Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
File: YB3AD5pIG0FQhrFDp91M2h_7JHA.mft (raw, json)
Hash identifier: Tsa0PZZO+WGfc8DM18Dhsp3bXqc1B1hCnQ9AdiDSTmo=
Subject key identifier: 45:2A:F2:91:E1:BC:C9:C5:45:8C:6F:BE:3C:0F:7F:B3:7D:56:C9:BF
Authority key identifier: 60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
Certificate issuer: /CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Certificate serial: 019D382E0C4CB8C954C3BA75968BD69F9EF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 06:00:34 +0000
Manifest this update: Sun 29 Mar 2026 06:00:34 +0000
Manifest next update: Mon 30 Mar 2026 06:00:34 +0000
Files and hashes: 1: YB3AD5pIG0FQhrFDp91M2h_7JHA.crl (hash: MKtpOdYix4o25jAwf7X5TLuNLAYy4YlY4YhkrfS6T50=)
2: lGw_YgGDQ_SDhIlzZs4EtJHH-ik.roa (hash: Chowr6YW7ZD6NeZH4t2rIlYB6mz3gu7Q1zTWhZm5/rs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:0c:4c:b8:c9:54:c3:ba:75:96:8b:d6:9f:9e:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601dc00f9a481b415086b143a7dd4cda1ffb2470
Validity
Not Before: Mar 29 06:00:34 2026 GMT
Not After : Mar 30 06:00:34 2026 GMT
Subject: CN=452af291e1bcc9c5458c6fbe3c0f7fb37d56c9bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:79:db:39:4d:04:b3:4e:07:cf:04:eb:6e:7f:
f1:25:2e:01:e2:e8:b3:aa:f6:be:78:ae:fb:90:03:
9a:63:f9:c6:ec:8c:cb:ac:12:fe:d8:2d:72:6f:14:
12:21:ae:e8:25:28:ac:30:b1:60:3c:a6:9c:8b:62:
66:fc:a9:d4:e4:2c:41:c8:84:66:fd:89:0c:2a:ea:
d9:08:1a:78:3c:66:a9:a6:f8:b1:5a:f2:f0:e9:8b:
9c:28:c4:54:f9:48:9a:9b:83:94:42:57:2b:bc:97:
f4:f5:5b:0c:df:f3:1a:91:d1:a9:59:69:f8:e7:88:
4e:cd:e1:18:b8:b3:68:5a:ec:d0:78:01:b3:ef:dc:
ef:ff:8d:b5:55:aa:13:eb:47:f1:b8:12:d3:35:15:
91:9b:65:4b:d9:c3:b1:3c:55:3f:a7:93:25:71:3a:
02:10:70:ea:1b:fc:b9:36:de:dd:e4:3b:25:26:8d:
ea:96:34:ee:0e:4e:47:45:11:43:ef:16:fe:3d:3b:
29:9f:69:30:e3:c4:2a:7f:95:9f:91:80:73:a6:c8:
9a:09:ea:56:3a:3b:f8:2a:25:d0:6d:26:2c:6f:13:
62:84:f5:01:59:15:14:a6:a7:13:ab:a6:b4:50:27:
2d:47:b4:47:e8:1f:29:82:2b:bb:bf:ac:d4:2c:ef:
5f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:2A:F2:91:E1:BC:C9:C5:45:8C:6F:BE:3C:0F:7F:B3:7D:56:C9:BF
X509v3 Authority Key Identifier:
keyid:60:1D:C0:0F:9A:48:1B:41:50:86:B1:43:A7:DD:4C:DA:1F:FB:24:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YB3AD5pIG0FQhrFDp91M2h_7JHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/ab2b25-2a13-41f0-b9c5-fba49b0cdded/1/YB3AD5pIG0FQhrFDp91M2h_7JHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:f9:da:60:85:3e:73:ff:9d:3c:6d:df:52:8d:ad:27:0e:bc:
ee:d6:75:78:12:02:70:a3:86:78:68:84:60:93:c5:0c:2b:25:
6e:de:ba:9c:79:3c:f9:0a:de:0c:44:ad:35:5d:45:b8:39:b3:
02:c4:14:f7:53:f9:56:71:08:2d:7b:d5:2e:0d:1a:7e:0d:08:
e6:4c:a2:e8:07:e2:83:7f:1e:e8:e1:df:f1:43:c8:1c:e2:7b:
20:e1:16:b9:32:60:5e:21:10:c8:d2:de:f9:c0:69:e5:84:11:
9f:74:eb:40:94:af:ff:5c:1f:b3:55:3b:53:07:33:71:ac:f3:
c3:ea:2b:a5:5c:d5:c8:4b:d5:ef:ec:b5:28:cf:c1:44:7d:18:
51:38:6f:df:c9:02:16:76:ef:4a:b2:62:f0:65:96:1a:01:56:
68:4e:bf:82:c3:51:d5:c1:41:a0:57:49:8b:32:7a:2a:51:94:
15:78:39:36:93:45:d3:48:82:03:1c:21:cd:5e:c7:6a:97:9c:
60:64:29:84:7e:25:bf:56:d9:b5:05:8b:77:5b:e2:0d:2a:74:
85:f4:f3:b6:00:a5:bc:60:34:8d:9b:f0:63:81:99:32:d8:7c:
7e:06:6d:ed:02:bb:6d:8e:ca:55:8a:1d:75:5b:58:75:90:79:
74:c7:4e:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:53:48 2026 by rpki-client