Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
File: YL83NiAUbm8piugtLIqDccrLexs.mft (raw, json)
Hash identifier: BmzT2c7aKFdFW8vQ8+o62t1BPnvEfhc+LJmDgXERAvs=
Subject key identifier: B6:26:8B:AC:BC:04:FE:C5:3C:6B:4D:E1:AD:74:87:A5:B4:03:61:3B
Authority key identifier: 60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
Certificate issuer: /CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Certificate serial: 019D37C0031BB841A1EB06DD9F3CEF0CEDA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 04:00:23 +0000
Manifest this update: Sun 29 Mar 2026 04:00:23 +0000
Manifest next update: Mon 30 Mar 2026 04:00:23 +0000
Files and hashes: 1: X2IqazocGBh2TzPpbjgU543EV3k.roa (hash: bpCuK7CG9CoRNnFqOKdhYMABq2l/U8E9Zuo+llQrjU0=)
2: YL83NiAUbm8piugtLIqDccrLexs.crl (hash: 1O2huDs+WnFYWwVjfZaqA3iVZkZWpj0vEUDhK8fu6xA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:03:1b:b8:41:a1:eb:06:dd:9f:3c:ef:0c:ed:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60bf373620146e6f298ae82d2c8a8371cacb7b1b
Validity
Not Before: Mar 29 04:00:23 2026 GMT
Not After : Mar 30 04:00:23 2026 GMT
Subject: CN=b6268bacbc04fec53c6b4de1ad7487a5b403613b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:9e:ba:4c:62:01:0c:63:11:23:68:2e:df:5f:
5c:4c:4c:ee:da:9b:b1:b8:a7:48:c3:87:7c:b7:4a:
36:4a:8e:37:9a:40:59:d8:f8:1b:46:a4:85:ce:c5:
c1:dc:7c:88:bb:3b:dd:9b:c4:80:ed:d1:a7:d6:f8:
ab:42:90:2f:a3:aa:07:59:4d:ba:ae:00:56:c9:75:
09:9c:fe:3e:67:9a:a1:3d:c8:ba:5d:6e:3b:8a:95:
22:d2:c7:8c:bb:d3:d3:6c:7c:c6:29:98:82:39:b4:
42:c1:35:65:f7:ed:23:cc:c7:e3:62:07:c5:b1:e6:
24:3b:f2:d1:32:2b:60:c2:66:41:b3:a4:4a:18:ab:
60:59:dc:33:c4:28:da:54:40:7e:df:53:8b:73:32:
dd:f4:1f:05:7b:52:16:72:b9:8f:70:6e:0a:60:66:
8e:7a:22:fe:8d:47:a3:3f:99:35:1a:9f:74:7c:ba:
02:a8:d3:50:9d:d1:23:cc:23:53:a5:01:fa:0d:fa:
6c:f1:2b:2c:80:58:e1:01:c9:ae:1d:b5:25:2a:ca:
51:51:c8:56:da:79:75:d1:5a:ce:30:c2:1c:e3:74:
d0:ed:9a:aa:b0:d6:27:25:75:05:80:ea:b8:51:3d:
a3:8c:e2:4d:42:74:4f:88:3b:93:bb:66:76:1e:ef:
d4:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:26:8B:AC:BC:04:FE:C5:3C:6B:4D:E1:AD:74:87:A5:B4:03:61:3B
X509v3 Authority Key Identifier:
keyid:60:BF:37:36:20:14:6E:6F:29:8A:E8:2D:2C:8A:83:71:CA:CB:7B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YL83NiAUbm8piugtLIqDccrLexs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/decde3-277a-4956-bf92-f0a8123e70f9/1/YL83NiAUbm8piugtLIqDccrLexs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:e5:b1:43:df:1b:ec:72:70:98:14:10:f1:32:ee:d4:e8:fb:
ee:cb:41:4c:fc:d0:40:18:79:4f:c0:db:a8:db:22:d3:da:d1:
47:5b:da:2b:e1:fd:5d:eb:2f:f9:20:25:84:f0:ed:4f:f1:e0:
dd:70:ed:e7:8e:43:c6:50:0f:24:70:71:da:58:ce:fd:43:79:
ad:d2:02:67:76:b6:b5:d3:7b:d9:c4:46:e1:3e:d3:56:de:ec:
e2:73:18:30:c4:7b:f0:21:a1:7d:d8:dc:af:7e:a2:82:97:b1:
25:f3:18:14:a7:d2:2a:91:83:09:31:b6:f2:36:39:0b:e8:08:
06:aa:5c:88:26:e9:99:88:35:cd:22:5e:12:fb:60:e1:8b:0e:
a8:17:8e:3d:0a:32:22:3b:bc:84:62:e1:b4:ba:15:6d:e6:34:
64:bf:c1:b1:02:6e:a3:9e:2a:f8:49:89:ef:d0:71:f6:41:b3:
3f:33:8b:92:8a:b5:3f:93:71:b4:0f:eb:c4:17:b5:02:3a:3b:
42:dd:c9:3d:a7:9f:11:bc:db:a4:0f:af:3d:a4:49:d1:3f:68:
ef:d4:94:10:20:ee:d0:71:07:06:0a:9d:48:c6:66:a5:55:22:
c7:b2:54:96:01:69:05:ec:e2:c2:7d:b3:d4:13:87:af:5f:a7:
e0:cc:a0:16
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wAMbuEGh6wbdnzzvDO2kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwYmYzNzM2MjAxNDZlNmYyOThhZTgyZDJjOGE4MzcxY2Fj
YjdiMWIwHhcNMjYwMzI5MDQwMDIzWhcNMjYwMzMwMDQwMDIzWjAzMTEwLwYDVQQD
EyhiNjI2OGJhY2JjMDRmZWM1M2M2YjRkZTFhZDc0ODdhNWI0MDM2MTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyp66TGIBDGMRI2gu319cTEzu2pux
uKdIw4d8t0o2So43mkBZ2PgbRqSFzsXB3HyIuzvdm8SA7dGn1virQpAvo6oHWU26
rgBWyXUJnP4+Z5qhPci6XW47ipUi0seMu9PTbHzGKZiCObRCwTVl9+0jzMfjYgfF
seYkO/LRMitgwmZBs6RKGKtgWdwzxCjaVEB+31OLczLd9B8Fe1IWcrmPcG4KYGaO
eiL+jUejP5k1Gp90fLoCqNNQndEjzCNTpQH6Dfps8SssgFjhAcmuHbUlKspRUchW
2nl10VrOMMIc43TQ7ZqqsNYnJXUFgOq4UT2jjOJNQnRPiDuTu2Z2Hu/UzwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLYmi6y8BP7FPGtN4a10h6W0A2E7MB8GA1UdIwQY
MBaAFGC/NzYgFG5vKYroLSyKg3HKy3sbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTIt
ZjBhODEyM2U3MGY5LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yi9kZWNkZTMtMjc3YS00OTU2LWJmOTItZjBhODEyM2U3MGY5
LzEvWUw4M05pQVVibThwaXVndExJcURjY3JMZXhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdeWxQ98b
7HJwmBQQ8TLu1Oj77stBTPzQQBh5T8DbqNsi09rRR1vaK+H9Xesv+SAlhPDtT/Hg
3XDt545DxlAPJHBx2ljO/UN5rdICZ3a2tdN72cRG4T7TVt7s4nMYMMR78CGhfdjc
r36igpexJfMYFKfSKpGDCTG28jY5C+gIBqpciCbpmYg1zSJeEvtg4YsOqBeOPQoy
Iju8hGLhtLoVbeY0ZL/BsQJuo54q+EmJ79Bx9kGzPzOLkoq1P5NxtA/rxBe1Ajo7
Qt3JPaefEbzbpA+vPaRJ0T9o79SUECDu0HEHBgqdSMZmpVUix7JUlgFpBeziwn2z
1BOHr1+n4MygFg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:03:51 2026 by rpki-client