Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: HH2PDYc1MuUMy0VqpdFU07Im+Rf7BAHQ4tktF13qHvI=
Subject key identifier: CE:D8:8A:FB:86:6E:53:D4:6B:8E:A0:F3:13:AE:79:0E:13:6B:ED:38
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 019CABD918061DBFBC92E265CFEFA370E05A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 0AEC
Signing time: Mon 02 Mar 2026 00:00:57 +0000
Manifest this update: Mon 02 Mar 2026 00:00:57 +0000
Manifest next update: Tue 03 Mar 2026 00:00:57 +0000
Files and hashes: 1: H8_4w92WXuGkctjlJERZEe-5K34.roa (hash: WmS53pHwBk98gkS34NpilrfE1ZVelLUsA8l48EKHH6c=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: 5XAWrhw4guzK0NMK/bcUYQ+Fh1S4nwPTmA8BjU4pcYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:18:06:1d:bf:bc:92:e2:65:cf:ef:a3:70:e0:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Mar 2 00:00:57 2026 GMT
Not After : Mar 3 00:00:57 2026 GMT
Subject: CN=ced88afb866e53d46b8ea0f313ae790e136bed38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a0:95:68:a3:04:2e:df:e6:cb:31:cb:cd:11:
b8:29:2e:03:11:fa:8d:31:b4:46:23:95:e5:5f:66:
db:5f:6e:33:fc:02:42:36:73:7a:f1:eb:58:bd:fc:
fc:c4:88:9e:98:93:88:25:cd:b3:e5:6f:e9:73:28:
91:95:94:e4:6c:f9:1a:77:d5:62:ce:09:ec:00:66:
09:0f:90:ba:c2:65:0b:26:4d:0f:8f:ba:31:9b:14:
99:b0:08:46:d8:2e:5f:3d:0e:14:7f:69:e5:74:09:
dc:6c:35:9e:05:25:ba:5c:25:7c:cb:17:61:e9:49:
ce:a5:00:b1:6c:82:ff:83:a3:1e:5b:ad:35:0f:7f:
19:1c:b4:fa:17:ed:57:28:32:51:56:ee:26:4e:cf:
94:e5:37:98:20:a3:9b:67:b7:ae:50:af:c6:8b:26:
a2:f8:d3:ef:47:ee:cd:3b:fd:b1:0f:1a:ad:14:b9:
f2:26:36:c1:9d:ee:67:b2:9f:b8:ce:89:95:3c:20:
80:44:36:05:b4:de:7b:7a:a0:4c:5f:e6:21:51:f1:
a1:d8:97:06:79:95:f5:0d:d9:26:34:f4:5f:7d:8c:
34:79:b1:a0:e8:16:1e:f5:d6:fa:1b:57:8f:8f:5b:
68:58:ae:59:11:2b:c5:30:5f:49:ed:f2:10:1b:1f:
8c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D8:8A:FB:86:6E:53:D4:6B:8E:A0:F3:13:AE:79:0E:13:6B:ED:38
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:84:34:7f:70:3c:16:36:24:a4:0b:c0:5e:ef:96:d2:42:43:
1c:64:88:79:73:00:61:a4:7e:f9:93:6b:b4:d9:0d:d3:f7:1e:
58:fe:fb:ca:50:ba:ed:0f:eb:01:35:9a:93:85:da:c7:a3:36:
3c:03:33:14:35:16:3f:3c:96:fc:3c:55:fb:dc:39:c7:b4:d3:
9e:a8:c1:4a:ad:a2:40:45:b3:d7:b9:a3:f5:83:b3:f0:27:19:
fa:14:18:d7:bd:ed:f1:ac:7a:87:c7:a1:2d:4a:48:a8:77:9b:
7b:77:9e:97:04:e8:2b:71:0e:db:05:50:08:ba:9f:95:6c:5a:
04:45:47:2e:33:69:19:e1:af:09:75:91:36:94:ee:a7:90:ad:
05:96:96:70:b2:82:ef:6a:6c:f0:71:6f:61:7a:c1:1c:9a:57:
57:89:78:9c:d5:09:2c:dc:f4:f7:cb:0c:de:ab:7b:e2:ca:36:
93:9a:e4:d7:89:79:c0:83:05:f9:44:25:65:84:79:10:c0:bc:
00:19:ff:44:6f:1d:c4:d1:f6:b8:ef:11:f4:e8:3e:fe:02:dc:
6f:8a:e3:8f:f9:ab:8e:07:ad:0b:6f:0b:7d:9b:6d:33:ec:79:
28:55:03:0b:1c:05:cb:3b:57:08:2d:bf:59:4c:e7:1a:e6:09:
3d:03:15:d1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2RgGHb+8kuJlz++jcOBaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxYjcyMDJjOTIzMGMyODk0NTBlZDVhNjJiMTczNjlhMDY1
OWJjNmIwHhcNMjYwMzAyMDAwMDU3WhcNMjYwMzAzMDAwMDU3WjAzMTEwLwYDVQQD
EyhjZWQ4OGFmYjg2NmU1M2Q0NmI4ZWEwZjMxM2FlNzkwZTEzNmJlZDM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaCVaKMELt/myzHLzRG4KS4DEfqN
MbRGI5XlX2bbX24z/AJCNnN68etYvfz8xIiemJOIJc2z5W/pcyiRlZTkbPkad9Vi
zgnsAGYJD5C6wmULJk0Pj7oxmxSZsAhG2C5fPQ4Uf2nldAncbDWeBSW6XCV8yxdh
6UnOpQCxbIL/g6MeW601D38ZHLT6F+1XKDJRVu4mTs+U5TeYIKObZ7euUK/Giyai
+NPvR+7NO/2xDxqtFLnyJjbBne5nsp+4zomVPCCARDYFtN57eqBMX+YhUfGh2JcG
eZX1DdkmNPRffYw0ebGg6BYe9db6G1ePj1toWK5ZESvFMF9J7fIQGx+MkwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM7YivuGblPUa46g8xOueQ4Ta+04MB8GA1UdIwQY
MBaAFGG3ICySMMKJRQ7VpisXNpoGWbxrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDkt
MjE1ZmMzOTBiZmU0LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC82MWQ0MmQtM2I0OC00NjhlLTlhZDktMjE1ZmMzOTBiZmU0
LzEvWWJjZ0xKSXd3b2xGRHRXbUt4YzJtZ1padkdzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApoQ0f3A8
FjYkpAvAXu+W0kJDHGSIeXMAYaR++ZNrtNkN0/ceWP77ylC67Q/rATWak4Xax6M2
PAMzFDUWPzyW/DxV+9w5x7TTnqjBSq2iQEWz17mj9YOz8CcZ+hQY173t8ax6h8eh
LUpIqHebe3eelwToK3EO2wVQCLqflWxaBEVHLjNpGeGvCXWRNpTup5CtBZaWcLKC
72ps8HFvYXrBHJpXV4l4nNUJLNz098sM3qt74so2k5rk14l5wIMF+UQlZYR5EMC8
ABn/RG8dxNH2uO8R9Og+/gLcb4rjj/mrjgetC28LfZttM+x5KFUDCxwFyztXCC2/
WUznGuYJPQMV0Q==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:05 2026 by rpki-client