Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
File: YbGV0TBQ_zxGihSXeHELU1giUdk.mft (raw, json)
Hash identifier: DPJGFPloLZVzATEbCM/wbAWrEEFpwDEBKPHePkL/Q8Y=
Subject key identifier: 4C:AB:98:A6:6E:69:2B:C4:EE:27:37:8B:6F:5B:CF:1D:19:51:FA:BC
Authority key identifier: 61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
Certificate issuer: /CN=61b195d13050ff3c468a149778710b53582251d9
Certificate serial: 019D375261A2D69DDCCE31265DB3845C6E02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
Manifest number: 1893
Signing time: Sun 29 Mar 2026 02:00:38 +0000
Manifest this update: Sun 29 Mar 2026 02:00:38 +0000
Manifest next update: Mon 30 Mar 2026 02:00:38 +0000
Files and hashes: 1: TK8zghqg8mRUl2FKqWZ3fkqCPjo.roa (hash: gdusYks5Qp51cXZtG8mOxw07u8NyV/fdE9i7uOexEq8=)
2: YbGV0TBQ_zxGihSXeHELU1giUdk.crl (hash: tplbDWZTATCv73xFMU3sYXCcPWv9B4vtxGuVvAcJAmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:61:a2:d6:9d:dc:ce:31:26:5d:b3:84:5c:6e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b195d13050ff3c468a149778710b53582251d9
Validity
Not Before: Mar 29 02:00:38 2026 GMT
Not After : Mar 30 02:00:38 2026 GMT
Subject: CN=4cab98a66e692bc4ee27378b6f5bcf1d1951fabc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0e:39:fe:00:27:6e:28:a1:14:6d:bb:8d:88:
30:17:a7:cd:06:d9:50:83:1d:60:2c:9a:26:ce:49:
3c:ee:5f:32:15:3d:45:8a:00:11:14:db:0b:6d:2f:
3c:70:5d:a8:4d:45:ba:61:dc:ad:82:d5:fc:83:c2:
04:0f:0e:51:59:c3:20:09:ab:b2:f1:b2:0a:9f:75:
32:11:e9:e6:45:09:98:e9:fd:0e:78:c6:52:3f:cd:
b5:bd:2f:a0:9e:93:92:61:06:e4:e7:e4:b0:82:59:
17:4c:6d:54:1d:ce:1c:79:4c:aa:d0:b9:1b:a1:dc:
cb:9e:fe:da:a1:67:44:97:1d:7b:91:97:b6:a2:9e:
f9:4a:d7:3d:9e:28:bb:88:e5:f0:84:ab:13:53:2e:
16:87:df:f1:0a:f0:1f:92:da:76:a3:25:16:9b:06:
8a:89:d8:78:47:e7:9a:37:71:a8:2f:e6:38:94:a9:
02:fb:a5:9c:70:e3:5f:ba:99:d5:e7:08:e6:bd:61:
c0:94:c6:0b:1e:c0:55:a6:cf:2a:75:a5:a7:b6:04:
ae:fd:ea:a0:22:df:fc:24:5f:c9:ea:be:69:62:c9:
e8:fe:14:a6:7f:4e:f9:61:10:fb:48:3a:df:bd:ad:
be:a5:d8:63:36:85:c4:f3:97:d5:e9:35:05:76:49:
44:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:AB:98:A6:6E:69:2B:C4:EE:27:37:8B:6F:5B:CF:1D:19:51:FA:BC
X509v3 Authority Key Identifier:
keyid:61:B1:95:D1:30:50:FF:3C:46:8A:14:97:78:71:0B:53:58:22:51:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbGV0TBQ_zxGihSXeHELU1giUdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/2f3c19-56d5-4924-8bcb-bac472ab7b6a/1/YbGV0TBQ_zxGihSXeHELU1giUdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:25:9f:34:2c:46:84:92:99:3d:7e:ce:31:1d:2d:a9:90:0a:
a4:ef:b4:71:2d:e5:c6:aa:d0:a3:da:66:93:8f:af:e4:ef:4d:
46:f7:a7:f6:b5:d0:b1:18:ec:0d:5d:5a:91:66:4e:29:ee:9f:
2d:82:c8:92:5e:8c:cf:23:49:eb:b3:63:13:19:01:1c:44:ad:
53:09:db:c0:fc:73:d0:b0:a1:48:02:b1:bb:c9:e2:d4:73:89:
06:78:3e:ee:b5:dd:f3:c8:5f:4d:36:be:7a:6b:f7:78:f9:96:
d5:17:43:eb:23:5a:75:1a:e8:a9:ad:32:f3:5f:86:29:f4:87:
3f:5a:c1:dc:88:4f:e5:5d:69:da:bc:00:4b:cf:8a:bb:06:ce:
7a:e0:a3:5f:34:2b:86:78:df:6c:d7:0b:7b:1b:5b:e3:c1:70:
94:0a:4e:97:96:18:e0:45:69:16:e3:4a:b9:b8:95:56:f2:20:
83:a5:19:70:d3:3a:e6:4d:26:6d:14:62:1e:a5:24:b6:d9:3f:
3a:f6:31:6b:68:7e:03:eb:c7:e8:29:07:70:02:d9:35:13:e2:
e3:a7:f5:7c:e6:6a:5b:72:05:72:1c:fa:ee:1b:28:f8:4f:34:
4d:64:94:8a:e7:fa:dc:5e:8e:c6:66:ab:07:03:19:75:b1:63:
01:7b:c2:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:54 2026 by rpki-client