Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
File: YPa89uKxCboqFKc7l1rZVEhLS6U.mft (raw, json)
Hash identifier: 9GwYnVDuvEtCVqXv/1h0MkSSXt5BkumhY8QDWPRvgDg=
Subject key identifier: F0:E1:2B:3F:36:2C:5D:DE:EE:4E:9A:30:A2:E5:6C:8B:B5:A3:53:ED
Authority key identifier: 60:F6:BC:F6:E2:B1:09:BA:2A:14:A7:3B:97:5A:D9:54:48:4B:4B:A5
Certificate issuer: /CN=60f6bcf6e2b109ba2a14a73b975ad954484b4ba5
Certificate serial: 019D3A1CC14EB9F902052E1F39AB6CA9136B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
Manifest number: 0D12
Signing time: Sun 29 Mar 2026 15:00:56 +0000
Manifest this update: Sun 29 Mar 2026 15:00:56 +0000
Manifest next update: Mon 30 Mar 2026 15:00:56 +0000
Files and hashes: 1: YPa89uKxCboqFKc7l1rZVEhLS6U.crl (hash: k+UZmHVAjlbQMdmnmZDA7LNd3cIj79smu3tHV4ttODc=)
2: iYF3KvUl8FH939niefVDnuUP2E0.roa (hash: hm0pJ2uzYWg+4xRBDq9krSLEFM5bGxPbKMQmAB2V7Wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:c1:4e:b9:f9:02:05:2e:1f:39:ab:6c:a9:13:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f6bcf6e2b109ba2a14a73b975ad954484b4ba5
Validity
Not Before: Mar 29 15:00:56 2026 GMT
Not After : Mar 30 15:00:56 2026 GMT
Subject: CN=f0e12b3f362c5ddeee4e9a30a2e56c8bb5a353ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7f:b1:a0:d7:9a:4c:6b:e0:f3:92:b5:a6:b5:
fc:6c:9c:4a:66:82:e1:d9:a3:dd:49:f5:e5:41:c0:
05:ee:03:09:44:ef:2d:b4:59:85:30:29:6c:b3:17:
c0:87:5a:90:25:0a:14:6e:f9:9a:f9:c3:75:61:15:
e5:86:19:22:30:6a:91:47:04:5c:52:ed:18:c2:ba:
0f:65:bb:56:08:28:89:d2:9d:29:92:8e:c9:20:9d:
65:50:a6:67:9f:38:e1:e5:e2:7e:4f:db:96:04:d4:
03:12:0c:03:71:db:d3:f6:5b:61:8d:b5:24:41:ff:
5e:db:8d:2a:0b:82:b4:67:ed:34:5b:75:a3:44:85:
e6:58:85:97:3e:b0:7a:3b:38:33:77:c7:43:cd:36:
10:89:71:11:a2:69:9e:98:da:05:01:18:91:13:80:
b6:b3:8e:bc:44:6a:77:38:d6:8e:13:cb:06:69:7c:
0b:48:38:b9:8f:1b:bd:10:33:7c:99:de:4b:26:46:
37:6c:32:a9:e0:11:13:4a:c4:c8:06:c1:5f:16:b3:
93:81:5e:b0:b9:ab:d1:b2:ed:2a:f5:31:57:55:b4:
6c:b0:fe:34:b1:d1:4d:74:d8:4b:fa:93:b1:36:55:
34:ca:86:f0:e5:b3:ff:a3:31:03:b8:a5:87:ad:79:
26:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:E1:2B:3F:36:2C:5D:DE:EE:4E:9A:30:A2:E5:6C:8B:B5:A3:53:ED
X509v3 Authority Key Identifier:
keyid:60:F6:BC:F6:E2:B1:09:BA:2A:14:A7:3B:97:5A:D9:54:48:4B:4B:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPa89uKxCboqFKc7l1rZVEhLS6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/83adbb-3627-4b87-9f7d-ab40253b5e2b/1/YPa89uKxCboqFKc7l1rZVEhLS6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:6a:ae:cd:d2:7d:cd:dd:73:ee:97:fd:ab:0b:d1:1d:fd:14:
1e:f7:e4:35:95:53:c8:6d:6a:84:8d:a5:de:49:f1:d2:29:81:
46:94:72:62:10:4d:99:c8:33:35:96:79:e2:ff:7f:d6:75:27:
d4:e7:cc:aa:8b:34:fc:0c:e4:04:06:e0:ec:36:85:e7:7f:c0:
f9:89:d0:88:9e:e9:43:df:73:92:1f:95:76:cc:4b:81:85:41:
3b:c2:9a:42:7d:76:93:2e:c9:d0:25:db:13:cc:fb:31:0a:ae:
6e:5d:d9:6d:a8:d0:ce:96:bd:65:c4:a3:8e:3e:88:9e:bd:f7:
9b:a5:16:d1:25:24:09:3e:ef:0f:60:59:90:4f:7d:02:3a:7b:
7d:57:57:9a:4b:60:16:c7:38:1f:d7:57:cc:81:2c:48:b8:0d:
1e:e8:b5:0e:bb:22:cd:c1:2b:03:b1:2b:57:67:91:37:47:bf:
c7:55:5e:c7:c3:89:e9:b3:66:7b:2f:e5:ae:aa:88:68:e3:6b:
fc:f7:c1:8e:77:b9:c4:b4:26:0d:1c:8f:d9:bb:aa:1e:23:a6:
4c:49:9c:6c:a2:b4:a3:94:33:68:df:b5:48:b7:75:ac:df:aa:
86:f6:c0:6f:7d:41:53:1b:95:72:c6:27:b4:98:9d:28:76:c4:
b5:f1:0a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:39:07 2026 by rpki-client