Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json)
Hash identifier: mMp3v68E88G2HyhImVPXyXUUCwdrTOMlJSSFUSRlF0Q=
Subject key identifier: D3:B3:4F:46:32:C5:D1:19:2D:06:85:E4:5E:46:A3:33:B5:B5:94:21
Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Certificate serial: 019EB80E681C48E6DD4AE57CE57C4AA2030D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 19:00:12 +0000
Manifest this update: Thu 11 Jun 2026 19:00:12 +0000
Manifest next update: Fri 12 Jun 2026 19:00:12 +0000
Files and hashes: 1: X2IqazocGBh2TzPpbjgU543EV3k.roa (hash: bpCuK7CG9CoRNnFqOKdhYMABq2l/U8E9Zuo+llQrjU0=)
2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: xLaiHGNTbaOJUl88WoJu3+pAN/rL1Yojb/YmiMVNwes=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 19:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:0e:68:1c:48:e6:dd:4a:e5:7c:e5:7c:4a:a2:03:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Validity
Not Before: Jun 11 19:00:12 2026 GMT
Not After : Jun 12 19:00:12 2026 GMT
Subject: CN=d3b34f4632c5d1192d0685e45e46a333b5b59421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f7:ab:ef:e0:83:ab:72:39:47:c6:7c:41:4f:
b5:ce:fb:0b:09:65:f5:5d:d3:0f:43:f2:d6:5a:7a:
68:01:32:02:29:9d:c1:9c:c7:88:14:3a:be:0a:9c:
aa:cc:d3:e4:be:69:77:16:fa:00:95:e5:0a:f0:f1:
05:07:86:93:e9:bd:c7:ad:e5:ba:f5:88:43:75:fe:
69:c6:ab:da:87:63:a1:f7:e7:40:f2:90:49:dc:f9:
5c:70:80:90:db:e3:f6:58:7e:c8:fe:96:f8:21:36:
31:3a:d7:ce:fe:02:cb:8b:6d:33:d2:42:a4:02:6c:
65:11:25:98:b1:cd:c5:bb:90:a7:1d:a6:7d:e2:34:
1c:a5:b3:28:ab:03:a7:c9:0b:87:6b:dc:97:14:c1:
f2:e3:9b:7c:d9:04:b6:dc:1c:51:56:47:41:e0:22:
71:57:ea:e1:76:e0:31:9f:af:68:e7:4f:e2:33:b3:
be:92:1e:5e:e7:d2:77:38:f7:ac:fd:fa:43:5b:6c:
6d:cb:84:c9:28:20:be:e2:05:0f:f8:95:25:70:70:
7f:67:d0:59:d3:90:f0:86:59:ff:7f:7d:c5:f3:51:
a4:f0:0b:93:20:d5:11:36:4f:27:0a:60:15:65:2b:
69:20:d0:b2:60:71:cc:bb:4a:ca:d2:18:07:20:de:
eb:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B3:4F:46:32:C5:D1:19:2D:06:85:E4:5E:46:A3:33:B5:B5:94:21
X509v3 Authority Key Identifier:
keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:f5:ea:43:76:75:da:d5:0c:cb:76:a7:cb:84:55:7c:33:a0:
75:52:0a:99:71:1d:b3:01:f0:ac:59:38:b2:a7:1e:ed:ef:53:
79:c3:e7:b4:27:48:7d:1e:c9:76:34:ae:8a:ce:07:ce:a7:7c:
ca:fb:f0:25:91:55:cd:83:0e:47:7e:98:9c:ff:e9:5d:20:7d:
3f:87:20:21:bd:25:ed:04:4e:f2:9d:9f:0f:4e:66:2f:2e:1e:
1e:c2:ec:87:26:b5:8f:87:8b:ec:50:84:64:ea:b9:76:16:0b:
0e:e8:74:0f:2e:3b:8b:95:14:a7:bd:d3:c4:0b:61:94:31:be:
09:25:99:fb:41:32:5f:7d:f5:3a:48:eb:62:90:7a:53:e4:d4:
62:c7:84:b3:61:cf:83:7a:e1:45:1a:78:eb:0b:dc:4b:f9:a5:
34:67:91:8f:d1:fa:b7:21:a9:ed:fe:d1:13:09:06:f4:e1:22:
bc:6f:a4:b4:4b:c1:52:ba:12:5d:6c:a1:00:2b:16:eb:36:80:
98:08:0a:39:45:94:d4:a7:28:e3:b0:af:90:b8:37:57:87:48:
8c:cc:13:99:e2:2a:44:15:80:f3:44:a0:0e:c5:98:35:e1:1e:
63:60:30:92:6e:b1:e7:03:f3:6d:30:6f:99:22:e0:62:ac:10:
f4:82:e0:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:40:36 2026 by rpki-client