Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft
File: YDgxphvIqPTLhYhwIvtvhjlzRdw.mft (raw, json)
Hash identifier: u4dSgvZDAQDLGHuI+NKCQIqQjaGoguX4xjYKI+F+Uu4=
Subject key identifier: 11:88:C0:43:50:2C:2A:33:0B:9E:17:C6:3E:76:8E:F1:F9:D1:0B:02
Authority key identifier: 60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
Certificate issuer: /CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Certificate serial: 019DB1D8A56595108EF0B1DF1512ECF86DF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft
Manifest number: 0FE1
Signing time: Tue 21 Apr 2026 21:00:58 +0000
Manifest this update: Tue 21 Apr 2026 21:00:58 +0000
Manifest next update: Wed 22 Apr 2026 21:00:58 +0000
Files and hashes: 1: PItnMttIkdeuTPXavmvPG7wEEmg.roa (hash: g8vhWp9yKKoH5MZ8w1k35uUTgUFMBWzylaX6sR0nuqk=)
2: Y5fNbXlu-919bEGmzzCTqLKe4UE.roa (hash: Xsn3mIF6IxJP4Pj8lk0nwBSrm5qnIHW3nv1qCBDI+Z4=)
3: YDgxphvIqPTLhYhwIvtvhjlzRdw.crl (hash: xgjEmqYa5wDcJxWMEmSIIq7op28fApH1ph0ULImifis=)
4: iReKhZ_-E04pzg8ir_i-KAVJTug.roa (hash: JcLEmoPP4jSyDJ+Og5UHxUBX28l4cJMP5KxpG/1AnsE=)
5: nUQG3vVMD7WFpDWiG0W1IymBVlU.roa (hash: EHlmhx+RyBOq9teHa0Af8FNOADjMaSQN2EK+hlsZ4oQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b1:d8:a5:65:95:10:8e:f0:b1:df:15:12:ec:f8:6d:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603831a61bc8a8f4cb85887022fb6f86397345dc
Validity
Not Before: Apr 21 21:00:58 2026 GMT
Not After : Apr 22 21:00:58 2026 GMT
Subject: CN=1188c043502c2a330b9e17c63e768ef1f9d10b02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a2:90:db:9a:a5:62:07:aa:ce:ad:9c:1d:9b:
65:7c:03:bd:50:eb:b8:16:88:84:7f:7a:ef:dd:ac:
90:94:33:6e:c8:40:a8:b6:71:7d:9b:91:af:60:12:
be:0e:37:6c:4a:0f:a3:81:88:67:76:c6:a7:08:d2:
c8:05:6f:b5:44:30:a0:dc:2d:d9:e8:a4:1c:83:77:
a2:93:06:18:e6:ab:e8:3f:f5:3a:06:10:a8:29:d2:
9f:16:51:e6:43:5a:9c:87:1a:94:51:3b:8d:aa:6d:
87:a6:b0:d5:fc:ac:ca:7e:0e:d1:23:90:9f:6b:25:
5b:e2:1f:cc:34:88:a9:f8:61:20:63:6b:78:f3:5e:
e6:11:1b:57:c5:fe:f6:c7:61:c7:f4:c3:59:00:3f:
6f:8e:ef:04:c8:a8:6a:62:8b:d1:89:77:ff:f6:57:
47:7f:83:9c:3c:79:ed:64:23:82:46:ba:84:fe:5b:
2d:9c:a8:b6:a8:cf:29:50:f5:01:70:e9:a9:ff:52:
f5:d0:55:53:51:01:d6:0a:3d:e1:8f:75:20:79:c9:
77:53:95:6c:be:37:06:d3:9a:8b:d5:77:90:c3:0c:
7b:db:1d:e6:7d:55:f8:a9:a6:a5:0e:3e:0a:96:56:
de:1d:00:a2:b7:12:4d:ab:fa:36:10:22:db:58:a7:
34:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:88:C0:43:50:2C:2A:33:0B:9E:17:C6:3E:76:8E:F1:F9:D1:0B:02
X509v3 Authority Key Identifier:
keyid:60:38:31:A6:1B:C8:A8:F4:CB:85:88:70:22:FB:6F:86:39:73:45:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDgxphvIqPTLhYhwIvtvhjlzRdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/ac3276-50ad-4ebc-a2a6-9808545933c9/1/YDgxphvIqPTLhYhwIvtvhjlzRdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:a4:56:b3:a1:02:4f:d9:5d:cd:60:1c:1a:36:22:c1:2f:5e:
51:3c:db:7c:da:fb:05:86:7c:2a:10:67:9e:a9:c6:4c:42:b0:
b0:59:0f:93:15:09:c0:75:1f:88:1f:84:ac:f0:d1:aa:7c:73:
d2:9f:5e:c5:bc:77:3c:32:b9:08:97:2e:f6:58:ff:0d:60:eb:
b5:5b:01:5e:a7:94:57:4d:75:b7:cf:fe:10:83:fe:6e:86:96:
6b:b4:f4:03:fa:f2:2e:d4:d9:6f:83:f1:cd:11:bb:05:c3:b0:
70:a8:1f:23:0d:f8:df:6e:6d:19:e8:54:11:46:36:bb:8f:09:
4e:b0:57:20:0b:8d:5e:d8:73:66:7d:fc:c9:4b:a7:f7:d5:87:
c5:af:c2:d8:c9:b8:eb:10:f1:7c:b1:5b:2a:54:98:ad:2c:91:
9d:5c:ce:4d:a9:98:9f:3a:98:4d:6b:4c:d3:b2:fa:13:b2:38:
97:66:30:b7:66:e4:23:e8:ae:bd:36:01:02:e0:8e:96:bc:e9:
fc:1a:38:cb:a1:5f:f4:e4:44:ab:67:7a:6b:68:25:12:a8:0a:
75:fb:17:a0:6d:e8:23:72:dc:a7:9e:8f:7b:7a:1f:46:27:14:
3f:ed:a5:53:18:81:32:72:f3:3e:8c:0d:33:89:d3:2e:bd:a4:
1c:5e:45:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 05:22:51 2026 by rpki-client