Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
File: YEBzL9vKpSkA2yRiB1v07xUVlpU.mft (raw, json)
Hash identifier: kIWJoLfYlDh8x/o5GUW7a9psN8zqQJnfH6SLAgGnEvA=
Subject key identifier: CB:30:28:92:9F:22:8C:A3:54:50:62:3C:AF:5B:55:8B:D1:DB:61:EE
Authority key identifier: 60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
Certificate issuer: /CN=6040732fdbcaa52900db2462075bf4ef15159695
Certificate serial: 019EAA1CA7B99761D8F83D1AC8D939A32124
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
Manifest number: 07FF
Signing time: Tue 09 Jun 2026 02:01:04 +0000
Manifest this update: Tue 09 Jun 2026 02:01:04 +0000
Manifest next update: Wed 10 Jun 2026 02:01:04 +0000
Files and hashes: 1: PUDvpR_aiNzuJCBLk51UIXHyhYI.roa (hash: Sq53LfucALVr4BVz660/k9ccPDQx9/Vh4c8LAplhshQ=)
2: YEBzL9vKpSkA2yRiB1v07xUVlpU.crl (hash: P9anqr3iodIFoMHu+USG00AJcTFbgPQwRUvwjqbMjPQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 09 Jun 2026 19:19:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:aa:1c:a7:b9:97:61:d8:f8:3d:1a:c8:d9:39:a3:21:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6040732fdbcaa52900db2462075bf4ef15159695
Validity
Not Before: Jun 9 02:01:04 2026 GMT
Not After : Jun 10 02:01:04 2026 GMT
Subject: CN=cb3028929f228ca35450623caf5b558bd1db61ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:28:6b:e8:3b:66:1d:d8:05:05:ce:1f:76:71:
38:d7:34:77:a3:19:85:ab:da:98:54:e8:7c:92:72:
50:cd:60:49:1d:a6:3e:0c:6b:b0:60:e7:6b:44:d7:
c3:d4:93:a3:f8:cf:f0:05:46:e9:4f:38:7c:3a:fc:
6b:00:cc:28:f0:d1:9d:81:be:7a:12:25:76:8c:28:
de:9f:21:59:37:3e:b1:c0:97:f5:d6:01:00:3f:20:
6c:4e:e6:4c:e0:12:ae:b1:1e:51:d8:3d:1b:c5:3f:
50:e5:39:4a:c5:30:05:55:94:76:43:b3:1f:8a:dd:
0c:9a:f8:1b:cc:91:cf:45:93:14:0e:c9:e9:b4:99:
d4:de:81:78:33:6c:68:ee:1e:ef:a0:da:5d:95:98:
33:9d:c6:3b:fc:fd:ff:11:e4:64:57:ed:43:a7:d4:
2b:7d:89:e3:0c:9b:5d:8e:3e:f8:b9:da:0c:95:3c:
d4:4e:0d:f9:54:3d:89:76:1a:d1:3b:f1:68:fa:14:
d7:8c:8c:49:6c:b3:9e:9a:99:38:1d:cf:d6:fc:31:
36:34:d9:73:31:d7:9f:61:d5:68:29:c3:a4:a1:b4:
a6:56:6c:b6:ba:87:c6:cd:a6:c9:c7:4d:f1:e1:b4:
b1:eb:a3:05:7a:10:ef:f6:ab:89:10:d2:a8:96:38:
b9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:30:28:92:9F:22:8C:A3:54:50:62:3C:AF:5B:55:8B:D1:DB:61:EE
X509v3 Authority Key Identifier:
keyid:60:40:73:2F:DB:CA:A5:29:00:DB:24:62:07:5B:F4:EF:15:15:96:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEBzL9vKpSkA2yRiB1v07xUVlpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/5676a3-9c39-4db0-951e-d2b6982bc484/1/YEBzL9vKpSkA2yRiB1v07xUVlpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:04:3c:97:96:f8:1e:5e:e3:3d:23:af:12:38:45:a3:96:a6:
57:5b:2f:9b:af:0d:a2:b3:a6:bc:8f:68:76:46:d6:7b:83:99:
17:f1:67:1a:55:45:c7:00:81:83:35:f0:6d:dd:f6:da:c8:7b:
72:07:cb:82:5f:92:d6:14:19:65:25:f7:a0:3d:0b:67:cb:ad:
f3:0f:bf:65:7a:8a:cc:03:2b:fc:53:94:b4:11:e4:51:9e:44:
57:05:cf:0a:6e:03:19:42:79:35:5b:ae:ae:46:dd:04:40:9d:
67:5e:58:fa:59:13:26:1a:99:52:69:58:9f:5e:5f:0c:d6:2f:
60:6e:04:80:76:1b:4e:ea:32:6f:3a:06:dc:e7:f9:1e:06:81:
e5:81:c0:3a:90:b6:79:59:52:d2:fb:3e:ef:52:a7:c7:41:dd:
81:2b:72:07:83:21:82:77:70:3c:d3:8d:9e:66:00:99:9d:b5:
3c:4a:41:53:cc:76:23:c0:4a:34:23:fc:5f:89:fe:09:df:05:
81:bd:4a:82:ff:34:1b:c2:4c:9c:5f:0a:42:aa:fe:66:17:75:
8d:6b:82:56:da:e6:77:9e:ce:32:f6:9a:0c:cd:5f:4a:aa:17:
78:be:78:4c:a7:b7:9b:c0:8d:d8:d8:3c:e8:12:e6:49:98:83:
5a:0c:81:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 9 04:53:30 2026 by rpki-client