Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
File: YsTHQ9XCr88n8QTrbgMWEWyFx94.mft (raw, json)
Hash identifier: JbuGVOH+FIzZboT/M2itx2AGD2cXRhwqVM7jfPI1xsY=
Subject key identifier: 72:02:A0:3C:22:45:43:AC:18:73:B9:91:EF:B1:0C:69:88:63:36:58
Authority key identifier: 62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
Certificate issuer: /CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Certificate serial: 019E30A9197CC7AA9A433537B6EA015350B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
Manifest number: 0EDD
Signing time: Sat 16 May 2026 12:00:48 +0000
Manifest this update: Sat 16 May 2026 12:00:48 +0000
Manifest next update: Sun 17 May 2026 12:00:48 +0000
Files and hashes: 1: DT8ZHpsnu95pA077Bij5e4AaTEY.roa (hash: QTft8cX4BupKj8g0B2lC6ytondXy0rFBo523NlqKQRE=)
2: YsTHQ9XCr88n8QTrbgMWEWyFx94.crl (hash: uB2NQj3MCj3U5MkPfDN/KmfDlGgXhXkfOGaCqWpINAk=)
3: qluoOzLyxaccQSwrFa90RFqcqxg.roa (hash: qpMAcoRGSm/EZYI6/sZIFBd3qkp/MdqT0v4KuQ94Pkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:a9:19:7c:c7:aa:9a:43:35:37:b6:ea:01:53:50:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Validity
Not Before: May 16 12:00:48 2026 GMT
Not After : May 17 12:00:48 2026 GMT
Subject: CN=7202a03c224543ac1873b991efb10c6988633658
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:85:21:52:e2:e3:b5:cd:23:98:c9:fe:6b:00:
69:88:73:df:b5:59:24:d2:01:28:11:98:b2:6c:8e:
d4:08:9d:51:c1:33:82:6e:eb:de:96:49:3e:02:95:
38:cf:f5:ef:5c:44:6e:0c:45:89:d8:87:ce:cb:d4:
3a:8c:57:d0:f4:a5:85:98:ee:96:e3:40:90:e7:a0:
2c:07:ce:e5:19:f7:3e:bc:5d:a3:77:f2:8e:a9:11:
01:3f:0b:04:ae:b2:3a:48:2f:4e:6c:e4:7f:47:04:
cf:3b:fc:4f:b4:05:e9:59:08:f6:17:76:a7:80:8e:
2f:42:9f:a2:c2:c0:15:0d:bd:b2:0f:e1:36:93:9e:
c7:34:ce:68:96:66:e4:13:d5:6b:6a:00:c3:e8:5e:
dd:fc:24:88:6c:05:2a:e8:0f:a6:db:55:d7:46:31:
bc:89:29:28:47:cc:a5:6b:59:c4:c5:c7:ae:55:88:
df:81:3c:96:80:23:38:d4:b1:9c:a9:9d:9d:23:f5:
58:f1:4e:a9:89:0d:6d:1c:50:2a:c5:12:94:be:8f:
ce:d1:b2:09:be:3d:07:cd:31:38:61:86:61:a5:ed:
e9:2d:d6:d1:66:89:8e:87:af:c5:f3:09:9d:8a:6a:
3b:e9:cf:ef:c8:dc:63:65:55:2f:72:76:23:25:c7:
b7:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:02:A0:3C:22:45:43:AC:18:73:B9:91:EF:B1:0C:69:88:63:36:58
X509v3 Authority Key Identifier:
keyid:62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:df:e7:b7:12:e0:da:51:5b:f3:83:83:f3:50:e5:21:98:f9:
01:06:d0:f7:41:a0:44:3c:bb:1f:4b:40:1a:e0:d7:b4:58:c5:
e5:a4:f1:cc:e1:2f:ad:e5:2d:97:22:19:82:29:bd:cb:64:23:
10:e3:d1:a2:ef:bb:ba:dd:c4:e0:be:ad:56:51:58:f3:2d:98:
ff:3d:6e:cf:8a:80:0f:f2:6c:12:4d:58:a0:9d:f3:aa:2f:a6:
f4:cf:7a:3d:09:7a:a4:3f:94:bd:e4:10:a0:2f:d6:d2:7a:3b:
29:b4:1c:f2:0f:a9:bf:ef:75:bf:93:b6:76:fd:58:4a:f9:ab:
ec:af:48:c1:f3:e7:69:f4:88:cd:c9:c4:ec:10:73:82:ba:57:
c5:81:9e:24:23:99:70:f5:86:0d:69:e0:83:2e:78:6e:a8:d5:
5a:49:e7:d2:ee:63:35:11:a8:40:0f:98:b8:e4:39:cf:cd:1a:
ed:b6:57:40:95:8e:92:de:ca:b0:5a:ca:29:38:ea:10:9f:8f:
13:e7:85:7f:c7:0f:5e:b7:1f:7b:87:c5:27:62:c3:a8:69:ad:
95:94:17:18:33:d5:f9:5f:ca:5c:f8:32:d0:38:2a:34:38:4f:
d3:f8:61:e0:c3:1f:5e:ac:50:73:5d:2f:8a:ad:88:3d:50:b3:
37:13:64:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:48:37 2026 by rpki-client