Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: 0NWRNHRkTqvEuZrw1P/Sp3Tv6BjN+URpqVGYVzQxwUY=
Subject key identifier: AA:6D:A7:5E:2C:74:7A:B4:9A:C3:62:18:A0:38:17:77:2A:34:76:1A
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 019EA82DCCD62F27CD4459442A18BBEE443A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 07FE
Signing time: Mon 08 Jun 2026 17:00:34 +0000
Manifest this update: Mon 08 Jun 2026 17:00:34 +0000
Manifest next update: Tue 09 Jun 2026 17:00:34 +0000
Files and hashes: 1: PUDvpR_aiNzuJCBLk51UIXHyhYI.roa (hash: Sq53LfucALVr4BVz660/k9ccPDQx9/Vh4c8LAplhshQ=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: mOPDtUyL+2Gzgea5quhJsZxw6iUUF9A05JflCGjD3gY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 17:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:a8:2d:cc:d6:2f:27:cd:44:59:44:2a:18:bb:ee:44:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Jun 8 17:00:34 2026 GMT
Not After : Jun 9 17:00:34 2026 GMT
Subject: CN=aa6da75e2c747ab49ac36218a03817772a34761a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:19:4a:92:26:f1:c2:ef:55:20:28:e6:34:df:
c3:f6:4e:23:d2:9d:f8:6b:ce:28:e3:85:1d:8d:a4:
63:47:11:b5:6c:26:5a:67:31:df:5a:bd:99:ab:39:
47:69:80:dd:46:92:4e:56:75:78:26:0f:f2:ca:3e:
b3:ee:2f:c9:10:4f:57:1d:aa:ee:4d:d1:4e:4c:94:
8b:30:54:a2:96:70:57:f6:30:ed:fc:fd:d9:a4:d7:
68:6f:6d:1f:be:a2:aa:25:d7:f2:8c:c5:89:91:fc:
d8:ee:ba:63:7f:91:ca:6a:8b:77:45:a6:f2:d0:56:
5f:c5:bd:6d:8d:f7:00:7b:18:26:c6:ec:95:87:0d:
50:d7:b5:7d:73:8e:d7:65:84:e2:72:8e:8d:7b:9b:
48:03:a3:d8:58:88:4a:de:aa:69:5c:46:85:2d:43:
93:dd:2a:05:11:68:36:5f:5d:54:ba:ab:77:11:63:
7b:bd:92:f7:27:a0:f1:cc:95:ed:8d:5b:47:73:0d:
97:5d:5b:97:cc:d4:04:e7:6e:23:10:22:f0:f2:0c:
eb:d1:5c:f3:48:28:78:58:fe:9b:2b:62:5f:c5:f5:
dc:26:ef:aa:6c:32:03:e5:f0:0d:7b:78:98:90:45:
40:54:fe:5b:c2:c7:21:72:71:b2:9b:6c:e5:4b:61:
59:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:6D:A7:5E:2C:74:7A:B4:9A:C3:62:18:A0:38:17:77:2A:34:76:1A
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:35:9f:b9:2b:a3:5c:2c:08:a5:ce:00:39:e1:ce:81:cb:8b:
21:66:65:8e:c3:22:8b:2d:60:f3:ef:16:fa:c0:8a:82:86:dd:
01:a6:0e:ff:69:65:d0:4e:97:06:71:88:a6:85:b5:ec:28:c4:
a4:69:7e:4e:a7:84:3b:1b:1f:dc:76:5b:64:6f:0b:94:54:b2:
02:8d:b0:46:78:b8:df:3e:2c:9d:0f:58:03:38:4a:27:a5:ed:
b1:29:86:f6:1b:c4:b5:58:96:26:50:22:e2:1e:24:c9:77:a2:
6e:d1:2e:70:53:1f:a3:6d:df:d8:97:8c:bd:b0:a8:74:62:3c:
ca:8b:e7:26:25:5d:58:75:f5:8f:ea:1b:ee:c0:f7:50:80:5b:
a8:a7:c2:bc:f3:76:3d:d5:77:e9:65:ed:ad:6f:e1:54:45:06:
cc:bb:47:34:02:e1:ae:36:04:19:f5:51:56:b3:cc:df:30:88:
8a:b3:8b:9e:9e:ed:dc:24:0d:4e:81:aa:12:13:88:e8:90:c1:
88:f6:d1:4d:3b:4f:aa:b4:ea:0f:5e:04:26:d2:12:c3:ee:6e:
88:99:ac:de:f9:2a:4c:62:57:52:51:ea:18:2a:3a:02:c0:98:
5e:45:31:0e:ff:90:ec:cb:98:9b:c3:56:04:e1:75:89:6c:9a:
64:89:74:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 9 03:27:13 2026 by rpki-client