Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
File: YAc2XgzzDKj86YxiZg0YapebyVk.mft (raw, json)
Hash identifier: /6cMN17BrlEAP2PgAGvlVD2luLKwSTVlACJKGoDa4tE=
Subject key identifier: A8:92:14:07:AA:F9:C0:CF:F1:3D:FA:DC:85:27:72:D3:67:B4:C1:1D
Authority key identifier: 60:07:36:5E:0C:F3:0C:A8:FC:E9:8C:62:66:0D:18:6A:97:9B:C9:59
Certificate issuer: /CN=6007365e0cf30ca8fce98c62660d186a979bc959
Certificate serial: 019D38D31C084C60ED8BF5B642A27026E200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
Manifest number: 0BED
Signing time: Sun 29 Mar 2026 09:00:52 +0000
Manifest this update: Sun 29 Mar 2026 09:00:52 +0000
Manifest next update: Mon 30 Mar 2026 09:00:52 +0000
Files and hashes: 1: VhcZAOMO7N09LPQIiVy-ZSyhJt8.roa (hash: YOyQI4AeCxujnK36EwQ68GRZtvK8FNB5/s4x1q9BUjk=)
2: YAc2XgzzDKj86YxiZg0YapebyVk.crl (hash: ib8szKdjJg5CjWOpeHrij+fA782dErHG3gCwz+S3bns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:1c:08:4c:60:ed:8b:f5:b6:42:a2:70:26:e2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6007365e0cf30ca8fce98c62660d186a979bc959
Validity
Not Before: Mar 29 09:00:52 2026 GMT
Not After : Mar 30 09:00:52 2026 GMT
Subject: CN=a8921407aaf9c0cff13dfadc852772d367b4c11d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:06:94:e9:4f:1b:b9:bd:dc:12:30:8f:25:88:
cc:1f:0a:64:87:bd:79:d8:68:df:58:ef:05:53:92:
57:70:fd:68:68:e7:37:6c:15:31:5a:1a:b8:1a:d8:
62:f5:27:5e:ca:84:db:4c:b5:d7:cf:31:71:34:a3:
fb:77:c1:c5:c2:79:c3:d0:5f:13:a9:82:e8:52:96:
65:5d:f5:22:71:6f:9f:80:9c:75:af:07:aa:05:81:
26:e4:25:3e:e2:d9:fd:a7:07:15:bb:f0:b2:34:68:
e1:9f:12:ad:31:0e:d8:01:2e:62:c1:a5:bd:f9:a2:
53:e3:37:2a:74:32:b7:b7:39:48:f0:cf:f8:e3:be:
41:9c:cd:80:f0:cb:55:ab:96:03:83:23:71:d1:c2:
a6:b0:a7:8c:2d:a1:c7:a8:1f:d5:92:c9:9d:f1:64:
63:42:d1:85:a5:f9:be:86:5d:91:21:0c:75:1b:9f:
a3:51:a5:40:a8:24:eb:19:0c:3e:66:82:09:91:99:
9e:67:01:b8:12:2e:64:10:1d:c1:ad:6b:ce:3d:aa:
93:24:6b:0d:ed:da:9e:f7:64:23:23:98:19:0e:3c:
95:90:69:11:0e:4a:bc:9a:89:72:74:fe:9a:b8:e3:
f2:d7:8a:9e:ac:4e:70:3e:88:2d:79:2f:17:c5:23:
07:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:92:14:07:AA:F9:C0:CF:F1:3D:FA:DC:85:27:72:D3:67:B4:C1:1D
X509v3 Authority Key Identifier:
keyid:60:07:36:5E:0C:F3:0C:A8:FC:E9:8C:62:66:0D:18:6A:97:9B:C9:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAc2XgzzDKj86YxiZg0YapebyVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/826eeb-0bb2-42a8-84e2-b75b4904982f/1/YAc2XgzzDKj86YxiZg0YapebyVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:cb:d1:d8:a1:09:da:a6:ac:7e:cd:46:5d:da:70:c9:04:fc:
2c:d0:0d:0d:d2:09:03:2f:a4:ec:d7:2d:58:6f:24:81:70:34:
18:e1:14:79:0f:6f:f7:e9:55:ca:90:ad:40:b9:c0:4d:bf:b7:
56:9a:87:09:21:6f:4d:c4:a2:27:25:98:0e:e7:af:37:65:80:
4c:ee:9a:95:ee:43:b8:69:10:d0:ec:0e:e9:08:8d:4e:59:ec:
ca:2c:5e:c5:f9:10:0d:1f:ca:47:73:1a:08:f9:f4:88:7c:41:
43:d0:63:cf:b7:de:dc:a2:cf:51:fd:7a:fb:35:25:da:3c:db:
67:68:fb:11:e9:59:e6:75:17:1b:6d:1b:75:92:d1:e2:4f:3a:
dc:55:66:67:cd:f6:37:ae:43:80:40:11:71:d1:78:f3:e1:8a:
d0:fb:e1:13:93:24:d6:f3:01:8e:4a:25:63:82:8a:d1:c4:f5:
6e:b3:ac:9c:8b:03:d2:55:bb:2d:1e:10:1e:11:f0:5b:bf:04:
23:50:6e:c3:92:92:d2:fe:a4:d4:37:e4:e6:0f:26:1c:14:42:
06:27:dd:77:af:df:5b:a5:e8:ca:0d:f4:2e:79:01:23:5e:d0:
24:e2:a0:40:28:f3:0b:1c:aa:5e:a0:30:1e:c3:98:ba:d4:84:
9a:1e:03:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:35:44 2026 by rpki-client