Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: BJ/sxNDjDY6iUn0JD90WAcNINpLL6UJk6o609Iarx5U=
Subject key identifier: 34:7A:D8:0B:A0:FF:21:A5:76:2A:14:33:FB:EA:0E:16:BC:F4:E0:35
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 019D37899C1807FC61295613F9E0A7D729D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 08B0
Signing time: Sun 29 Mar 2026 03:00:58 +0000
Manifest this update: Sun 29 Mar 2026 03:00:58 +0000
Manifest next update: Mon 30 Mar 2026 03:00:58 +0000
Files and hashes: 1: G-foIY1cv2s-pbmJJsngENBWLwM.roa (hash: /sje/fJ/oYoi2zdAPSdZ79XrD4oozBnY/U0gHu3a9bM=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: 3fF7bIuV6MuVMTcrV8zejWgFf0L8VqSXDfO9SBW1C+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:9c:18:07:fc:61:29:56:13:f9:e0:a7:d7:29:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Mar 29 03:00:58 2026 GMT
Not After : Mar 30 03:00:58 2026 GMT
Subject: CN=347ad80ba0ff21a5762a1433fbea0e16bcf4e035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4f:5d:ba:23:b0:3b:42:97:a9:f8:22:16:ad:
10:04:04:e9:81:a6:f6:43:75:82:4e:cd:86:ae:14:
2d:c7:5d:38:a5:9d:be:fb:78:86:0c:4b:64:15:80:
96:41:81:59:21:9e:db:5f:13:b7:52:0f:10:d3:7b:
9a:69:2f:b6:5c:24:5d:26:9e:ab:21:81:6e:14:64:
ec:50:1d:2f:f1:5a:61:ff:5e:bc:69:1a:03:64:f3:
39:eb:4d:58:da:a6:27:d3:1f:ba:20:84:0b:cb:9b:
6a:ca:7f:fd:01:cf:0d:55:ed:5d:f9:6e:fd:5a:ac:
e5:4f:64:23:83:9a:61:cf:4e:c9:e3:f6:5f:01:f1:
bd:fb:5f:08:58:8d:da:2d:ce:b0:6b:65:07:8b:e6:
a3:f1:0a:92:f2:39:b5:06:99:a3:cc:cf:af:9f:60:
94:58:c8:9a:52:1e:42:41:48:9f:77:74:fb:81:38:
95:f2:ac:11:e9:60:97:62:8c:c4:c5:5d:63:47:7f:
41:c5:0f:df:43:41:74:90:96:ca:30:38:4f:58:5b:
dc:40:68:50:2a:fb:20:6c:a1:57:eb:0b:90:93:56:
7a:38:f4:17:47:5b:66:8e:06:31:c1:d0:a1:ce:fc:
71:bb:76:39:ea:32:8d:ee:fb:13:85:38:ac:52:56:
96:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:7A:D8:0B:A0:FF:21:A5:76:2A:14:33:FB:EA:0E:16:BC:F4:E0:35
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:d4:fb:2b:93:a2:bf:bd:bc:81:b7:ee:20:81:ab:c2:b4:2f:
83:cb:44:46:b0:e2:e9:85:db:07:5a:74:a5:9d:6e:2b:1e:63:
48:88:fe:d2:1a:c9:1c:9b:cd:15:81:dc:59:30:93:5c:6b:6f:
17:99:c0:61:93:bc:11:36:d9:d6:be:64:ce:00:4c:62:43:cf:
d0:cd:26:84:09:0f:6c:36:d6:b0:75:26:3b:04:a2:c0:d1:be:
fe:e8:5d:bf:b9:6f:f7:eb:f0:66:33:1a:e7:33:e9:24:0a:27:
7e:45:e6:4f:f5:9b:b1:f5:cf:01:1b:b3:9f:af:bb:d3:f8:f4:
62:2c:98:4a:f8:ff:97:4e:95:95:78:2f:ac:cc:9b:3b:4d:1f:
14:1a:7a:a6:c3:bc:81:7f:b5:2d:89:fd:ae:bf:b1:29:ad:e1:
4e:54:3c:a8:f5:02:bd:64:a4:a9:e5:4f:bf:73:c7:1d:19:49:
c1:05:d8:bf:96:0e:7e:6f:22:02:fd:69:ee:da:2d:bf:ab:fd:
09:f7:ad:9c:0e:4f:38:a7:08:00:d3:1d:5f:b1:a1:98:24:12:
6e:12:26:e9:db:08:a7:62:ec:6b:23:e7:e8:7c:8a:4e:2a:01:
21:68:52:19:9f:f4:14:30:68:5b:75:12:b1:cf:ad:cc:72:db:
83:6a:90:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:02 2026 by rpki-client