Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
File: yohtVYfshfcSQs1XztQJVEUoFo0.mft (raw, json)
Hash identifier: 2BKaKoFwk5gV6R/8Xp3d4A8lsi64TNZW2Z+KcmC+8rQ=
Subject key identifier: DE:E8:1F:78:58:8F:DE:79:BB:28:C0:FB:BA:4A:3C:69:94:F9:C3:F2
Authority key identifier: CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
Certificate issuer: /CN=ca886d5587ec85f71242cd57ced409544528168d
Certificate serial: 019E9B84EE1ED0DB4223A03402C77597A1D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
Manifest number: 06FB
Signing time: Sat 06 Jun 2026 06:00:40 +0000
Manifest this update: Sat 06 Jun 2026 06:00:40 +0000
Manifest next update: Sun 07 Jun 2026 06:00:40 +0000
Files and hashes: 1: I2kHiqxmSF3p6V9W7eV_eTfDN3k.roa (hash: fCpVVld0L94vFLqVKGMCfHN/hOXwKxcQlDEoGOWDUFo=)
2: XExavfpXuaZ3MydZbyDnyFn5ni0.roa (hash: WQdTsTZhStmdezt2VotpAadyLft0mMYrZPTmmKNNRro=)
3: yohtVYfshfcSQs1XztQJVEUoFo0.crl (hash: kt+KFqnfPq+EeWTg5AxL/9F8L0FuFVr2vZPK2jZ5eiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:84:ee:1e:d0:db:42:23:a0:34:02:c7:75:97:a1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca886d5587ec85f71242cd57ced409544528168d
Validity
Not Before: Jun 6 06:00:40 2026 GMT
Not After : Jun 7 06:00:40 2026 GMT
Subject: CN=dee81f78588fde79bb28c0fbba4a3c6994f9c3f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f8:e4:85:4f:38:b7:c8:36:3b:d3:a1:75:58:
e6:6f:0f:45:86:b6:68:2d:c6:c9:07:6c:e4:9e:00:
b3:e8:48:01:e2:ad:ec:62:19:22:34:bb:54:1e:1f:
f4:5c:cf:16:6f:92:d4:10:15:8e:ff:85:cd:89:07:
c5:1d:71:df:d5:9e:39:70:e3:de:35:54:f3:fa:d5:
6f:a7:f3:47:1e:18:07:b8:6b:22:5a:19:83:c2:33:
d5:3d:2a:d0:8a:72:55:57:4f:76:1b:e1:42:d5:b4:
ce:d0:c0:a1:61:13:02:9f:59:5b:03:6e:03:f4:ff:
0d:05:67:7b:c9:ea:ed:81:65:50:cb:84:90:9f:d3:
9c:9a:64:f1:19:b8:90:5f:90:c4:d4:57:0b:f5:4e:
5c:ba:fc:6c:98:1a:65:45:cf:59:01:04:bc:3e:79:
7d:e0:25:9c:a2:a0:39:71:10:0a:de:3b:cf:25:e9:
1f:73:7a:a2:cd:0e:27:95:d1:ae:0b:f9:60:7a:16:
5b:66:f4:83:fb:03:ff:15:73:ef:16:77:3d:51:0b:
8b:74:df:64:a2:89:5b:e0:03:dd:c3:28:ec:93:5b:
11:8a:13:15:5c:3d:1c:48:a4:fa:93:5a:ae:07:b3:
28:3e:97:f7:ec:d0:8c:cc:9a:ea:6f:cc:af:48:48:
3f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:E8:1F:78:58:8F:DE:79:BB:28:C0:FB:BA:4A:3C:69:94:F9:C3:F2
X509v3 Authority Key Identifier:
keyid:CA:88:6D:55:87:EC:85:F7:12:42:CD:57:CE:D4:09:54:45:28:16:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yohtVYfshfcSQs1XztQJVEUoFo0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/fe82d1-1575-47c1-9f22-c7e2520c4cea/1/yohtVYfshfcSQs1XztQJVEUoFo0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:25:47:86:86:43:b2:66:ea:fd:89:27:97:a3:d2:4b:32:2d:
67:40:15:ca:ad:04:d9:17:92:c8:2b:f6:c7:8e:87:6e:1a:de:
84:fc:22:cd:86:fb:72:4b:a7:0f:02:da:8f:63:a2:0d:15:6b:
6a:1d:52:04:6e:4b:75:7f:9d:26:97:45:70:4c:0e:bc:74:50:
28:8c:a0:d7:b8:df:b0:9d:76:49:c0:3b:a9:d9:5a:9d:94:32:
72:ed:28:85:8b:98:3e:c3:fd:fe:fc:f4:38:4a:cb:31:43:27:
3a:cc:65:d8:7a:eb:5c:b5:6d:b0:b3:9e:c5:03:2d:ae:04:15:
d3:d5:22:0f:2d:a6:c7:03:c2:13:1f:3d:51:f8:c0:5b:f2:d3:
57:97:0c:41:27:e9:55:6b:b6:b2:97:68:21:a9:28:0e:15:da:
69:d1:87:c4:9a:73:f2:52:a2:3e:0e:92:fc:02:f0:a1:72:78:
e3:f6:4c:68:71:29:d0:d3:3c:da:82:d1:69:f1:61:1c:0e:2f:
c5:6d:e1:1c:79:81:d0:69:cc:2f:8a:b3:07:2b:e2:08:39:79:
ef:0f:b5:27:e1:99:3a:d6:1c:5a:2d:70:6c:37:2a:58:15:87:
44:42:74:32:72:2a:8a:7a:63:ad:d7:bb:ad:02:3a:21:72:a4:
8b:8a:b6:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:24:22 2026 by rpki-client