Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
File: YsTHQ9XCr88n8QTrbgMWEWyFx94.mft (raw, json)
Hash identifier: ee7csJP2dGEhKOqLLmSEKLZnLm2jpt89LfNzI9h3j94=
Subject key identifier: 9E:94:EB:2A:F2:BE:18:52:03:D4:83:6C:33:AD:1E:60:8E:CD:2B:78
Authority key identifier: 62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
Certificate issuer: /CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Certificate serial: 019F1A55D2EE12D8CE10197A0F7725B53A2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
Manifest number: 0F56
Signing time: Tue 30 Jun 2026 21:00:59 +0000
Manifest this update: Tue 30 Jun 2026 21:00:59 +0000
Manifest next update: Wed 01 Jul 2026 21:00:59 +0000
Files and hashes: 1: DT8ZHpsnu95pA077Bij5e4AaTEY.roa (hash: QTft8cX4BupKj8g0B2lC6ytondXy0rFBo523NlqKQRE=)
2: YsTHQ9XCr88n8QTrbgMWEWyFx94.crl (hash: z1RPeeYxKO61LI9mHIbNvymtsvKQg6a6itPUbwV+BE0=)
3: qluoOzLyxaccQSwrFa90RFqcqxg.roa (hash: qpMAcoRGSm/EZYI6/sZIFBd3qkp/MdqT0v4KuQ94Pkg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:55:d2:ee:12:d8:ce:10:19:7a:0f:77:25:b5:3a:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62c4c743d5c2afcf27f104eb6e0316116c85c7de
Validity
Not Before: Jun 30 21:00:59 2026 GMT
Not After : Jul 1 21:00:59 2026 GMT
Subject: CN=9e94eb2af2be185203d4836c33ad1e608ecd2b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:a1:0c:bb:2b:61:88:10:89:05:ea:07:19:72:
ee:4a:9e:fb:06:b7:a8:68:f7:32:03:1f:4a:45:b7:
cd:ee:c0:78:aa:71:df:4d:40:50:7b:82:1f:c4:27:
d0:37:5a:8a:07:29:e9:b1:cc:88:92:ec:a4:54:40:
99:1e:5b:6a:92:21:b8:aa:b3:0a:f8:62:86:52:df:
4e:cb:19:b9:bc:08:55:e7:cc:1c:bd:9b:d7:99:f1:
c8:29:b2:e6:bf:db:c2:12:78:eb:40:50:c6:48:77:
e6:09:cb:f0:2e:ab:c0:9b:26:d4:26:d9:b4:d3:d7:
d6:d3:79:e6:67:da:4b:76:db:17:5a:02:bb:ba:43:
5c:5f:0a:a3:6e:c8:13:91:3e:40:3b:07:fb:33:2e:
fc:da:96:61:11:c2:3d:db:b7:09:e1:07:42:a3:f8:
fa:d2:29:a9:30:38:9e:cc:94:00:86:92:d1:8d:80:
5c:40:ea:db:9f:3f:a2:64:9c:f1:77:9b:e3:ad:cc:
d5:cd:83:6f:8a:1d:43:99:61:25:5f:a5:72:01:02:
21:8e:36:24:5e:c7:23:14:65:76:78:e7:80:7c:c0:
c3:00:7c:b3:c4:4a:2f:c5:90:b3:d2:67:fb:06:73:
03:fc:61:38:be:ad:b4:44:dc:27:e3:6c:aa:e8:0e:
1e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:94:EB:2A:F2:BE:18:52:03:D4:83:6C:33:AD:1E:60:8E:CD:2B:78
X509v3 Authority Key Identifier:
keyid:62:C4:C7:43:D5:C2:AF:CF:27:F1:04:EB:6E:03:16:11:6C:85:C7:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YsTHQ9XCr88n8QTrbgMWEWyFx94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/728c40-f712-4fef-8945-de352a92f6ba/1/YsTHQ9XCr88n8QTrbgMWEWyFx94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:4e:32:f6:8d:ef:56:fa:2b:87:41:4b:31:aa:f0:ce:12:49:
08:6e:fb:d3:20:9e:53:71:9e:34:27:e8:76:61:e5:06:fb:19:
51:d1:a9:f8:fa:f5:eb:b0:52:29:db:dd:b3:84:9f:38:2d:fb:
ee:ef:d5:5b:3d:93:9d:cc:58:69:b1:3c:b7:41:0a:e2:7e:e9:
66:d8:f6:fb:ca:bc:08:f8:7d:b0:a2:dd:84:43:19:a4:58:37:
d9:ec:db:26:1d:de:64:bc:6f:bd:65:3f:82:e9:eb:3b:39:2c:
9d:aa:61:57:5f:b3:55:63:03:e4:bb:7d:6b:b6:8b:af:de:96:
2d:60:d6:89:bb:af:c6:7c:a0:5f:29:cf:4a:5f:ce:58:83:c3:
f6:87:e8:46:c0:70:8b:8f:81:92:be:7f:b0:3b:38:9a:e5:58:
7b:d3:c2:4f:3e:02:ca:65:0b:eb:59:2c:1d:f7:02:9f:e3:37:
ba:ce:cf:05:0a:12:de:31:b6:06:82:74:21:19:28:87:1c:70:
ee:69:1f:a4:33:b1:26:84:af:c1:66:75:9c:12:6f:3b:1e:b4:
1c:a8:0a:7f:ba:5e:8c:48:e2:3c:fc:83:a1:27:19:3a:6a:ce:
3b:b7:c4:26:fe:b0:61:31:33:9f:5f:cf:0e:e4:a8:2b:9b:fa:
e3:66:0e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:45:10 2026 by rpki-client