Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
File: yPGA3UiWddR5NSX-5s__Rpcv8zw.mft (raw, json)
Hash identifier: OtbaZH6ACnkLqXlhFY3/Lv5W8B4wFCAy+Pn7abccuWM=
Subject key identifier: 0B:20:7C:C2:F1:18:60:11:4E:CD:2D:0E:60:59:D9:68:3A:FA:1D:53
Authority key identifier: C8:F1:80:DD:48:96:75:D4:79:35:25:FE:E6:CF:FF:46:97:2F:F3:3C
Certificate issuer: /CN=c8f180dd489675d4793525fee6cfff46972ff33c
Certificate serial: 019EB921F9A316E99087C65627C33B92532F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
Manifest number: 1953
Signing time: Fri 12 Jun 2026 00:01:11 +0000
Manifest this update: Fri 12 Jun 2026 00:01:11 +0000
Manifest next update: Sat 13 Jun 2026 00:01:11 +0000
Files and hashes: 1: yPGA3UiWddR5NSX-5s__Rpcv8zw.crl (hash: 1H4pj8bfwYV+OWXVDZPiskK8Mv/2QHUE/s7j5K6tYGs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:21:f9:a3:16:e9:90:87:c6:56:27:c3:3b:92:53:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8f180dd489675d4793525fee6cfff46972ff33c
Validity
Not Before: Jun 12 00:01:11 2026 GMT
Not After : Jun 13 00:01:11 2026 GMT
Subject: CN=0b207cc2f11860114ecd2d0e6059d9683afa1d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ce:be:0a:ee:50:21:8b:de:ce:88:85:7e:ff:
a8:a6:9c:73:d3:93:8f:0c:aa:ba:4f:0b:9b:55:af:
a8:7a:1e:98:1c:cb:83:e7:b8:c5:97:a7:d7:5e:d2:
10:21:08:15:61:2a:17:0a:41:75:3a:e9:c3:c6:01:
16:8c:b5:d0:9d:26:28:ee:eb:ac:51:2d:3d:41:32:
76:47:85:26:1a:dc:4d:d8:d8:a6:fd:e2:c8:a6:a5:
d1:e0:16:59:12:23:c7:93:5a:56:03:d9:62:6c:70:
05:08:43:f2:03:0b:42:90:8a:74:ae:fe:32:3a:9e:
6b:d5:2f:49:ab:49:97:8d:d4:7e:84:b2:7c:62:99:
a0:46:73:fb:cd:bf:9c:3b:ff:ed:58:48:aa:4a:2d:
c9:4a:a8:d7:e0:5a:dc:64:7c:a4:d2:f3:56:9a:a9:
fb:0b:94:36:c5:e6:07:f2:04:5e:eb:f8:42:2f:a2:
bf:1a:37:42:d5:66:13:94:c5:71:e5:e9:7a:c1:40:
27:0c:f4:f6:a8:93:0a:c2:16:94:32:85:da:51:99:
6e:c8:e3:31:50:bd:05:37:14:c5:ef:40:87:b6:57:
f5:9b:1b:28:69:6d:47:36:16:9c:e5:9e:dd:6f:96:
44:a5:e5:43:14:46:53:ec:0b:84:ab:20:2c:a4:c4:
21:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:20:7C:C2:F1:18:60:11:4E:CD:2D:0E:60:59:D9:68:3A:FA:1D:53
X509v3 Authority Key Identifier:
keyid:C8:F1:80:DD:48:96:75:D4:79:35:25:FE:E6:CF:FF:46:97:2F:F3:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yPGA3UiWddR5NSX-5s__Rpcv8zw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/67f1c5-8229-4173-99c1-dbd760045eb7/1/yPGA3UiWddR5NSX-5s__Rpcv8zw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:6b:1e:1a:2c:8e:2a:0f:3a:d9:79:a2:bf:2d:a9:ef:e3:89:
02:a0:0f:2d:79:77:8c:10:1a:b3:d9:0e:cd:4f:6e:15:a6:22:
e7:c1:4a:76:3a:78:f6:4b:00:8e:24:8f:93:b2:2f:a1:5b:64:
71:72:e7:f0:cb:43:cb:cf:a5:1e:a2:99:0e:63:a9:4d:a2:91:
42:dc:48:75:40:cd:9b:ca:ee:7f:99:2c:36:3c:cb:fd:5c:38:
82:4f:2c:eb:66:9f:7a:78:84:a2:06:48:c7:d6:bb:b0:3e:5f:
68:a7:5a:b8:e6:57:56:9f:f2:8c:5a:51:6d:9e:9b:cd:38:29:
1b:c7:c8:9e:b3:b2:0d:b6:41:cf:02:0d:ed:b8:18:b0:67:eb:
10:f2:c3:7c:ec:88:89:b5:cd:93:41:18:ed:54:aa:90:fc:e6:
14:18:db:e8:65:e8:80:c9:11:4c:32:3f:ba:64:80:3c:27:bf:
f2:6e:72:31:b2:6b:8a:00:78:24:75:36:5e:8d:36:95:af:51:
7d:62:72:91:39:e0:31:4c:c1:22:7d:2b:aa:0b:33:7c:db:19:
6e:e2:a3:e6:8a:27:47:73:18:de:f1:3d:e2:d6:82:0d:4b:b3:
ee:8f:13:15:be:6d:fc:8f:a6:17:7f:58:55:ad:14:fe:05:d1:
95:71:df:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:19:25 2026 by rpki-client