Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
File: YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft (raw, json)
Hash identifier: Kbilux16QFvGQpbT43oR22GtEFicmIxrMTlRf6jYmDU=
Subject key identifier: 4F:FE:70:75:AF:03:1F:71:1A:EA:EE:09:01:77:15:D4:17:EB:33:74
Authority key identifier: 62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
Certificate issuer: /CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Certificate serial: 019D382E44869984568B488219437BD22699
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 06:00:49 +0000
Manifest this update: Sun 29 Mar 2026 06:00:49 +0000
Manifest next update: Mon 30 Mar 2026 06:00:49 +0000
Files and hashes: 1: YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl (hash: 5vMBpSErN41ExBvKnLtoy3REr8426mAOnEozreruCg0=)
2: ex_xJpK_CdSqACSQtdB9gjUSuD4.roa (hash: MIYxDXr1ZqH9Kq+ZDYqcGhxuESuPqOopC1Yf9yS3HhI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:44:86:99:84:56:8b:48:82:19:43:7b:d2:26:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6294db0b87f6aeecce7fb22fb1b1421d906a6350
Validity
Not Before: Mar 29 06:00:49 2026 GMT
Not After : Mar 30 06:00:49 2026 GMT
Subject: CN=4ffe7075af031f711aeaee09017715d417eb3374
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:52:93:b3:30:48:dc:70:15:9a:07:85:c4:0d:
10:86:a2:89:bb:bf:e8:7b:6d:30:53:86:18:15:d3:
69:b5:69:74:35:74:da:f0:1b:b9:fb:c5:db:47:04:
7c:a6:c0:6b:e8:5c:ac:4f:d5:84:e0:7c:1f:8e:5e:
5c:2b:15:11:ef:a0:db:34:2a:88:50:2c:d6:18:4b:
d9:fb:97:df:0d:96:d6:64:f5:5d:0d:86:d0:96:d2:
77:e8:de:d7:70:4d:33:7d:5a:1a:0b:ba:20:67:f4:
ea:38:60:25:dd:d2:68:92:e1:ee:0b:a0:89:29:ce:
52:42:68:ed:2b:16:d0:f6:0d:0c:4f:58:b2:8e:ad:
d5:7f:13:a1:00:79:1d:55:bf:0b:1c:fa:5a:f1:a7:
28:7c:ac:e0:e0:4a:64:c6:d2:b6:91:21:ce:ad:7c:
71:18:68:9e:1e:ac:0c:2e:b7:66:78:d2:2c:c2:99:
81:b4:43:0d:d6:44:56:9e:d5:65:5a:e6:48:13:db:
bd:06:94:8e:d4:58:e8:6d:84:0c:c5:09:51:3c:63:
0f:48:b0:e4:81:57:71:cc:09:2a:75:dd:2b:25:81:
96:85:3f:63:51:36:6f:45:b8:6e:7e:e9:48:69:c8:
57:0a:a7:9c:ca:0d:25:b2:4b:04:c0:04:26:a2:0d:
6f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FE:70:75:AF:03:1F:71:1A:EA:EE:09:01:77:15:D4:17:EB:33:74
X509v3 Authority Key Identifier:
keyid:62:94:DB:0B:87:F6:AE:EC:CE:7F:B2:2F:B1:B1:42:1D:90:6A:63:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YpTbC4f2ruzOf7IvsbFCHZBqY1A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/53d1a5-9c61-4ff2-b21b-70c95209fe89/1/YpTbC4f2ruzOf7IvsbFCHZBqY1A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:07:e3:2d:6e:a6:38:1d:4c:b2:fb:68:61:af:5b:13:81:46:
d7:0f:2f:12:f0:e5:ef:ca:c7:b8:37:6c:a5:8e:07:83:bf:87:
5d:0f:1b:e4:39:b1:7f:c6:5e:bd:83:ee:d5:af:1b:99:46:f6:
49:cd:90:46:9f:75:0d:8a:c5:f1:2e:82:62:ad:01:e7:e8:67:
0c:c8:7e:5d:ee:02:5c:58:b3:54:6f:6b:bf:b5:b2:33:52:2b:
4e:b3:2e:96:9d:07:73:ec:79:eb:49:6a:da:6b:ce:2d:a3:c2:
9a:d5:c9:6a:2f:b3:14:36:e3:0d:76:2c:c3:2c:76:07:84:2c:
b0:a0:70:01:c6:0e:5b:6a:74:01:53:9b:02:74:bc:7c:c6:d8:
2a:cc:5b:38:e8:7d:4a:75:df:8f:92:f6:b1:e3:87:0b:06:57:
09:4a:ed:f1:2d:bf:6d:c1:1f:4a:a7:64:14:f0:54:25:04:83:
c4:0f:e8:0e:11:12:49:44:f6:8b:c3:ee:ca:12:6b:b2:43:7e:
86:70:c8:0f:ae:a4:61:61:0d:a7:de:80:17:83:15:d6:2a:e4:
d7:c4:d0:53:3a:57:2d:da:f4:52:3e:ca:0f:54:36:2c:92:4e:
ef:bd:65:73:83:20:d9:4b:7e:61:e1:4c:d4:15:e6:7d:d9:c1:
f0:37:50:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:37 2026 by rpki-client