Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
File: Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft (raw, json)
Hash identifier: 3hzC5G58kEafHpiJJrZXisC6jDUQXXoE3lfizlSD8bA=
Subject key identifier: 50:DA:90:DF:14:01:BC:5E:C0:D7:01:5F:85:73:A7:B6:B1:19:B9:26
Authority key identifier: 62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
Certificate issuer: /CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Certificate serial: 019CAD59770F67F64B5BC206676D9FAE323B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
Manifest number: 1845
Signing time: Mon 02 Mar 2026 07:00:47 +0000
Manifest this update: Mon 02 Mar 2026 07:00:47 +0000
Manifest next update: Tue 03 Mar 2026 07:00:47 +0000
Files and hashes: 1: 2gO3AZ0wf5H55So82hrCWwWbVuI.roa (hash: U66k5TcWQ7PD9bBki0lUlKhjoZI0ZIMVHk6yyW5wKeQ=)
2: Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl (hash: D89WDDvMwSfC18sdzef+ejX6sEx8ue6nyDBKDece8qY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:77:0f:67:f6:4b:5b:c2:06:67:6d:9f:ae:32:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62d6e4bffa2b4d1bc40e92b30af0d21a74b0bbd0
Validity
Not Before: Mar 2 07:00:47 2026 GMT
Not After : Mar 3 07:00:47 2026 GMT
Subject: CN=50da90df1401bc5ec0d7015f8573a7b6b119b926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:28:e8:04:20:c3:bf:3b:a5:80:2f:18:93:b1:
18:4f:88:5c:ac:2c:9f:dc:1f:81:95:ed:f4:a8:ed:
bf:af:a4:f7:c3:f0:0b:26:cc:3a:fa:b3:dd:31:95:
67:2d:ae:41:27:d7:09:57:71:e9:27:26:fb:44:13:
4d:d3:82:40:ea:45:02:f8:6b:6e:77:19:c7:e0:58:
a0:66:ef:ff:f5:8c:07:ae:82:46:12:c5:53:c5:fa:
42:82:89:14:95:9b:fd:28:95:33:9e:e5:fa:bc:b1:
25:62:5e:58:73:bb:c1:72:37:3d:6d:ca:66:21:dd:
ae:33:6b:85:91:5b:9d:57:2b:56:f9:38:4c:e5:71:
bf:08:ef:2e:9d:fc:46:20:0a:82:46:d4:ba:8f:c6:
4e:30:6d:e3:93:26:b5:8c:0d:b8:07:2b:e2:9d:89:
f4:e0:b0:24:8f:20:b4:cb:a5:c9:7f:88:b7:6b:55:
8a:fc:0c:73:03:b8:c2:d4:aa:a2:1a:12:30:12:0f:
d4:62:3c:96:d6:f7:b8:73:e4:fc:eb:71:2b:e0:3c:
00:5a:5c:42:db:4d:78:fe:be:c6:fd:d6:ac:67:ef:
0b:89:d2:cf:ca:b5:05:a7:b0:b2:b6:75:d6:d6:c4:
36:f6:29:ae:9a:10:44:cb:af:8b:c8:4e:f7:73:21:
27:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:DA:90:DF:14:01:BC:5E:C0:D7:01:5F:85:73:A7:B6:B1:19:B9:26
X509v3 Authority Key Identifier:
keyid:62:D6:E4:BF:FA:2B:4D:1B:C4:0E:92:B3:0A:F0:D2:1A:74:B0:BB:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ytbkv_orTRvEDpKzCvDSGnSwu9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/876750-a230-4f26-b442-f15554fa4b0b/1/Ytbkv_orTRvEDpKzCvDSGnSwu9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:6b:57:66:5e:c1:5c:b4:56:28:3a:ff:c8:e8:07:75:42:b7:
fe:e4:5d:ab:5a:4a:49:f5:79:d4:12:2c:62:ea:7b:4a:7c:c1:
62:c2:77:42:86:2d:1d:62:63:f8:70:74:9f:e7:e8:50:ff:34:
c0:8c:48:56:cd:41:47:d4:0a:24:f4:a4:fd:08:1a:cd:f6:19:
ab:cf:ad:e5:03:fe:b4:b5:2d:86:73:bf:7e:c3:e6:48:5d:93:
d1:92:58:fb:6b:fe:b5:fd:38:a7:75:ee:2f:d8:92:f0:7d:f6:
2c:81:98:f9:50:d5:86:fb:e4:a4:39:6a:49:80:31:52:ae:8b:
74:2f:e3:72:f3:52:19:4a:3f:2e:ac:7e:b2:36:aa:f2:a8:56:
fb:48:13:b6:ce:3d:61:f8:e7:25:90:fc:94:d6:c3:8b:89:c7:
71:99:e0:63:19:f9:58:42:c3:08:43:6b:47:f4:2a:f1:cf:6f:
ff:89:ca:a4:23:8d:16:16:1c:3e:68:c5:54:71:05:d5:bc:1e:
f5:db:e3:ce:09:76:38:d3:9f:74:83:f0:d2:f2:26:40:f1:d0:
3b:14:56:6c:20:5d:a1:bf:64:ce:71:be:9b:b9:99:3c:3f:e3:
27:0c:d2:56:fd:f3:7f:e0:7f:21:fe:37:41:bf:c6:2d:5f:56:
f3:40:e7:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:15:30 2026 by rpki-client