Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: TzdDBOFA+sAY//MusVcIA2y2Y13LZkov5mSL/HI36tU=
Subject key identifier: 12:D8:1B:C1:70:B7:10:C3:DC:DE:D1:14:EA:4E:28:6B:07:C9:B2:AC
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 019DCE636CF277E3F70F3F47277847A44050
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 03C2
Signing time: Mon 27 Apr 2026 10:01:55 +0000
Manifest this update: Mon 27 Apr 2026 10:01:55 +0000
Manifest next update: Tue 28 Apr 2026 10:01:55 +0000
Files and hashes: 1: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: cy3RlgBFgmsFo285Fz95JtKQVF29pId20BjBJNA9jUg=)
2: bqQFNJsrG869RK3Nfbwr65mLsd0.roa (hash: lGIgTiJR2g5VC3z+XfnzZ2hEM7gGKI2STx8vdvlyfrE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 10:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:63:6c:f2:77:e3:f7:0f:3f:47:27:78:47:a4:40:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: Apr 27 10:01:55 2026 GMT
Not After : Apr 28 10:01:55 2026 GMT
Subject: CN=12d81bc170b710c3dcded114ea4e286b07c9b2ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:71:df:c8:a4:85:ef:d9:6d:d4:f6:8d:c5:ba:
e8:b3:aa:51:1b:68:4a:30:fe:01:1e:79:a7:0f:fe:
9b:7d:46:57:8d:53:87:d2:af:81:57:5b:1b:4e:9a:
41:58:ee:2b:76:32:7c:3d:cf:d9:b0:a4:b4:82:a7:
14:f8:65:e4:e7:e6:6d:d9:ae:de:df:09:f2:8b:1f:
78:8c:c6:fc:8c:e3:13:47:a1:9f:97:ee:4e:2e:62:
bd:8e:e4:8a:9a:93:a5:bb:b3:3b:56:9a:09:fd:5d:
be:f6:68:26:f6:bf:2e:8d:24:0d:e3:24:3e:af:6e:
72:20:90:b9:51:4d:d9:7b:37:3a:36:6b:b2:dd:87:
32:1b:bb:df:33:37:03:da:4d:03:a1:84:31:85:d7:
29:df:a4:63:ab:96:3e:3a:e6:4e:9d:b6:b4:e2:d2:
fb:e6:ee:17:a2:53:ef:26:1e:95:7d:3e:bc:ae:46:
b1:73:33:06:90:71:b6:29:93:d9:1d:d1:51:7b:f9:
71:3c:77:82:a8:dc:4a:0e:14:18:a8:30:37:5e:8d:
63:9e:9d:6a:2c:a9:96:93:b9:79:9a:4c:02:55:3b:
aa:29:32:71:70:05:2d:81:08:54:37:62:03:72:3b:
30:c2:67:36:53:fa:f2:c7:0b:c3:b9:19:50:76:96:
a0:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:D8:1B:C1:70:B7:10:C3:DC:DE:D1:14:EA:4E:28:6B:07:C9:B2:AC
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:97:a0:54:82:73:ac:4a:3c:fc:73:f2:3f:6a:24:1f:dd:df:
2f:15:7d:f8:56:d8:44:8c:05:8c:6f:ad:af:91:10:8c:f8:d3:
bc:6a:b2:5f:b3:13:6b:b8:7b:3d:e6:23:1a:65:d0:c5:9b:70:
b8:5b:a5:17:44:cf:e0:71:e9:1b:b6:af:87:a2:97:02:8c:9f:
43:b7:81:9a:ae:e2:49:90:69:c9:5b:89:72:d1:36:13:24:42:
16:43:fa:2d:ef:05:d9:ad:44:8f:f0:d4:ea:49:fb:e7:49:a5:
a9:1d:f9:4f:6f:93:0b:a7:01:c5:17:16:50:d6:5c:39:92:bf:
ff:9c:6d:02:d6:b7:99:19:8b:8c:10:70:f9:d6:55:b4:d3:65:
b3:52:86:58:cd:cd:48:7a:eb:32:91:13:3a:27:de:2a:e8:24:
6a:31:79:cd:05:c4:f0:65:ab:1b:f5:95:54:28:0e:d5:9e:36:
b0:ae:7b:8e:29:82:d4:73:fd:03:ca:c8:ee:77:9e:c1:2a:8e:
b2:d6:33:02:37:d6:22:82:ea:63:57:ed:61:d1:14:72:e8:5d:
c3:26:c3:9c:0b:0e:0a:50:59:70:71:83:33:15:27:44:48:10:
4b:07:b2:92:3e:18:4c:45:56:4f:7c:4e:c4:ad:2f:75:cc:a6:
bf:4f:a7:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:48:51 2026 by rpki-client