Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
File: YAG5U8a-H5GDHWilwBFcIODNf5o.mft (raw, json)
Hash identifier: 9MFNYszVSbhaiEOrzB/SQ4eZTz4/6NygxXQinvE27bs=
Subject key identifier: EC:7E:8D:20:D6:FF:E1:0E:ED:DB:21:FD:E9:19:C9:25:F7:B9:91:14
Authority key identifier: 60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
Certificate issuer: /CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Certificate serial: 019CAD59E8B4E22C8FDB3E872573537C2E06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
Manifest number: 082B
Signing time: Mon 02 Mar 2026 07:01:16 +0000
Manifest this update: Mon 02 Mar 2026 07:01:16 +0000
Manifest next update: Tue 03 Mar 2026 07:01:16 +0000
Files and hashes: 1: YAG5U8a-H5GDHWilwBFcIODNf5o.crl (hash: HbnKL1UG/aruj72JdGC2PyhwVeHW7DR1lESgY3kBCWU=)
2: sWQ5MFr-3Y0UZG4yuW0yjqbQ7Eg.roa (hash: I4OaI58SiKbwgQhwOAwtZE0NHDRmM5MSDXp++yDS4Xg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:e8:b4:e2:2c:8f:db:3e:87:25:73:53:7c:2e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Validity
Not Before: Mar 2 07:01:16 2026 GMT
Not After : Mar 3 07:01:16 2026 GMT
Subject: CN=ec7e8d20d6ffe10eeddb21fde919c925f7b99114
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:61:50:fd:54:b4:38:11:8a:55:88:dd:19:bf:
59:9b:d9:33:73:06:02:27:1b:ce:29:b7:ce:5e:a1:
8b:a1:20:3c:2d:33:45:16:a4:5f:d0:45:78:55:28:
0a:57:18:68:9e:b6:05:37:c1:41:b5:54:c3:c7:06:
f9:83:28:b4:7b:11:59:b3:59:eb:09:d1:a2:b2:da:
b1:5c:4e:53:a1:88:4e:51:45:df:ad:d4:0a:58:e1:
cb:39:51:09:54:82:57:aa:1c:73:85:51:dc:43:02:
44:32:84:3f:1f:3f:90:b6:fc:a1:6a:85:08:36:9c:
9a:ab:cb:77:eb:06:cd:fe:4e:1a:cf:6f:93:6d:22:
1b:42:0c:38:44:24:c8:36:0c:c2:1c:1d:1d:cd:58:
ff:f8:db:22:f6:53:63:55:0e:6a:d9:c8:e3:75:12:
c8:53:93:23:9d:e1:f0:fd:8d:4e:f7:e3:7f:fc:56:
ae:e7:62:20:af:9b:b8:86:34:ae:8c:4e:19:9a:29:
45:66:65:64:cb:3a:bd:e1:c5:fb:1b:77:54:74:b6:
bf:d3:c2:34:b1:4d:e8:98:c7:f1:80:26:ba:9b:5a:
42:73:a3:09:eb:bc:97:d2:d0:cb:0f:40:0f:64:b8:
54:53:e8:86:6e:eb:dd:4c:9a:35:9e:06:d2:6a:99:
81:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:7E:8D:20:D6:FF:E1:0E:ED:DB:21:FD:E9:19:C9:25:F7:B9:91:14
X509v3 Authority Key Identifier:
keyid:60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:3e:e9:31:a8:66:c5:0f:1a:c6:4d:e3:5d:8e:73:bc:f5:16:
d7:a5:bb:76:f9:31:f7:e0:08:a4:10:5e:40:ac:27:90:64:bb:
9b:74:bb:ad:a1:dc:ab:74:d8:7f:2f:be:2c:f2:fc:40:b5:6a:
7a:b8:4c:4f:6a:9f:1f:a5:b2:65:3b:7a:63:19:97:21:e3:bf:
fe:89:97:5c:3a:2f:32:63:12:8b:1e:22:eb:48:67:f5:25:7f:
b4:a2:cc:d1:26:7b:3c:a2:2a:df:6f:5a:83:89:67:bd:b9:26:
56:a3:54:9d:85:88:68:42:75:cc:c3:4a:d1:46:a1:dd:87:2b:
62:54:6b:8b:40:48:25:f4:45:3a:1b:ba:e1:7c:dd:8a:cf:6d:
07:c5:88:34:2f:69:a3:35:6c:72:df:c1:a8:7c:fa:76:03:ed:
fc:cc:22:21:b0:35:91:ae:fa:88:db:5b:f0:f2:84:a7:7a:98:
a7:08:1e:fa:3a:b7:b5:6b:76:0e:0c:3c:fc:a5:7b:51:26:a3:
d4:17:4a:72:2e:16:00:e0:60:bb:b6:86:f7:58:c0:85:37:e2:
57:d6:76:b4:61:6e:b5:84:38:53:5d:10:46:7c:37:29:45:5d:
20:32:66:13:85:3c:18:e6:ff:cf:87:ae:54:81:2e:83:0e:6d:
c0:5e:29:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:57:54 2026 by rpki-client