Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: SnAeWBX1N2eUumNBvqGg3WFjF09joiZO+jBdHytXQ/w=
Subject key identifier: DF:12:5E:9C:E8:94:32:87:78:BB:0E:E4:A4:00:28:87:4A:F7:12:4A
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 019DA30A806FE606A0FD4C22727380E3EEB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 0B6C
Signing time: Sun 19 Apr 2026 00:01:07 +0000
Manifest this update: Sun 19 Apr 2026 00:01:07 +0000
Manifest next update: Mon 20 Apr 2026 00:01:07 +0000
Files and hashes: 1: H8_4w92WXuGkctjlJERZEe-5K34.roa (hash: WmS53pHwBk98gkS34NpilrfE1ZVelLUsA8l48EKHH6c=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: IwLo4NZBLBZ/cDjIC7Czc6uKKIAUuThG1/4nv4pU+TI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:80:6f:e6:06:a0:fd:4c:22:72:73:80:e3:ee:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Apr 19 00:01:07 2026 GMT
Not After : Apr 20 00:01:07 2026 GMT
Subject: CN=df125e9ce894328778bb0ee4a40028874af7124a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7a:f6:49:2a:7f:83:7b:55:a1:79:68:b3:94:
9c:e1:07:f1:a6:fd:0e:2d:4d:ee:f4:b8:1b:07:74:
94:16:48:53:64:04:1c:7f:a1:d5:72:a1:ec:74:89:
5b:c8:82:aa:d5:3e:17:0c:a0:e9:5d:d4:1d:7c:c5:
ef:97:7a:52:eb:34:4e:09:04:00:96:43:09:6d:ed:
dd:32:af:a9:b8:e4:73:c4:02:25:bb:65:0d:77:e3:
61:9a:88:ad:34:be:4d:84:19:e5:30:1d:2f:44:41:
b7:7b:3f:af:dd:f6:59:7e:64:39:9a:8f:83:1c:cd:
e9:e8:8e:1d:e5:4e:5c:5c:02:12:c8:a0:84:a1:64:
3a:25:9a:d2:f8:86:a5:93:a4:81:0f:f2:3e:2a:18:
96:18:5f:17:13:10:f8:0d:9b:87:a2:a8:66:3b:65:
19:09:ff:b9:b6:b7:c1:8c:78:ca:24:4f:f0:e7:b7:
ce:a6:00:d0:f6:9d:7a:8d:4c:c5:6a:7f:fc:2d:c2:
ad:93:1e:76:c4:8b:22:bc:94:fe:97:85:0b:6d:fb:
1c:37:a7:8f:ed:72:76:7c:ef:3f:42:62:36:70:2f:
1a:30:26:fd:38:e6:87:88:40:c8:b0:29:d7:ba:d9:
67:54:c8:42:f8:b6:dc:18:0b:56:93:89:73:80:42:
f6:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:12:5E:9C:E8:94:32:87:78:BB:0E:E4:A4:00:28:87:4A:F7:12:4A
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:11:12:f9:cc:9a:53:97:e7:7b:f2:2c:82:61:8b:53:0e:06:
e6:19:ed:a4:36:86:4a:41:aa:09:30:ee:d3:34:a6:7d:c2:d2:
20:eb:0f:f5:77:dc:17:f9:71:ef:ff:c9:f5:79:e8:f5:e2:05:
af:79:cc:dc:a6:69:19:01:38:26:a8:71:22:ae:3b:35:c7:72:
54:d4:7e:37:e8:0a:31:44:d6:b3:14:b6:e0:31:7c:f2:6e:f7:
6e:6a:b9:fd:23:a3:86:ec:1a:f9:b1:5e:12:ef:13:2e:06:41:
ef:9a:fe:18:13:fe:80:a2:c7:c7:53:8b:39:90:f2:c6:88:96:
03:27:2a:4e:a9:c4:11:e6:9c:6d:d3:ee:53:47:56:ef:fc:a2:
bd:f9:4a:9b:d7:89:35:fb:d5:2b:03:56:b1:2a:6e:e8:a2:45:
48:20:ec:b7:fe:a9:1f:73:ee:be:51:f6:f5:47:bb:db:ce:45:
b3:92:bf:2b:d6:91:70:c5:61:9c:96:78:c8:28:ee:8e:bf:03:
25:0f:2b:88:e7:2a:b4:e2:66:68:c7:69:f6:8f:49:e6:ab:5d:
e5:73:07:74:59:5d:d9:bb:06:bd:9a:07:d6:ee:45:d8:aa:1a:
df:ce:9c:3c:1b:d4:40:d4:36:3c:12:11:6a:a0:a0:be:8e:94:
21:1b:a6:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:18:36 2026 by rpki-client