Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
File: YAluN0CSzDAL0LsGxBZAky7Pi0k.mft (raw, json)
Hash identifier: tDLaIHp4bRxB/iGOp7LWviw/ZB4Xn5MxGzwny+VB32Y=
Subject key identifier: 61:41:CF:B4:96:F9:22:99:85:2E:A1:83:07:24:82:5C:83:9E:76:7A
Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49
Certificate serial: 019D37BFF02EFE08C088DCCACEE487A4598F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
Manifest number: 1821
Signing time: Sun 29 Mar 2026 04:00:18 +0000
Manifest this update: Sun 29 Mar 2026 04:00:18 +0000
Manifest next update: Mon 30 Mar 2026 04:00:18 +0000
Files and hashes: 1: 09iLJ-Mwt-oGGlQePzLwscf0h0A.roa (hash: q4J6TqoqIEXUXDGYbj1FaACI7n8SQOOCFeV3Q5IYWCQ=)
2: YAluN0CSzDAL0LsGxBZAky7Pi0k.crl (hash: KDtUKPy0cD8+8xCHvRRqS8ZYmgLkTmHO6Vwg0GmXcok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:bf:f0:2e:fe:08:c0:88:dc:ca:ce:e4:87:a4:59:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49
Validity
Not Before: Mar 29 04:00:18 2026 GMT
Not After : Mar 30 04:00:18 2026 GMT
Subject: CN=6141cfb496f92299852ea1830724825c839e767a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ee:cf:bd:c6:56:5d:a7:49:f6:fe:62:d0:fb:
61:77:82:dd:0d:54:f0:fe:a3:a2:4e:1d:a3:24:ce:
05:41:e3:7d:44:86:ef:86:23:5a:8e:4d:b6:fe:b2:
2a:1b:cc:69:93:e2:49:7d:5a:c1:cb:5b:11:c2:2b:
3f:62:0f:49:3c:47:c0:c0:d7:c8:3f:f1:f6:c6:3d:
3a:23:d0:91:07:31:93:22:5f:51:74:50:f0:33:f2:
2e:5b:81:66:6d:b6:b4:5e:98:cb:08:08:fa:93:f7:
97:b7:73:d3:25:00:34:8b:bb:39:5c:61:b7:fd:c9:
96:47:49:3b:96:8a:56:70:7c:3b:20:44:3c:01:53:
10:56:46:8c:68:c7:88:92:51:64:3b:bb:8f:96:2b:
6c:79:eb:f8:0c:e7:ff:e7:96:8d:72:f5:54:97:8f:
13:71:4a:5e:10:c0:27:eb:5a:6a:3d:3a:28:1e:b6:
71:50:d4:61:cc:a8:a5:d0:01:97:50:20:79:dc:04:
9a:dc:ec:18:ab:83:0b:a0:5f:a3:d0:9b:85:54:fd:
60:cd:5d:5d:c1:d7:d9:52:56:ee:6a:65:77:b1:b7:
77:5c:dc:3d:5a:19:18:39:66:55:71:6d:2b:3b:fd:
a5:aa:e6:3b:a7:cf:65:75:78:28:c7:41:64:84:6b:
7c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:41:CF:B4:96:F9:22:99:85:2E:A1:83:07:24:82:5C:83:9E:76:7A
X509v3 Authority Key Identifier:
keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:32:9a:c9:39:37:de:96:f3:48:51:3a:1c:35:a5:ef:53:01:
68:f4:b8:25:be:d0:c1:c9:95:55:af:ec:d1:11:4d:32:37:6c:
b1:01:4a:37:e2:e1:66:90:9d:5f:dc:c4:bb:1f:d1:fd:eb:6d:
57:08:70:7e:85:f0:84:91:6e:b4:2a:06:0f:02:d6:f6:a8:03:
44:f7:84:33:d2:21:c1:85:ee:54:1f:d9:90:73:d3:bd:db:21:
2c:89:3f:29:b8:33:75:3f:5a:40:fb:d3:e1:01:98:cc:76:16:
dd:3c:d9:21:b9:54:3a:45:b4:06:89:b6:fc:82:b1:f9:00:72:
79:3a:44:3f:7c:87:08:63:71:0c:63:5f:4f:99:36:88:be:1d:
82:b6:da:4f:d4:81:35:81:79:95:35:95:86:cd:43:e9:b2:91:
25:b4:a7:5c:15:4f:a0:64:10:f7:36:4b:ad:a7:af:98:fb:a7:
fb:60:8a:90:e4:92:9b:ee:da:e4:69:d8:69:97:72:98:bd:d1:
f7:86:3c:65:20:d0:49:a4:31:96:7c:47:bb:2e:23:fd:95:da:
a2:a6:55:a4:98:8b:2f:cc:6b:9d:e1:5f:71:de:e0:cb:21:d4:
8a:28:6d:47:27:46:6d:a8:49:8d:27:35:a5:c6:ff:e4:b5:4b:
e4:d0:97:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:47 2026 by rpki-client