Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
File: yjNIUNrzcSIFIBmSKevekO8osBg.mft (raw, json)
Hash identifier: J+JEdRpKSwzWXv/XZMPlyBxL/xhiNafa4hOnsy1zEZM=
Subject key identifier: 96:25:96:B3:12:C6:CC:BF:9E:C7:E4:77:26:D1:91:64:08:48:7A:9E
Authority key identifier: CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
Certificate issuer: /CN=ca334850daf371220520199229ebde90ef28b018
Certificate serial: 019F073CC02EF37A38F802DA2F0360446EFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
Manifest number: 09FC
Signing time: Sat 27 Jun 2026 04:00:49 +0000
Manifest this update: Sat 27 Jun 2026 04:00:49 +0000
Manifest next update: Sun 28 Jun 2026 04:00:49 +0000
Files and hashes: 1: XQZYtmJX7BpNzPu03srU_4VYUsc.roa (hash: Bjg0iayeOq8sVWJ1lC2MT+jpchRq5ORWkMqvwpb8VDY=)
2: yjNIUNrzcSIFIBmSKevekO8osBg.crl (hash: nCF7sMDRcUUDzDaSVouFu52bucGtJOX6NheaEJ6qDs8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 27 Jun 2026 23:02:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:07:3c:c0:2e:f3:7a:38:f8:02:da:2f:03:60:44:6e:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca334850daf371220520199229ebde90ef28b018
Validity
Not Before: Jun 27 04:00:49 2026 GMT
Not After : Jun 28 04:00:49 2026 GMT
Subject: CN=962596b312c6ccbf9ec7e47726d1916408487a9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:93:83:6f:d5:9b:08:7c:23:36:96:83:cf:9b:
87:a0:bc:9f:43:25:71:0f:26:10:37:a9:d4:f0:33:
71:db:21:b5:88:d3:88:dd:f1:57:25:92:f5:01:87:
07:0f:26:1f:5a:31:5b:a3:dc:fe:58:17:71:1c:f0:
ed:0e:f2:ba:35:1a:0f:a5:f3:2a:47:d7:80:72:8c:
9f:e6:ec:dc:df:2b:13:ad:8e:6b:1b:9d:cf:e9:95:
e1:86:75:a1:43:8c:c9:78:14:e5:17:4c:5c:8e:00:
8d:42:b3:ab:7b:8d:36:84:d6:1c:69:2f:f1:0b:54:
4f:22:eb:18:6e:04:67:ec:bd:22:9c:8e:d5:cb:ac:
67:87:db:0f:6b:fb:27:c9:56:bf:c8:50:74:13:8c:
2a:9c:a4:d1:61:8d:f6:62:ff:7b:23:65:36:ea:ed:
82:4e:48:d8:70:ca:83:d1:98:36:d5:10:35:34:c6:
b0:33:2e:6e:b7:ca:7f:05:04:1d:40:e1:d7:e6:1d:
5d:25:e0:a8:62:b9:06:66:77:85:80:22:fe:1c:8e:
7b:18:95:f2:e9:d8:a7:4c:82:27:b4:40:3c:b5:43:
16:7d:60:d0:29:2c:67:5f:8d:52:55:f8:b5:af:a7:
0c:62:a4:11:26:e0:b1:e9:e4:66:36:c1:f8:56:2c:
43:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:25:96:B3:12:C6:CC:BF:9E:C7:E4:77:26:D1:91:64:08:48:7A:9E
X509v3 Authority Key Identifier:
keyid:CA:33:48:50:DA:F3:71:22:05:20:19:92:29:EB:DE:90:EF:28:B0:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjNIUNrzcSIFIBmSKevekO8osBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/ee5e47-4e29-4603-b962-0e0046c8a87b/1/yjNIUNrzcSIFIBmSKevekO8osBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:87:49:ae:e3:33:c3:20:db:40:b0:05:dd:5e:ce:97:d3:3b:
6a:ae:08:64:fe:e2:47:32:bf:68:ae:1f:a6:38:50:a8:ff:c5:
18:0c:e0:58:2c:f0:3d:36:44:a9:d2:24:ac:a1:b9:94:e5:bf:
9e:18:61:e2:87:38:41:b8:cd:42:d0:44:65:55:88:75:bc:47:
0f:62:14:f1:cf:ac:ea:22:36:50:49:e2:bb:cc:00:63:2f:af:
3d:f9:66:61:59:4c:25:23:de:6a:e3:e2:08:2e:88:b5:56:d5:
d8:a1:db:4d:33:c3:a6:66:98:a3:cc:8e:5c:f2:db:fa:1f:02:
53:95:4e:d5:27:86:f0:a9:c1:eb:2a:75:ee:cf:b4:eb:b0:e8:
80:a6:77:03:84:6b:29:3b:ea:33:22:74:a8:5b:cc:7f:c2:c1:
f6:fe:64:87:e4:3f:f0:c1:b5:53:ac:9a:75:e9:ea:be:45:ac:
ce:7b:12:6d:c9:5c:00:29:37:38:75:28:56:46:6b:ee:f4:e5:
23:df:68:5c:47:db:e1:47:a3:2a:63:6e:04:35:40:20:b4:68:
8b:a3:3c:95:f9:eb:c3:9f:b5:9c:aa:15:7d:8a:93:0e:df:12:
8a:14:36:01:5f:dc:c2:01:9b:f4:e5:43:23:3b:05:f9:26:87:
5b:27:fe:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 27 09:23:10 2026 by rpki-client