Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: uHz74IOlEJC8gOiZPNSzbC///7DUFe+0ZEG9mnx6PCQ=
Subject key identifier: 52:49:9A:08:05:9B:BB:F9:82:C6:B5:E3:EF:14:9F:E4:47:4D:69:0A
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 019D3940BFFB4353EE1E432ADD255B72CDCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 0740
Signing time: Sun 29 Mar 2026 11:00:37 +0000
Manifest this update: Sun 29 Mar 2026 11:00:37 +0000
Manifest next update: Mon 30 Mar 2026 11:00:37 +0000
Files and hashes: 1: PUDvpR_aiNzuJCBLk51UIXHyhYI.roa (hash: Sq53LfucALVr4BVz660/k9ccPDQx9/Vh4c8LAplhshQ=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: 8PgDIwnr0ZPkNYD31dtxaEYvnVHHwL3mq+k5HMqHb8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:bf:fb:43:53:ee:1e:43:2a:dd:25:5b:72:cd:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Mar 29 11:00:37 2026 GMT
Not After : Mar 30 11:00:37 2026 GMT
Subject: CN=52499a08059bbbf982c6b5e3ef149fe4474d690a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:08:44:24:7b:95:b2:69:12:d7:5f:93:4d:23:
b3:30:27:a1:d9:37:e8:35:25:b1:36:c3:a0:a6:e6:
10:62:c9:7f:e8:ca:fe:68:ac:80:a8:57:43:fe:66:
bb:1d:76:f9:5d:64:c7:68:73:2e:26:65:33:d2:66:
cc:66:88:e6:4f:c7:d7:83:25:ee:60:84:e4:3a:28:
50:04:27:cc:8b:b9:99:36:28:82:64:59:ba:7c:b3:
78:35:0e:1d:c3:87:06:8d:1f:f2:7d:f1:d6:6b:d3:
8d:49:24:36:c6:8d:17:e4:a2:60:7b:cb:2f:45:c1:
99:23:29:4a:7d:3e:d8:80:6c:0b:ca:b9:68:38:8d:
cc:23:9b:24:dd:ef:d4:46:d4:4a:62:86:44:8d:cb:
e2:24:23:6e:06:ca:4d:56:f2:bd:b0:c2:fe:1d:d1:
a4:be:02:e5:6e:a5:81:33:c5:f0:55:a9:b1:38:9a:
ce:9b:7d:46:88:ac:84:b2:21:ab:04:a1:dd:c3:89:
97:30:98:1f:3f:55:ec:a6:4e:ec:48:f9:ee:5d:6b:
e3:24:d5:2d:6c:95:8c:fe:66:8c:95:1c:9c:5e:49:
e8:0d:c8:2e:8c:6d:2a:95:51:df:de:5c:a8:ca:1a:
8f:8a:97:55:96:ac:f8:20:d1:4b:42:c9:38:15:fc:
f8:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:49:9A:08:05:9B:BB:F9:82:C6:B5:E3:EF:14:9F:E4:47:4D:69:0A
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:92:0d:b8:cb:26:74:07:ee:75:ff:cd:8b:42:75:72:3d:db:
36:08:14:23:b9:de:c5:2c:84:da:d7:21:ad:b5:91:e4:b3:32:
f8:5c:d0:26:e3:2d:db:a4:ef:c3:80:a5:ae:16:e9:1a:8f:68:
82:88:37:a9:5d:36:7c:e9:17:10:fd:cd:d9:16:dc:81:42:58:
6b:12:29:26:f5:b8:a9:55:0f:17:24:ba:f2:a4:16:03:05:63:
26:92:d4:61:3c:34:51:77:1f:b9:33:e9:c0:24:6b:9f:10:10:
ac:6a:94:b6:df:88:a4:1b:1c:7a:a5:77:61:9c:43:c2:95:d1:
87:dc:55:d8:33:cc:d9:da:df:39:78:3a:09:9d:a5:67:da:c7:
ea:06:62:ab:fd:dd:28:b2:f6:4f:64:93:1b:2d:d2:eb:ca:4b:
a3:30:12:9f:57:40:9f:1c:7b:d0:13:08:c5:84:21:5f:b3:3f:
38:b1:9f:25:ef:d9:2f:d5:1f:22:67:5a:c2:41:cf:01:de:c7:
dd:39:b6:53:6f:91:55:73:60:b6:29:d1:ca:d0:ed:0b:fb:3a:
a8:1e:d6:a9:16:7f:cc:0c:97:d0:58:f5:2e:62:a0:7b:4f:fe:
3e:9c:36:82:e7:63:9d:40:71:4a:6b:c6:93:92:ed:3f:99:1b:
20:17:d3:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:35:52 2026 by rpki-client