Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
File: YO9KF7jv9Fugs51HSWVX44j__lI.mft (raw, json)
Hash identifier: ahrel4f0JnpTe47/fEglD2rMnyjZThqKAB/c5J0hKbY=
Subject key identifier: DB:27:CD:A7:20:C8:B9:9C:68:0B:7F:39:95:A3:62:3E:6C:27:B1:31
Authority key identifier: 60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
Certificate issuer: /CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Certificate serial: 019CE6A4257C72F441E9AC17D7D75AC226C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
Manifest number: 034A
Signing time: Fri 13 Mar 2026 10:00:42 +0000
Manifest this update: Fri 13 Mar 2026 10:00:42 +0000
Manifest next update: Sat 14 Mar 2026 10:00:42 +0000
Files and hashes: 1: YO9KF7jv9Fugs51HSWVX44j__lI.crl (hash: IuUkNQod3ODvPMdICKK/IwaCQmsNoicDAM7EzpLYT48=)
2: bqQFNJsrG869RK3Nfbwr65mLsd0.roa (hash: lGIgTiJR2g5VC3z+XfnzZ2hEM7gGKI2STx8vdvlyfrE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:a4:25:7c:72:f4:41:e9:ac:17:d7:d7:5a:c2:26:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60ef4a17b8eff45ba0b39d47496557e388fffe52
Validity
Not Before: Mar 13 10:00:42 2026 GMT
Not After : Mar 14 10:00:42 2026 GMT
Subject: CN=db27cda720c8b99c680b7f3995a3623e6c27b131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a7:a0:1e:f7:37:bd:f4:8c:12:9e:3d:7c:e3:
c9:b5:7c:1a:30:b9:40:bf:30:14:f4:b6:8a:2a:e7:
0a:8f:dc:21:67:58:b1:0b:2b:01:c9:82:5e:38:5f:
fe:e1:52:29:23:58:ef:4a:13:c4:5b:41:a7:da:64:
0d:56:d9:a5:6b:06:1a:3f:fa:08:11:85:17:f4:c6:
ca:60:f6:fa:b7:0e:8f:1c:2b:72:0f:06:ba:31:8b:
48:44:d7:c7:55:ba:73:08:33:ac:13:40:4e:35:7f:
5e:c5:2d:07:0d:5e:b0:f5:e9:63:2e:3a:2e:48:3a:
48:06:49:09:b9:b6:e0:ec:f3:80:9d:5c:95:c5:30:
48:32:09:da:cb:e2:48:2c:07:98:c1:59:97:c2:a8:
cc:1d:5b:5d:73:7b:f7:62:c8:ce:88:b3:48:b1:17:
c8:96:8f:cc:05:10:74:ef:36:69:7f:96:1d:42:0d:
25:d6:62:b2:e4:e9:22:bd:e1:1f:ad:a4:bb:b4:47:
cd:96:13:0b:37:75:45:7d:81:2e:2d:25:da:6f:7f:
66:cf:b7:a7:a4:40:8b:43:8f:f7:85:09:d0:46:eb:
2f:f0:f4:83:34:cc:6f:2b:40:b0:17:c7:20:0a:c7:
2b:fd:fe:71:4f:76:ad:07:6a:f7:12:10:18:53:72:
9f:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:27:CD:A7:20:C8:B9:9C:68:0B:7F:39:95:A3:62:3E:6C:27:B1:31
X509v3 Authority Key Identifier:
keyid:60:EF:4A:17:B8:EF:F4:5B:A0:B3:9D:47:49:65:57:E3:88:FF:FE:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YO9KF7jv9Fugs51HSWVX44j__lI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/57faee-68b2-4693-8130-ce434a402617/1/YO9KF7jv9Fugs51HSWVX44j__lI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:92:22:3a:ee:ee:b8:96:b0:7a:85:1b:2b:49:22:29:eb:cf:
3f:ef:4b:e4:b7:f7:1a:73:f5:c6:a6:c2:cb:34:09:b2:d8:32:
97:29:a2:79:e8:53:ff:a0:5e:85:1d:96:61:a5:98:3e:64:b9:
69:bc:c3:82:89:f2:a7:86:d7:e4:f8:91:0a:c8:37:c7:e4:8a:
86:24:71:09:82:62:c6:7b:5e:bb:5e:06:e1:cf:f5:07:07:39:
cd:74:ea:32:64:e3:58:c3:73:19:27:aa:46:db:3c:cd:3c:e6:
06:ac:f1:08:e8:67:4b:2b:6f:fb:c0:a3:06:46:1a:f9:74:c1:
3f:c5:dd:96:ca:58:4e:d1:ab:ce:5b:8f:4d:bc:7e:88:d4:15:
fe:0b:6e:de:4c:ab:57:b4:24:7c:29:27:aa:4f:3e:29:84:93:
40:01:d1:bd:29:95:db:df:ff:47:72:77:3b:c3:8e:1f:d1:89:
84:ad:1d:12:11:d7:3d:60:94:8b:33:27:fc:bb:f5:a0:0c:8d:
fb:9c:bd:0d:13:7e:de:5f:e2:ea:26:8c:92:f9:43:9e:cd:89:
cb:eb:a6:c7:4d:40:86:d1:9d:1c:b4:1e:f3:fc:8e:e3:0f:ad:
ef:2a:bd:7f:d9:33:55:0f:3f:fe:89:4f:7b:23:d8:35:bd:fa:
d1:9d:0d:32
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzmpCV8cvRB6awX19dawibIMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwZWY0YTE3YjhlZmY0NWJhMGIzOWQ0NzQ5NjU1N2UzODhm
ZmZlNTIwHhcNMjYwMzEzMTAwMDQyWhcNMjYwMzE0MTAwMDQyWjAzMTEwLwYDVQQD
EyhkYjI3Y2RhNzIwYzhiOTljNjgwYjdmMzk5NWEzNjIzZTZjMjdiMTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKegHvc3vfSMEp49fOPJtXwaMLlA
vzAU9LaKKucKj9whZ1ixCysByYJeOF/+4VIpI1jvShPEW0Gn2mQNVtmlawYaP/oI
EYUX9MbKYPb6tw6PHCtyDwa6MYtIRNfHVbpzCDOsE0BONX9exS0HDV6w9eljLjou
SDpIBkkJubbg7POAnVyVxTBIMgnay+JILAeYwVmXwqjMHVtdc3v3YsjOiLNIsRfI
lo/MBRB07zZpf5YdQg0l1mKy5OkiveEfraS7tEfNlhMLN3VFfYEuLSXab39mz7en
pECLQ4/3hQnQRusv8PSDNMxvK0CwF8cgCscr/f5xT3atB2r3EhAYU3KfhQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNsnzacgyLmcaAt/OZWjYj5sJ7ExMB8GA1UdIwQY
MBaAFGDvShe47/RboLOdR0llV+OI//5SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS81N2ZhZWUtNjhiMi00NjkzLTgxMzAt
Y2U0MzRhNDAyNjE3LzEvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNS81N2ZhZWUtNjhiMi00NjkzLTgxMzAtY2U0MzRhNDAyNjE3
LzEvWU85S0Y3anY5RnVnczUxSFNXVlg0NGpfX2xJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiJIiOu7u
uJaweoUbK0kiKevPP+9L5Lf3GnP1xqbCyzQJstgylymieehT/6BehR2WYaWYPmS5
abzDgonyp4bX5PiRCsg3x+SKhiRxCYJixnteu14G4c/1Bwc5zXTqMmTjWMNzGSeq
Rts8zTzmBqzxCOhnSytv+8CjBkYa+XTBP8XdlspYTtGrzluPTbx+iNQV/gtu3kyr
V7QkfCknqk8+KYSTQAHRvSmV29//R3J3O8OOH9GJhK0dEhHXPWCUizMn/Lv1oAyN
+5y9DRN+3l/i6iaMkvlDns2Jy+umx01AhtGdHLQe8/yO4w+t7yq9f9kzVQ8//olP
eyPYNb360Z0NMg==
-----END CERTIFICATE-----
Generated at Fri Mar 13 15:57:39 2026 by rpki-client