Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
File: YRuftFY550kvKzYx9kD2q5r7YpA.mft (raw, json)
Hash identifier: EdLtND2C6kqMFLG8kfrdDUaekN0HLrAmmItqL7wRntg=
Subject key identifier: 50:38:9A:A3:43:4F:E7:E9:AE:60:C7:1A:B0:58:1B:A5:1A:CA:D8:B6
Authority key identifier: 61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90
Certificate issuer: /CN=611b9fb45639e7492f2b3631f640f6ab9afb6290
Certificate serial: 019D3789572782811A07ADB36084876AC130
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
Manifest number: 0331
Signing time: Sun 29 Mar 2026 03:00:40 +0000
Manifest this update: Sun 29 Mar 2026 03:00:40 +0000
Manifest next update: Mon 30 Mar 2026 03:00:40 +0000
Files and hashes: 1: 3-z9WVuuMK0MQ-O8ytcjQmUulmQ.roa (hash: QlGcIApQxI3USCeOW3H47w4RX3p+KD+avqAifqggosI=)
2: YRuftFY550kvKzYx9kD2q5r7YpA.crl (hash: hNNqr0IGKST9eGeCbOIX4iR2TdxezQKOeFSZcRoQO1M=)
3: eYKGIFqmXxArxKrm4dHPlBfdDkQ.roa (hash: OjAQmRNCdlZ/ho0O0hjfQYZhYcPqc7W3tUBnTWwRO0M=)
4: i8JTjG8kAd1c1HqV5LoJhukgMAE.roa (hash: u27SpMwjFzAC7wQTCgUg0cr2wavmv6lyaTijyCZtCvI=)
5: uKdnnQsot7mlRO752cNll6GISRQ.roa (hash: VbgboVS4OB0UdrRSp+d5djlaTMUsF7uI2qR/6y5b4JE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:57:27:82:81:1a:07:ad:b3:60:84:87:6a:c1:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=611b9fb45639e7492f2b3631f640f6ab9afb6290
Validity
Not Before: Mar 29 03:00:40 2026 GMT
Not After : Mar 30 03:00:40 2026 GMT
Subject: CN=50389aa3434fe7e9ae60c71ab0581ba51acad8b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:15:a8:a4:8f:9a:d4:dd:12:ac:a4:c2:bc:f5:
d7:7d:58:97:fb:24:cf:a9:a3:f0:cf:3c:9f:2a:f0:
aa:91:9a:78:31:58:46:35:da:b7:c8:f0:03:5e:d0:
9b:ce:32:a2:a2:16:dc:34:25:07:01:07:d3:5e:29:
f7:d9:1d:55:50:e5:b5:0b:62:0f:7b:a4:48:7d:60:
54:8d:76:5b:c6:f7:77:cc:70:48:48:f0:ea:12:fc:
c9:0c:51:d0:40:cf:67:54:f9:49:0f:50:ff:19:df:
ac:37:e0:03:bd:14:5d:ce:f0:0d:87:d8:c4:01:10:
f2:3b:12:b2:e5:8b:6c:e3:91:48:67:3e:1b:55:c3:
ea:2b:13:16:70:b6:75:6a:c5:c8:e9:59:04:f1:d5:
e4:05:d0:ed:7f:6c:90:8f:09:9a:8d:8b:1d:57:83:
72:1e:5c:14:50:80:0d:af:d3:2d:34:42:8f:8c:1b:
7e:24:c2:be:90:74:b3:36:6d:94:44:a4:e1:ab:01:
ce:d7:d6:2b:33:55:83:15:59:c5:e0:ae:47:59:a8:
c0:7b:69:5a:10:95:5d:6a:90:38:d5:b7:ad:a6:81:
f2:d6:90:66:99:89:0f:d2:b5:6d:bc:8a:bf:e3:df:
07:18:7f:34:26:85:30:0a:5b:2e:f1:82:93:d1:e0:
9a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:38:9A:A3:43:4F:E7:E9:AE:60:C7:1A:B0:58:1B:A5:1A:CA:D8:B6
X509v3 Authority Key Identifier:
keyid:61:1B:9F:B4:56:39:E7:49:2F:2B:36:31:F6:40:F6:AB:9A:FB:62:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRuftFY550kvKzYx9kD2q5r7YpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/8482d2-7233-4177-992f-7d75e2b1a7b9/1/YRuftFY550kvKzYx9kD2q5r7YpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:14:19:ed:9b:10:6b:2f:c2:d4:d1:45:ad:a5:86:bc:20:11:
e3:22:7c:5a:c6:34:89:76:88:bf:ba:22:5f:72:0b:2a:8d:9f:
eb:01:3f:07:18:05:e2:12:11:1a:00:ba:0a:95:37:f8:67:f4:
2f:f4:33:40:f2:ac:22:a9:66:b0:31:ff:89:50:ad:0a:1c:bd:
fe:de:8a:f7:e2:2a:21:00:eb:9e:57:d6:af:97:6c:f4:29:20:
be:72:08:d4:08:b0:8c:50:df:ac:77:57:18:0c:81:00:8e:b4:
4a:1f:73:34:ac:e4:8e:9c:3f:07:6d:3d:50:d9:4a:80:32:69:
2a:d6:df:b2:2a:6e:d8:63:32:7d:88:e5:92:5d:28:99:92:e7:
03:c7:bc:ab:f0:fa:54:08:78:4a:1d:75:ba:b5:d3:00:d3:ff:
5a:5f:86:99:8e:2b:d1:9c:a4:fa:ef:0d:a6:5b:e6:e5:2d:0f:
32:db:11:9d:b2:d8:da:3a:70:63:fe:7c:2e:ba:c8:19:e6:a8:
b1:2d:7f:24:a4:02:28:ef:5b:c1:d6:42:5e:65:10:83:ab:fc:
9c:26:24:fb:14:85:bd:fe:61:4c:5f:f2:cf:a2:09:05:9a:e5:
db:f1:a8:e7:02:15:65:36:c1:a7:97:b9:4b:0c:f6:1c:a0:89:
87:65:28:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:18 2026 by rpki-client