Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
File: YC8n-tkkUqJUswoGDtODsTx1jtY.mft (raw, json)
Hash identifier: gu2IFh7xeG0p+WG79S6Y0aZ69/w1ZPR3pITvXUrFU78=
Subject key identifier: 5F:86:CF:98:76:18:B1:AA:D7:9A:5C:F1:70:CC:13:AA:8E:BB:2D:A5
Authority key identifier: 60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
Certificate issuer: /CN=602f27fad92452a254b30a060ed383b13c758ed6
Certificate serial: 019D3909F1A09B010CF1E13448C16F34B579
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
Manifest number: 0AF4
Signing time: Sun 29 Mar 2026 10:00:46 +0000
Manifest this update: Sun 29 Mar 2026 10:00:46 +0000
Manifest next update: Mon 30 Mar 2026 10:00:46 +0000
Files and hashes: 1: YC8n-tkkUqJUswoGDtODsTx1jtY.crl (hash: zwaLz+FHX+E4zYpfePU9a7N5K26ccHxbJ3UTHXO4y6I=)
2: yjdYp8YMAtj2_Dytxy6NEaoV14M.roa (hash: /wldluyAt2xqR07lomlO0CgTxaAUVhzs9ZM3VW1cPGU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:f1:a0:9b:01:0c:f1:e1:34:48:c1:6f:34:b5:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602f27fad92452a254b30a060ed383b13c758ed6
Validity
Not Before: Mar 29 10:00:46 2026 GMT
Not After : Mar 30 10:00:46 2026 GMT
Subject: CN=5f86cf987618b1aad79a5cf170cc13aa8ebb2da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:bc:54:de:7f:83:6f:de:e1:22:a5:a9:fa:d8:
fb:59:f0:fc:e8:5d:91:09:bd:b1:8c:3a:e2:62:94:
fa:96:86:7d:34:48:fa:54:9d:1b:ff:a7:33:48:54:
90:3e:63:93:8c:44:85:a7:08:11:15:29:d6:78:23:
e7:96:d4:b7:83:aa:2d:4e:97:7a:e0:90:f0:05:78:
07:74:65:e2:e4:62:ba:32:1a:b6:dc:d7:20:6e:d7:
2d:4d:ed:b7:2d:18:34:5c:8d:d5:fd:7f:51:3c:e4:
9b:87:44:32:2d:77:59:37:26:c4:d6:a7:ef:68:b6:
da:28:60:46:c8:f4:fe:be:bf:c2:93:8a:a9:f7:db:
bd:97:6e:3f:e1:a9:6e:5e:27:5e:3a:11:a4:12:02:
a8:5e:8e:9d:cf:1b:81:d7:37:96:04:c7:32:bd:3c:
13:83:d0:be:69:81:6d:18:58:85:5c:3f:50:91:60:
24:9c:be:75:24:a7:f2:85:e6:4d:87:d5:c0:4d:d4:
b8:2b:cc:d9:6b:c3:7d:f6:16:fc:81:bf:fe:2d:6b:
8f:d2:1b:3e:a3:50:24:db:e9:29:5d:ab:f3:21:32:
63:2c:3d:eb:ba:d5:b3:20:ef:77:c7:3a:f3:14:b5:
67:70:1d:1e:52:f4:54:97:e6:1f:33:f8:b6:ae:ac:
84:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:86:CF:98:76:18:B1:AA:D7:9A:5C:F1:70:CC:13:AA:8E:BB:2D:A5
X509v3 Authority Key Identifier:
keyid:60:2F:27:FA:D9:24:52:A2:54:B3:0A:06:0E:D3:83:B1:3C:75:8E:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC8n-tkkUqJUswoGDtODsTx1jtY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/2f67b9-490b-43ef-b088-4ab3973502fb/1/YC8n-tkkUqJUswoGDtODsTx1jtY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:83:0e:ac:03:a0:6d:eb:e0:91:16:7d:17:af:dd:59:68:67:
51:96:78:57:57:3c:4f:c7:af:66:72:f1:57:96:f1:38:d5:9c:
30:25:8e:d7:fa:90:d4:55:bc:2c:e4:48:16:a1:ff:66:c5:5f:
cc:83:e7:90:b7:1a:ad:c6:cd:9b:3c:5b:c3:8d:dd:c8:d4:85:
98:11:12:d3:42:8b:43:58:c1:42:f9:13:90:69:5a:61:b3:3b:
09:f2:64:30:75:7b:6e:63:99:c8:1b:27:a1:a3:25:5b:10:20:
a5:b0:c0:2b:ec:4b:cd:23:03:df:7a:9e:77:d7:ad:0f:9d:9a:
0a:a4:04:b2:58:fb:fa:4c:a0:f5:42:d7:b9:37:5c:f9:96:8d:
a2:7a:64:99:3c:00:89:8b:77:1a:e2:3c:10:2c:02:04:d2:82:
59:4a:ed:23:39:5f:64:67:6c:f7:b6:c6:fd:73:2d:dd:42:5c:
f3:45:af:e9:5f:e8:82:c7:5c:08:c3:5c:85:e6:fe:8e:bb:b0:
f1:4a:eb:7c:93:ad:fd:42:12:8e:37:e9:53:12:cd:79:12:7e:
d0:6d:96:46:13:b9:a0:06:ef:4d:9b:a5:71:9d:58:b5:e9:13:
5e:7a:37:1d:45:1e:f8:7f:64:0a:1d:ca:bd:3a:78:12:5d:cf:
80:38:85:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:53:18 2026 by rpki-client