Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.mft
File: YBtLoTPyON1qs-CprIh1yNgL9rc.mft (raw, json)
Hash identifier: 1IfjmU46Tm13aGpUCtedRjlZkF7W2fp6TtPhSYS8J24=
Subject key identifier: 21:64:0B:37:0B:A6:11:B8:5F:B3:CB:B5:67:6C:99:91:32:29:93:D7
Authority key identifier: 60:1B:4B:A1:33:F2:38:DD:6A:B3:E0:A9:AC:88:75:C8:D8:0B:F6:B7
Certificate issuer: /CN=601b4ba133f238dd6ab3e0a9ac8875c8d80bf6b7
Certificate serial: 019EFFBA7CD78FC97061F8F91FC5200C5350
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBtLoTPyON1qs-CprIh1yNgL9rc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.mft
Manifest number: BB
Signing time: Thu 25 Jun 2026 17:01:11 +0000
Manifest this update: Thu 25 Jun 2026 17:01:11 +0000
Manifest next update: Fri 26 Jun 2026 17:01:11 +0000
Files and hashes: 1: WwDOvongC1_X8P9dsP5SDAx3pIw.roa (hash: OvjUCdki/Xpiry32DFBQzx/CWIybLt/kwDkvEQjTH6I=)
2: YBtLoTPyON1qs-CprIh1yNgL9rc.crl (hash: jdyrInpQ6Cn2kGMqqRhkb6eJtic2g5VqMAJawbBl0WM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBtLoTPyON1qs-CprIh1yNgL9rc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 26 Jun 2026 16:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ff:ba:7c:d7:8f:c9:70:61:f8:f9:1f:c5:20:0c:53:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601b4ba133f238dd6ab3e0a9ac8875c8d80bf6b7
Validity
Not Before: Jun 25 17:01:11 2026 GMT
Not After : Jun 26 17:01:11 2026 GMT
Subject: CN=21640b370ba611b85fb3cbb5676c9991322993d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f1:3d:4e:32:75:f3:93:b2:c7:d0:24:ca:bf:
c7:07:fd:43:58:fa:63:23:10:b8:f0:ae:56:2a:28:
a1:3f:44:f7:63:96:1e:e3:97:57:f5:aa:12:c4:5e:
90:90:68:0d:1e:23:54:0a:88:90:e0:13:1b:d6:14:
b8:22:fc:91:ae:64:f2:a0:aa:03:87:8f:82:de:ea:
15:3f:4a:8e:56:a0:85:cc:a2:e1:5a:70:66:b6:65:
0f:9e:56:00:35:af:7c:c0:4b:b3:18:0e:53:28:ee:
13:d4:51:98:a2:72:01:b6:c4:d0:41:c0:7b:f5:c3:
8e:5a:21:77:2a:25:b9:d4:4e:b9:0e:65:9a:08:ef:
8b:4a:13:43:c8:46:74:ee:90:db:86:e5:00:8b:54:
f3:df:4b:33:d1:7c:3d:7d:88:a0:dd:89:37:16:dd:
f6:fd:6e:fc:59:2a:5e:ed:91:d8:a6:06:4e:8e:f1:
49:b3:d2:7c:2a:17:b1:be:cd:82:c2:2d:a6:52:ea:
48:a6:5f:ae:f2:83:74:6e:1b:84:06:0b:9d:8b:69:
3f:01:20:42:8c:9c:b1:0a:c2:3a:f0:42:f7:e7:fe:
27:05:a6:a5:a7:18:a8:0a:5d:3c:99:a3:6f:05:df:
c8:1d:5c:00:ed:e4:e7:17:5d:df:a9:8b:0a:e7:80:
46:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:64:0B:37:0B:A6:11:B8:5F:B3:CB:B5:67:6C:99:91:32:29:93:D7
X509v3 Authority Key Identifier:
keyid:60:1B:4B:A1:33:F2:38:DD:6A:B3:E0:A9:AC:88:75:C8:D8:0B:F6:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBtLoTPyON1qs-CprIh1yNgL9rc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:6c:d2:13:04:d8:cd:9a:9e:ef:af:70:e9:cf:d7:9e:72:7c:
dc:cc:7e:97:c1:82:40:28:61:2d:89:20:cc:d9:db:cc:5c:9c:
33:fa:db:72:71:72:a6:b0:dd:93:bb:f6:f7:72:33:90:be:28:
ff:67:b0:d3:f8:92:57:e6:ba:52:bf:8c:fc:31:31:70:c5:12:
72:8b:dd:40:d9:79:97:25:be:84:6c:6e:39:18:03:1d:ba:db:
68:d1:f3:99:a0:b3:5f:f4:a1:a8:28:c6:79:75:e2:53:0d:d1:
58:c3:d7:46:5c:6d:39:53:3d:54:0a:43:0e:c1:9c:29:d1:c5:
81:2c:f2:30:71:5d:00:c6:c0:8c:18:50:fc:cd:24:16:16:aa:
29:f5:39:a0:15:60:4f:b4:5c:76:fc:fc:f5:e7:ad:a0:7a:ff:
06:31:6d:01:79:7a:49:0e:b5:93:f2:d4:85:6f:65:42:cb:f2:
3a:fb:74:df:a0:84:c8:55:bd:2b:cc:d4:5e:c1:5d:cf:6a:aa:
79:c7:50:a4:99:fd:d6:17:39:c7:39:5f:04:0b:d9:70:23:7d:
1b:28:54:b3:03:a4:33:7c:7d:d8:d5:cf:63:65:c7:cc:27:21:
3a:ff:84:55:a2:54:07:39:f1:5c:b6:c8:10:c0:20:a9:69:e2:
87:9a:8b:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 22:36:09 2026 by rpki-client