Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.mft
File: YBtLoTPyON1qs-CprIh1yNgL9rc.mft (raw, json)
Hash identifier: Ks0G9+7uTtMpSuctyPwXgYIQbocgBMNmVSjbFlaUIPY=
Subject key identifier: 54:A8:96:55:B1:05:8D:1A:42:71:61:D2:77:71:DE:0A:D2:93:3E:D7
Authority key identifier: 60:1B:4B:A1:33:F2:38:DD:6A:B3:E0:A9:AC:88:75:C8:D8:0B:F6:B7
Certificate issuer: /CN=601b4ba133f238dd6ab3e0a9ac8875c8d80bf6b7
Certificate serial: 019E0C668D6FBBF258DBDA94FB4363D25AB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YBtLoTPyON1qs-CprIh1yNgL9rc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.mft
Manifest number: 3D
Signing time: Sat 09 May 2026 11:01:47 +0000
Manifest this update: Sat 09 May 2026 11:01:47 +0000
Manifest next update: Sun 10 May 2026 11:01:47 +0000
Files and hashes: 1: WwDOvongC1_X8P9dsP5SDAx3pIw.roa (hash: OvjUCdki/Xpiry32DFBQzx/CWIybLt/kwDkvEQjTH6I=)
2: YBtLoTPyON1qs-CprIh1yNgL9rc.crl (hash: A/57rtXa5yT/sIA/4bDM5yqmwP//g9GcoGIX0QBkrNM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.mft
rsync://rpki.ripe.net/repository/DEFAULT/YBtLoTPyON1qs-CprIh1yNgL9rc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 10 May 2026 11:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:0c:66:8d:6f:bb:f2:58:db:da:94:fb:43:63:d2:5a:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601b4ba133f238dd6ab3e0a9ac8875c8d80bf6b7
Validity
Not Before: May 9 11:01:47 2026 GMT
Not After : May 10 11:01:47 2026 GMT
Subject: CN=54a89655b1058d1a427161d27771de0ad2933ed7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f4:ff:ec:52:b5:6d:f1:39:ed:db:44:43:ae:
5e:85:27:fd:d6:ba:5b:c7:0a:3f:58:17:74:53:8b:
89:d6:21:0f:d5:3b:c4:3f:fd:02:2c:4e:cf:06:86:
58:d1:6f:a4:5f:8b:63:b5:1b:46:72:58:a1:ca:15:
aa:ed:28:7d:1f:3a:a9:de:5d:7a:32:97:7e:3b:ec:
38:d8:65:6c:8c:bb:a4:dd:79:53:34:38:cb:b7:0c:
5b:0a:47:24:0f:03:75:42:c7:13:39:98:10:cc:60:
c6:ae:e2:8b:ed:17:57:90:30:6b:e7:aa:17:c3:52:
a7:04:07:d7:09:97:47:4c:af:96:ec:c8:6d:2d:95:
e3:c2:39:01:e1:db:1c:f5:f9:9c:ba:3b:9f:f9:1a:
fe:fa:c8:99:d8:6f:21:4d:98:57:43:7f:21:c4:28:
d7:32:6f:b2:95:64:35:be:cd:9e:75:27:5f:c3:f9:
56:3d:33:ee:87:ad:c4:5d:14:f1:67:85:92:a6:16:
8f:13:9d:b5:83:ca:5d:ef:7f:7b:2d:8b:c4:f8:2f:
54:59:b3:b9:bd:c3:56:20:f7:85:48:a6:e0:9b:71:
35:c9:1d:96:4a:0d:b9:64:2a:a9:1d:7a:be:90:3a:
b2:31:54:08:e6:f0:3f:c2:b1:63:58:f2:c3:93:55:
bf:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A8:96:55:B1:05:8D:1A:42:71:61:D2:77:71:DE:0A:D2:93:3E:D7
X509v3 Authority Key Identifier:
keyid:60:1B:4B:A1:33:F2:38:DD:6A:B3:E0:A9:AC:88:75:C8:D8:0B:F6:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YBtLoTPyON1qs-CprIh1yNgL9rc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/0e3f23-5897-48f2-a888-7d242fcab170/1/YBtLoTPyON1qs-CprIh1yNgL9rc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:1c:f4:b7:8c:1a:c6:4b:a5:66:8c:94:b0:33:80:ba:62:ea:
74:2c:46:be:75:d0:65:c5:d8:d1:97:b8:d7:16:d0:28:22:ad:
f4:aa:95:b3:b4:6a:02:df:1e:32:d0:e6:50:56:9d:9e:3c:6c:
63:3e:c3:b6:53:34:71:77:6f:b9:b8:8e:04:63:ae:20:d3:97:
64:0d:6f:26:3e:3a:56:72:32:5a:92:a0:a3:20:c8:e6:a5:8c:
58:a9:4e:80:c5:ba:96:ba:d8:6e:e1:d3:7a:6e:6a:2e:3b:5c:
17:68:be:57:4d:59:8a:42:c7:8b:38:35:00:d7:de:7e:16:d2:
45:c0:78:c2:df:6f:3a:bd:1e:8f:08:21:69:fe:95:85:0d:8c:
05:e8:3c:b2:2b:f7:31:1c:ca:a3:a2:5c:4c:bf:b0:41:76:5e:
16:25:5f:bf:d4:0f:48:8e:c4:81:d8:d0:3a:8f:e2:ce:5a:33:
21:2d:84:be:be:50:ef:5f:d6:1c:e4:dc:dc:77:de:0b:bc:f7:
e3:c7:13:77:7c:90:23:ce:0c:b3:c8:b5:ab:1f:69:88:35:b8:
b5:55:dd:fc:bc:cb:e8:21:2b:5c:cd:2b:7e:b6:ae:6b:06:eb:
ef:8d:e5:9e:8b:1a:ab:10:0f:bb:aa:e6:26:02:5d:c5:d7:d6:
58:78:75:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 9 21:08:39 2026 by rpki-client