Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft
File: yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft (raw, json)
Hash identifier: 3UwHNO6UTT5+HcoH2jv8IErB/vNsNY4H6fBytAeoyv4=
Subject key identifier: 95:4A:F3:FF:D2:00:15:AF:4C:1A:53:AE:BD:26:C5:36:1C:94:92:B6
Authority key identifier: C8:AB:3C:5B:69:AF:5C:21:8D:D4:AF:76:4C:94:36:6C:64:6F:83:A5
Certificate issuer: /CN=c8ab3c5b69af5c218dd4af764c94366c646f83a5
Certificate serial: 019D39E5BA3935EF1BF6B18D09AFE50E4C98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKs8W2mvXCGN1K92TJQ2bGRvg6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft
Manifest number: 1525
Signing time: Sun 29 Mar 2026 14:00:49 +0000
Manifest this update: Sun 29 Mar 2026 14:00:49 +0000
Manifest next update: Mon 30 Mar 2026 14:00:49 +0000
Files and hashes: 1: YjABWXq1K-e_wEund0ue5nxCxOU.roa (hash: PI1L0CXgsAmafCm4unnTqfAaCBg3v/MEpLRsMdPwg9s=)
2: yKs8W2mvXCGN1K92TJQ2bGRvg6U.crl (hash: tvI+Uvt4OMyTl0JwYazAtz+/1P5eobIZbjUGudcekLk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKs8W2mvXCGN1K92TJQ2bGRvg6U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:ba:39:35:ef:1b:f6:b1:8d:09:af:e5:0e:4c:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8ab3c5b69af5c218dd4af764c94366c646f83a5
Validity
Not Before: Mar 29 14:00:49 2026 GMT
Not After : Mar 30 14:00:49 2026 GMT
Subject: CN=954af3ffd20015af4c1a53aebd26c5361c9492b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2b:53:2b:52:2c:ba:58:31:fc:30:d1:65:f8:
72:d2:72:b3:06:3e:6f:20:63:0f:f2:37:27:a9:9d:
a4:30:2e:74:25:42:78:cc:7a:14:04:9a:1e:b1:64:
68:23:0a:a8:5b:e7:42:f5:15:d6:33:82:56:69:d0:
8c:e6:8d:b7:c4:e0:2c:f7:bf:16:d0:ac:ab:43:90:
3b:a2:4f:45:9a:59:a6:09:a6:50:4e:a8:41:f8:39:
e7:92:6f:7b:63:44:1b:2d:2f:07:f7:98:89:17:64:
16:46:61:3e:b4:23:3e:72:54:dd:03:25:f4:42:c2:
df:d7:63:af:dc:41:84:1a:bd:b2:c4:22:50:2d:27:
7a:79:4d:62:93:46:83:ff:26:ad:ad:9b:9b:36:c3:
b1:70:af:e5:f9:84:13:dd:48:3d:86:37:9c:77:82:
b8:23:f3:71:a3:2b:b4:1c:d7:49:bf:34:b3:3e:89:
59:95:be:e9:32:1e:ca:ed:d0:c7:0f:2d:b8:c3:cb:
3d:c7:39:e3:63:fb:16:5c:89:d3:bf:4d:59:d1:ab:
c8:60:e2:0d:d7:78:e9:a1:00:c4:aa:b6:09:98:7b:
19:ff:eb:28:b8:26:b8:0b:6e:da:6c:70:b8:1f:f1:
33:7d:98:2a:ad:1f:14:3d:a1:94:21:09:8f:17:13:
6c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:4A:F3:FF:D2:00:15:AF:4C:1A:53:AE:BD:26:C5:36:1C:94:92:B6
X509v3 Authority Key Identifier:
keyid:C8:AB:3C:5B:69:AF:5C:21:8D:D4:AF:76:4C:94:36:6C:64:6F:83:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKs8W2mvXCGN1K92TJQ2bGRvg6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/a26b0f-3353-4e59-bf70-118454ccd412/1/yKs8W2mvXCGN1K92TJQ2bGRvg6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:6a:a3:ee:89:25:44:1a:8d:6d:33:e5:4a:40:bd:ab:c5:b5:
75:2f:56:8e:70:00:22:2f:f7:df:49:4d:a0:fe:4e:bc:83:2e:
d8:c0:e8:ca:f4:2b:9b:12:6b:93:6e:c3:c3:91:85:ec:c8:22:
22:59:48:d8:86:e2:f4:8a:82:dc:4a:8b:39:bd:0b:c1:d2:7a:
af:1f:c9:94:82:48:48:02:3e:1d:04:48:ed:98:b3:27:a6:e5:
f1:fb:f9:f9:0a:d2:d5:f0:dc:a7:e3:ec:db:fc:f7:5c:e2:26:
01:f1:40:f9:4d:f6:c9:27:37:a7:b9:e2:5f:f4:de:b2:5f:3c:
71:b6:4e:e7:f0:93:39:1f:c9:56:ef:96:03:54:0d:f4:15:1e:
cd:03:67:10:4a:a8:3e:b6:42:e1:34:2f:a8:2c:58:ad:34:5a:
4a:d7:47:e5:bb:41:2d:89:f3:68:e2:d1:03:d0:7b:ad:ec:59:
50:2a:cd:f5:08:88:ef:f6:e9:21:65:0f:36:04:14:2a:c0:12:
59:1c:f1:d2:3b:ba:95:7b:19:b3:24:94:29:55:1b:15:32:30:
84:76:7c:0d:f0:a4:2d:cf:41:18:87:9e:3a:b2:7d:f3:ee:1a:
48:d6:66:82:d1:d0:66:8a:a4:64:7c:1b:a0:55:74:f7:f1:09:
b0:01:33:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:50:29 2026 by rpki-client