Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
File: ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft (raw, json)
Hash identifier: UPqggMxt6oM6Nr0VB29MDEFwTFctj1YYpU3oAQ9QYC4=
Subject key identifier: 0C:AA:F3:8C:DA:2D:27:3E:E5:14:84:8C:65:02:1D:CB:00:AA:64:5B
Authority key identifier: CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
Certificate issuer: /CN=ca09149f34784f5b202c56761b01d35dd02569cd
Certificate serial: 019D37C0DDAE6FB453F5D6280E623294FCC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
Manifest number: 0632
Signing time: Sun 29 Mar 2026 04:01:19 +0000
Manifest this update: Sun 29 Mar 2026 04:01:19 +0000
Manifest next update: Mon 30 Mar 2026 04:01:19 +0000
Files and hashes: 1: saLkMBpBsWlxL5YAPxjxZxzwLm0.roa (hash: HWMfF/NkSXptcowH52WnAePE/1Sax5XIolYonHNfsPw=)
2: ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl (hash: m5gNurM8R3r8HjXBw3vx1EcFlYpSOWbhfUjTvTbCn6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:dd:ae:6f:b4:53:f5:d6:28:0e:62:32:94:fc:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca09149f34784f5b202c56761b01d35dd02569cd
Validity
Not Before: Mar 29 04:01:19 2026 GMT
Not After : Mar 30 04:01:19 2026 GMT
Subject: CN=0caaf38cda2d273ee514848c65021dcb00aa645b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:42:37:1f:c7:8e:7d:a1:06:e6:5a:c7:83:c2:
84:19:2f:90:2a:06:89:18:a2:46:ca:b1:39:ed:da:
e7:f5:b1:43:f5:8c:63:b8:7e:6c:b8:3d:b5:21:aa:
17:95:92:30:f0:07:46:a0:4f:72:17:a8:9b:08:4a:
d2:db:9f:b4:39:19:1c:9e:75:dc:67:a4:b5:67:85:
96:2f:03:73:1d:80:ec:86:4b:8c:bf:21:ca:1c:25:
40:aa:d1:1c:8d:ac:9c:6e:10:d2:8e:98:a6:be:6e:
dc:a5:de:29:a9:4d:35:ab:a5:e3:5a:91:ce:08:3d:
b8:b4:53:81:04:c4:52:d4:f9:96:0f:38:0b:ba:7c:
a2:e5:7b:d8:4d:80:7f:7f:aa:8d:c4:0a:eb:74:c4:
a4:62:b2:8a:87:13:b6:8e:79:8e:11:8b:f1:a9:b9:
2b:0e:a6:48:46:03:1a:b8:78:3f:fd:9c:4c:34:94:
12:93:37:c0:76:c5:20:76:c2:f8:49:c1:b8:d3:9f:
1e:02:d2:08:1f:4b:79:bb:12:23:b0:d2:f8:c6:93:
88:af:48:3c:ae:87:02:6d:5a:a3:ef:b1:d8:0c:3f:
9b:a1:6a:e4:a3:3a:21:88:82:47:d3:a3:2c:3f:69:
9d:d4:f6:2f:37:bf:63:ca:23:15:b7:a6:ce:9f:b8:
58:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:AA:F3:8C:DA:2D:27:3E:E5:14:84:8C:65:02:1D:CB:00:AA:64:5B
X509v3 Authority Key Identifier:
keyid:CA:09:14:9F:34:78:4F:5B:20:2C:56:76:1B:01:D3:5D:D0:25:69:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygkUnzR4T1sgLFZ2GwHTXdAlac0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/b0dcda-a37e-4703-8d5a-9aad903a7276/1/ygkUnzR4T1sgLFZ2GwHTXdAlac0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:0e:d3:ab:5a:31:e9:30:2e:cb:8e:a7:27:39:ac:e1:1e:c5:
05:36:09:bd:8d:34:4d:a7:ce:53:6a:5b:ba:e6:8a:07:5f:46:
dc:88:6e:8d:f4:77:bf:85:d1:f4:43:ae:f4:27:32:da:cc:47:
6b:68:b8:e3:02:c0:f7:73:29:79:25:27:af:fb:70:c7:9a:69:
ab:72:b2:be:40:4e:a8:4b:59:28:9f:d8:21:ab:9e:06:1f:cd:
69:57:27:11:13:53:01:4e:6d:50:71:62:04:2c:0f:cd:f9:4f:
0a:31:1e:7a:12:36:11:b3:b6:87:c9:61:a1:ef:70:d1:bc:bf:
3b:86:38:25:11:02:8a:57:34:d2:9e:17:73:e1:56:fe:ca:01:
92:41:a1:ca:bf:13:f5:e5:d4:e0:d1:ca:2d:2f:79:ce:84:7c:
c2:58:59:0d:02:9a:cc:90:71:1f:59:92:b1:37:75:93:3d:d8:
2f:ae:b7:82:84:f8:17:2e:e0:77:e4:1c:75:e7:19:a3:40:7a:
dc:e0:e9:40:03:79:af:a5:64:45:5d:6d:9a:d7:44:05:af:e3:
01:13:50:06:21:20:a9:9a:12:dd:87:6b:99:cf:7a:bc:5e:6c:
e7:17:3b:3b:82:99:52:13:64:ae:dc:9f:41:d1:ed:3c:b0:38:
d7:64:7c:2d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wN2ub7RT9dYoDmIylPzCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhMDkxNDlmMzQ3ODRmNWIyMDJjNTY3NjFiMDFkMzVkZDAy
NTY5Y2QwHhcNMjYwMzI5MDQwMTE5WhcNMjYwMzMwMDQwMTE5WjAzMTEwLwYDVQQD
EygwY2FhZjM4Y2RhMmQyNzNlZTUxNDg0OGM2NTAyMWRjYjAwYWE2NDViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1UI3H8eOfaEG5lrHg8KEGS+QKgaJ
GKJGyrE57drn9bFD9YxjuH5suD21IaoXlZIw8AdGoE9yF6ibCErS25+0ORkcnnXc
Z6S1Z4WWLwNzHYDshkuMvyHKHCVAqtEcjaycbhDSjpimvm7cpd4pqU01q6XjWpHO
CD24tFOBBMRS1PmWDzgLunyi5XvYTYB/f6qNxArrdMSkYrKKhxO2jnmOEYvxqbkr
DqZIRgMauHg//ZxMNJQSkzfAdsUgdsL4ScG4058eAtIIH0t5uxIjsNL4xpOIr0g8
rocCbVqj77HYDD+boWrkozohiIJH06MsP2md1PYvN79jyiMVt6bOn7hYdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAyq84zaLSc+5RSEjGUCHcsAqmRbMB8GA1UdIwQY
MBaAFMoJFJ80eE9bICxWdhsB013QJWnNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWdrVW56UjRUMXNnTEZaMkd3SFRYZEFsYWMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9iMGRjZGEtYTM3ZS00NzAzLThkNWEt
OWFhZDkwM2E3Mjc2LzEveWdrVW56UjRUMXNnTEZaMkd3SFRYZEFsYWMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy9iMGRjZGEtYTM3ZS00NzAzLThkNWEtOWFhZDkwM2E3Mjc2
LzEveWdrVW56UjRUMXNnTEZaMkd3SFRYZEFsYWMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABQ7Tq1ox
6TAuy46nJzms4R7FBTYJvY00TafOU2pbuuaKB19G3IhujfR3v4XR9EOu9Ccy2sxH
a2i44wLA93MpeSUnr/twx5ppq3KyvkBOqEtZKJ/YIaueBh/NaVcnERNTAU5tUHFi
BCwPzflPCjEeehI2EbO2h8lhoe9w0by/O4Y4JRECilc00p4Xc+FW/soBkkGhyr8T
9eXU4NHKLS95zoR8wlhZDQKazJBxH1mSsTd1kz3YL663goT4Fy7gd+QcdecZo0B6
3ODpQAN5r6VkRV1tmtdEBa/jARNQBiEgqZoS3Ydrmc96vF5s5xc7O4KZUhNkrtyf
QdHtPLA412R8LQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:29 2026 by rpki-client