Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
File: YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft (raw, json)
Hash identifier: zZTPLeQJwD94LMQCHt0D5wQfpEmdHqVK9N3prCHYUac=
Subject key identifier: AC:2D:FA:AC:10:9E:A9:CB:D8:2C:C1:65:BB:4F:81:3F:92:C7:AD:EE
Authority key identifier: 61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3
Certificate issuer: /CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3
Certificate serial: 019D37F73FF0451FE3BD5E25C0CBE42BA206
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
Manifest number: 0F54
Signing time: Sun 29 Mar 2026 05:00:43 +0000
Manifest this update: Sun 29 Mar 2026 05:00:43 +0000
Manifest next update: Mon 30 Mar 2026 05:00:43 +0000
Files and hashes: 1: YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl (hash: 68CZPYiV+UOJbKITUccgMPnV5759c+rckeJI0bbNMyo=)
2: ddYTOcOmB0o9lm0zE3zt2oO1U1g.roa (hash: hdKwDZDL26ytQwp0S8rV3Crlq4ka+0ODIpyfMgGOmSc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:3f:f0:45:1f:e3:bd:5e:25:c0:cb:e4:2b:a2:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=610f8f99fca69aa73f88a531db46d228a7e2c3d3
Validity
Not Before: Mar 29 05:00:43 2026 GMT
Not After : Mar 30 05:00:43 2026 GMT
Subject: CN=ac2dfaac109ea9cbd82cc165bb4f813f92c7adee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:06:09:a7:22:56:96:56:1e:c5:7a:80:fa:82:
e2:e6:fb:b3:c0:ce:79:d3:2a:16:3f:25:12:57:ab:
1f:a4:c5:ef:00:ca:77:53:f3:16:14:a2:44:5d:d5:
e1:0c:f9:b0:dc:e1:5f:96:46:19:5a:7a:3e:dd:fe:
51:c7:a6:e9:64:e1:3f:fb:62:39:8a:c1:bf:91:52:
59:60:69:f6:a1:b9:6c:43:8b:20:15:d4:a0:69:b2:
52:f0:d8:17:e7:f7:86:79:e2:60:28:42:40:d2:ab:
d5:51:dc:70:6e:b1:59:bf:13:75:30:ab:d8:8f:dd:
13:62:97:a2:00:c1:b4:c5:0a:5e:14:51:ed:66:44:
26:e9:f9:41:cd:b3:93:32:99:04:3a:8c:b9:0c:58:
4e:ad:bf:b7:9e:5e:c9:4b:e1:6f:eb:92:b0:59:d4:
6b:9e:d0:6b:c6:49:53:f7:1b:3e:79:a4:4d:71:39:
fd:1f:7f:de:cf:d3:79:b7:c9:7e:9c:d5:1e:cb:46:
d4:59:5f:14:d0:d3:1c:60:e3:fd:e3:7f:58:e4:66:
bd:b9:d6:4c:81:c4:c0:af:7b:ca:7f:3c:dd:69:bd:
b9:c0:7a:27:20:0f:af:98:c7:4a:44:ba:35:2f:43:
a5:05:f8:29:fa:77:2b:08:05:ae:a6:23:c0:52:91:
b0:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:2D:FA:AC:10:9E:A9:CB:D8:2C:C1:65:BB:4F:81:3F:92:C7:AD:EE
X509v3 Authority Key Identifier:
keyid:61:0F:8F:99:FC:A6:9A:A7:3F:88:A5:31:DB:46:D2:28:A7:E2:C3:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQ-Pmfymmqc_iKUx20bSKKfiw9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/d94681-abe6-4e23-9b98-79a0a528e0a4/1/YQ-Pmfymmqc_iKUx20bSKKfiw9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:10:11:f0:64:89:3d:eb:35:e3:98:f0:74:6a:4f:07:4f:d8:
78:8e:e8:aa:aa:c1:80:eb:a2:4b:6f:f5:a3:a5:d2:92:99:11:
6b:27:c8:56:f3:22:6a:df:7a:62:b8:5c:d6:7f:c0:2c:7e:bd:
ce:ae:eb:4c:c4:16:f5:3e:ce:c9:37:9d:1c:f6:f4:04:70:94:
33:8c:64:03:98:42:7b:3e:54:8c:2e:35:43:b9:4d:d1:2a:76:
34:63:6e:61:6e:29:08:4e:97:18:c4:de:4e:b3:5d:1a:ce:36:
86:28:77:e0:50:bc:13:81:3a:cd:b9:93:3e:4a:3b:b2:f8:c2:
95:60:25:b2:b9:2e:86:e7:5d:1a:ff:73:a1:b4:5c:25:f6:ee:
0f:8e:94:b6:53:bb:66:4f:12:43:ff:40:81:5f:e5:69:ba:f1:
69:bf:2d:68:6b:ef:9a:f6:97:8a:7d:ab:46:07:aa:b6:22:2a:
60:cb:b8:cf:89:67:1a:df:13:9c:67:df:2c:c8:80:a3:2a:80:
f9:d1:61:ab:61:e2:4d:af:b5:43:f8:ab:4c:3a:63:6d:4a:e4:
d4:d5:be:49:48:d6:7b:ec:41:42:ad:71:65:3a:c7:3f:f3:c7:
96:1c:0b:cf:e9:3c:a1:d7:a8:3b:41:64:b6:ef:a3:4a:95:fa:
28:ba:b5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:02 2026 by rpki-client