
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.mft
File: yrk2s1-SzexekN8zvcUIZhwntFU.mft (raw, json)
Hash identifier: EDS0prNhHhGcfKIDRrIfJIyosMHcGN8pE5wNm0e2W+E=
Subject key identifier: 12:73:C6:DA:03:CF:E0:57:08:C0:B9:8C:6D:EC:FF:7C:BD:5C:D6:E5
Authority key identifier: CA:B9:36:B3:5F:92:CD:EC:5E:90:DF:33:BD:C5:08:66:1C:27:B4:55
Certificate issuer: /CN=cab936b35f92cdec5e90df33bdc508661c27b455
Certificate serial: 019F1AFA62B6314E5F857C71518D80839B54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yrk2s1-SzexekN8zvcUIZhwntFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.mft
Manifest number: 10BF
Signing time: Wed 01 Jul 2026 00:00:44 +0000
Manifest this update: Wed 01 Jul 2026 00:00:44 +0000
Manifest next update: Thu 02 Jul 2026 00:00:44 +0000
Files and hashes: 1: 3me9x6h3lSEZqUVidDsZ7ac0L_U.roa (hash: JBCZWk53MUOqTUtRTfVY6AmHie1EcXDJvYsQQVSkdlA=)
2: npk6WkIHJCvL3_l_cXYjMzft0kI.roa (hash: t+MEBsgDts42eIKY0nTbdaPBG3x9AZb+9dTa2sHYe1g=)
3: yrk2s1-SzexekN8zvcUIZhwntFU.crl (hash: g0lf/3GBQYJ7NUs6yz/v043cUPDYzG/XZRZZBnCa0rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yrk2s1-SzexekN8zvcUIZhwntFU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 23:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:fa:62:b6:31:4e:5f:85:7c:71:51:8d:80:83:9b:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cab936b35f92cdec5e90df33bdc508661c27b455
Validity
Not Before: Jul 1 00:00:44 2026 GMT
Not After : Jul 2 00:00:44 2026 GMT
Subject: CN=1273c6da03cfe05708c0b98c6decff7cbd5cd6e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a5:8e:8b:38:49:d0:e4:91:28:18:a1:7b:f6:
db:56:88:6d:cc:2f:13:ad:f2:b5:ab:fb:f2:ef:cd:
8d:0b:ea:85:04:b9:c1:cb:85:ab:24:69:bb:df:17:
09:73:d9:10:69:99:f1:e8:8a:56:93:ec:46:e2:9f:
0b:bc:73:b7:a6:da:16:19:2a:19:2f:00:01:07:cc:
83:e8:b9:e1:06:b3:ec:74:18:94:aa:9b:08:a6:e0:
8f:b9:f4:cf:18:6f:63:1a:4e:72:7d:df:c7:de:d1:
28:59:45:62:2b:ba:ed:4e:a6:13:bd:a2:c4:6b:15:
f9:7c:06:21:d0:8e:bb:fb:b0:d1:6b:70:11:aa:a4:
4f:68:ed:f1:0b:5b:da:25:1e:22:5e:55:08:b2:70:
58:0c:3d:38:80:f8:21:13:f9:47:4a:15:ea:de:e4:
7b:99:c1:46:7b:69:80:be:f4:23:71:d4:12:b4:c5:
c3:f6:b5:38:97:32:53:fe:eb:04:e5:62:cf:44:3c:
7f:b8:41:44:90:5e:05:0f:51:48:09:8f:6c:34:bc:
38:a6:f2:3b:d2:a4:30:99:31:95:b5:c5:7c:63:70:
4c:e0:93:b5:10:81:ea:c1:e3:57:1f:63:58:81:fe:
a5:94:23:f1:9c:dd:34:35:dd:7d:2a:9f:f3:d2:89:
2d:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:73:C6:DA:03:CF:E0:57:08:C0:B9:8C:6D:EC:FF:7C:BD:5C:D6:E5
X509v3 Authority Key Identifier:
keyid:CA:B9:36:B3:5F:92:CD:EC:5E:90:DF:33:BD:C5:08:66:1C:27:B4:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yrk2s1-SzexekN8zvcUIZhwntFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2f977a-c0db-437e-9f60-5592360e3e8e/1/yrk2s1-SzexekN8zvcUIZhwntFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:af:76:a6:6e:fe:c6:40:bb:4e:85:ef:7d:f6:71:a4:4e:20:
69:25:c8:d5:d3:b3:c2:2d:67:df:bb:e0:43:af:b3:ca:94:83:
c5:d6:1e:d1:c7:90:1a:db:d8:39:01:27:df:31:c3:8b:ad:12:
22:7d:10:8b:c4:6d:03:8b:be:86:44:ae:6d:6d:f9:44:f6:76:
ba:3d:8f:84:52:87:27:0a:2f:58:57:00:03:dc:fd:67:41:22:
d6:52:04:eb:66:44:11:61:fc:97:9e:25:ee:28:91:26:1b:c5:
de:59:03:f7:d9:84:af:0f:0e:51:f0:96:df:2e:a6:d3:d7:f3:
75:fb:93:36:89:2e:a1:26:1f:4a:4b:16:b8:2d:40:6c:90:3b:
de:c8:01:d0:3b:b4:64:dd:9c:e2:0b:2b:de:29:e3:3a:dd:71:
92:b9:f2:49:1e:43:03:49:3c:9a:3b:10:b8:a2:c6:8e:12:92:
07:4d:1a:0e:8a:23:67:9b:81:99:91:c3:4f:85:4e:63:83:f6:
74:1e:bc:c0:26:19:ca:e0:24:55:29:28:c4:e4:2b:0c:01:df:
fd:b5:d1:ca:2c:38:ac:52:32:13:e3:74:f0:55:8b:42:f9:a7:
09:20:ca:57:50:e3:7f:b6:c3:24:79:5f:2b:2f:85:4f:68:03:
17:24:76:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 07:26:10 2026 by rpki-client