:64:ad:df:b2:89:e6:3f:38:03:87:07:
dc:93:f1:11:75:65:07:bf:ed:90:dd:b1:5f:48:40:
84:55:42:cc:39:74:50:68:13:48:22:05:78:3f:41:
28:75:03:ee:de:68:0f:8f:cd:7d:91:91:c0:b4:3d:
ce:9a:95:e3:fe:78:08:c1:8b:69:3a:07:7c:4a:8f:
ef:e9:c3:a1:93:b1:8d:ed:85:bc:0a:42:39:e5:86:
9d:82:ff:3b:fa:a3:d1:5f:a2:5e:3c:67:04:d5:01:
d2:f3:92:15:ff:cc:90:0d:d9:29:ba:7b:88:22:b8:
e5:59:13:c6:a5:62:7f:42:68:7e:ab:52:51:39:46:
67:0b:bd:c5:2f:8d:ec:5b:a2:e6:1f:a6:f1:b8:ba:
4e:d1:b2:8b:d5:d1:be:8a:c2:d3:cf:c2:3d:70:2b:
93:35:0f:3b:a7:39:7c:08:1b:60:46:d3:c1:04:f7:
9c:18:0f:63:1b:d5:9e:32:e3:62:e4:46:72:8b:b6:
20:cf:a5:4e:a0:a1:df:cb:b2:61:15:cd:58:34:10:
df:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:25:41:0D:43:0C:7A:4F:99:84:89:6F:0F:9F:8D:80:4C:80:52:95
X509v3 Authority Key Identifier:
keyid:61:49:CB:BA:3E:66:29:BE:AE:BF:B6:96:68:67:8A:DA:51:74:48:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUnLuj5mKb6uv7aWaGeK2lF0SJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/23f532-fe86-4198-8c3b-4d43f66ab731/1/YUnLuj5mKb6uv7aWaGeK2lF0SJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:3d:f2:03:0b:2f:11:57:ba:38:2a:4f:3b:5f:08:32:65:6a:
31:29:8c:0f:41:e1:90:7f:50:c5:a8:58:d0:05:b1:37:a7:ef:
43:14:23:e9:a2:e4:8e:61:5a:f0:88:bd:48:0c:21:c5:ee:db:
b3:ca:6b:58:80:bb:2d:c1:4a:90:2d:9b:29:0b:c1:d1:1f:24:
57:ad:51:68:a9:e2:a5:bd:d1:bf:7d:bd:08:50:4e:f5:84:0a:
ec:71:12:39:44:c7:65:12:98:39:7a:80:76:ae:26:1a:c0:df:
0b:08:97:58:f9:4d:a8:22:8e:31:5b:55:0c:ee:a5:ea:0a:52:
b0:bb:53:48:96:68:ea:9d:a6:cb:cf:bf:ec:bb:64:bd:6b:6b:
76:3b:48:80:31:3c:bb:15:08:8c:35:ee:b9:28:c6:81:4e:9f:
eb:65:1d:25:17:7a:8b:8f:15:6a:15:ea:3c:fb:79:e0:25:dc:
48:1a:d4:8a:75:d9:72:1e:c4:b5:fe:a5:7b:36:d9:f7:e9:bc:
8a:98:50:f3:33:b3:d8:cd:0c:9e:3b:22:71:9d:cc:06:9e:cf:
9f:bf:78:1e:1b:af:af:1b:ef:11:a4:8e:d2:03:72:5f:39:40:
b8:94:6c:48:c0:f9:17:a4:7e:a7:a7:0f:a2:b8:d8:4f:60:34:
f1:64:5c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 19:27:42 2026 by rpki-client