Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: siaEIRv/xDMw3PoKnwhyg8t3CDgcSi7kpgX/rMmkQJg=
Subject key identifier: 9D:8E:9C:BE:EC:FE:CD:32:E6:F9:C7:D0:E6:81:DA:06:94:13:8A:B0
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 019D390A4109F9AF9D5FBBD773F1384C0AF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0EA1
Signing time: Sun 29 Mar 2026 10:01:06 +0000
Manifest this update: Sun 29 Mar 2026 10:01:06 +0000
Manifest next update: Mon 30 Mar 2026 10:01:06 +0000
Files and hashes: 1: UUfjp8DsgnyXyAKHpxYY24nPV9k.roa (hash: z2A5oacpxbaOodlp6c1sfM8uFMWqz0u+N2Xu9qkatg0=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: nZV0O1mzcomsS5aSOIHh6BqkOVdpbfu7U1Q2ri+PhSM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:41:09:f9:af:9d:5f:bb:d7:73:f1:38:4c:0a:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Mar 29 10:01:06 2026 GMT
Not After : Mar 30 10:01:06 2026 GMT
Subject: CN=9d8e9cbeecfecd32e6f9c7d0e681da0694138ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9f:6a:e4:51:1c:1c:9b:d2:8d:7b:bd:3b:e0:
ec:2f:7b:4d:93:80:09:9e:03:06:7d:0c:de:07:7b:
d0:03:3e:5e:f6:19:d8:2d:ef:22:53:98:78:ec:7f:
81:3d:3f:99:2a:ef:88:51:f1:0e:ee:52:2d:e8:a8:
3f:a3:d0:93:16:4e:d6:b9:ea:1a:f4:7a:56:88:8d:
2d:f6:64:21:67:7c:88:2a:92:db:e4:8b:4b:a3:cd:
36:ad:c7:14:a1:01:b0:a7:cb:89:69:60:2f:a3:13:
b0:22:e2:f5:75:8f:7c:1d:8a:c5:b1:3f:50:21:75:
d2:30:1c:cb:c9:78:6e:26:2e:6c:03:9d:59:88:27:
a0:dd:f5:bc:02:84:23:d5:1d:b2:08:a9:11:d3:45:
ea:12:f4:ab:93:d2:98:fe:62:16:df:1e:44:4f:c8:
be:e5:61:ce:c1:ed:35:03:4f:98:fe:cb:26:41:45:
09:0e:a5:f3:52:6d:b6:53:32:c9:1e:c5:5d:5a:de:
49:7a:14:f5:c9:66:5c:a7:67:e3:60:b1:c6:37:54:
a1:6f:9e:2d:50:a7:51:a6:11:da:1e:0d:9d:1a:c1:
da:30:39:e0:61:65:74:8d:77:02:df:c7:36:e3:88:
b1:42:e1:f4:40:86:94:ba:8c:fa:b0:9a:3a:c2:9e:
ea:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:8E:9C:BE:EC:FE:CD:32:E6:F9:C7:D0:E6:81:DA:06:94:13:8A:B0
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:a9:b2:41:f6:19:51:c9:82:95:99:da:26:28:e2:33:fc:8a:
20:4b:ae:e3:7b:90:94:3a:84:dc:28:be:f7:8e:83:c8:a8:97:
be:02:8d:e5:dc:90:6b:d3:2f:f1:bd:03:02:37:5b:31:9e:84:
9e:b7:fe:bc:7e:28:62:3b:f1:f7:9a:79:f1:98:8c:d8:3c:3c:
4f:a6:5c:01:28:26:69:14:07:57:1e:ff:52:7f:4d:65:15:13:
df:4f:b1:e3:91:5d:22:dc:7a:4c:65:b5:81:6d:84:85:e9:96:
80:94:6b:74:57:14:d7:b1:db:11:df:5e:5d:7d:1b:19:0a:0f:
ee:8a:34:f4:f8:bf:25:06:53:89:83:07:a7:66:49:b8:c3:81:
e7:e1:32:eb:09:e8:8a:b1:e4:c9:76:36:b1:41:97:7c:64:13:
20:31:bb:5d:02:65:c9:81:76:f8:a6:59:bd:48:82:e8:db:0b:
ae:b6:11:f9:f5:30:79:9d:2c:6f:a5:af:a2:02:43:0d:0b:aa:
32:2f:99:cb:61:91:de:09:bb:3a:37:d4:af:1f:67:29:7c:04:
4b:48:58:96:25:9b:b1:ae:a5:1a:ee:bd:b7:21:66:c7:72:c3:
29:9a:61:e3:18:70:db:d8:e7:fe:81:57:0c:37:2c:24:ba:f1:
00:a7:d9:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:48:55 2026 by rpki-client