Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
File: YbcgLJIwwolFDtWmKxc2mgZZvGs.mft (raw, json)
Hash identifier: JB7cwhm19jmTugrM5WdoXqKnHrfymEvTHLQPCSOu3Ac=
Subject key identifier: 32:9B:96:4D:45:36:F7:DE:19:5B:BD:CD:62:FC:8D:B8:61:AC:9B:50
Authority key identifier: 61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
Certificate issuer: /CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Certificate serial: 019EC2C9639FF0E3F6F0CEC5082D91069BC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
Manifest number: 0C01
Signing time: Sat 13 Jun 2026 21:00:38 +0000
Manifest this update: Sat 13 Jun 2026 21:00:38 +0000
Manifest next update: Sun 14 Jun 2026 21:00:38 +0000
Files and hashes: 1: H8_4w92WXuGkctjlJERZEe-5K34.roa (hash: WmS53pHwBk98gkS34NpilrfE1ZVelLUsA8l48EKHH6c=)
2: YbcgLJIwwolFDtWmKxc2mgZZvGs.crl (hash: ygY8XZHL5fg/YhVLXfaWttu8GtNY8S0u4Rs80staLZ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:63:9f:f0:e3:f6:f0:ce:c5:08:2d:91:06:9b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b7202c9230c289450ed5a62b17369a0659bc6b
Validity
Not Before: Jun 13 21:00:38 2026 GMT
Not After : Jun 14 21:00:38 2026 GMT
Subject: CN=329b964d4536f7de195bbdcd62fc8db861ac9b50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fc:ee:95:0b:ea:9d:d5:84:19:be:6d:e4:4a:
14:e4:29:98:df:93:7e:46:9e:0e:6e:81:1a:48:e9:
10:28:ef:0a:0e:28:01:41:79:05:80:cd:8f:d1:3a:
b4:4e:76:08:08:ee:f6:f7:84:27:71:b7:da:b2:ba:
0f:f0:96:d5:ee:67:03:76:ae:05:30:86:32:37:c6:
4e:24:7c:71:29:67:aa:c1:81:50:b6:4c:78:d5:cb:
52:e6:26:ee:7d:71:59:3e:24:c6:60:92:41:07:e0:
46:01:35:e9:84:fa:d4:78:b6:b9:de:fa:28:82:b7:
23:7e:3e:60:63:7c:e7:41:af:9c:db:48:a4:36:e0:
51:5d:96:07:f3:92:39:ee:8b:7b:0c:aa:11:96:25:
e9:2a:a4:06:6c:46:ae:95:56:fd:1a:98:d5:5f:24:
65:16:db:2c:ad:a1:63:f6:b8:04:68:cf:0f:68:35:
b7:45:77:ba:05:11:b8:bc:72:be:eb:03:73:08:fc:
9b:cc:1d:e0:ec:23:92:5f:fc:64:a5:76:44:c7:d6:
cd:9a:9e:4f:48:75:38:4e:39:2e:57:d1:4f:9c:18:
f6:45:22:aa:90:12:85:7d:a2:53:6f:75:42:6c:bc:
c1:89:3b:60:75:8e:15:41:7f:e4:c6:c8:b5:4e:3d:
21:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:9B:96:4D:45:36:F7:DE:19:5B:BD:CD:62:FC:8D:B8:61:AC:9B:50
X509v3 Authority Key Identifier:
keyid:61:B7:20:2C:92:30:C2:89:45:0E:D5:A6:2B:17:36:9A:06:59:BC:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbcgLJIwwolFDtWmKxc2mgZZvGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/61d42d-3b48-468e-9ad9-215fc390bfe4/1/YbcgLJIwwolFDtWmKxc2mgZZvGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:93:c0:3a:26:b8:6d:48:21:ac:5c:cd:4c:b6:1b:7a:93:f6:
13:1a:f9:82:30:45:d9:f0:0f:e3:ed:95:33:7a:57:6c:5d:5c:
66:87:29:ce:da:cc:ab:3a:fe:67:3c:fb:5d:ab:90:2d:09:2a:
10:c9:ec:90:cb:91:f5:1e:75:53:0f:c4:05:34:5d:3a:54:15:
4e:9d:6e:8a:e8:4e:42:e5:1c:7a:1a:4b:90:1c:c5:73:33:52:
97:d5:56:d0:5a:5d:a7:9c:51:c1:4f:27:27:19:d5:9e:a9:dd:
79:b4:e8:d3:d8:ab:27:fd:8f:3f:da:1a:c3:60:4f:5a:cb:95:
44:10:70:ed:a0:61:6f:4c:32:a5:98:cf:b3:18:b4:d9:68:43:
0f:85:24:02:a9:77:af:c3:b5:f3:8f:5b:ed:51:6a:29:d3:40:
ee:30:2b:62:e7:1f:fa:58:08:03:d8:8f:2b:1f:d8:39:0c:c1:
68:49:fc:b0:b0:2d:39:e7:c7:35:11:66:5b:61:7f:8e:44:9d:
7f:80:a1:25:43:6b:ba:d4:8e:79:3e:d4:d4:f1:24:15:40:99:
2f:8f:15:cc:ce:ff:d9:95:af:c6:3b:1b:07:1f:0b:b9:ce:ba:
35:65:0f:6f:fd:b2:6d:0a:f9:5f:e4:dc:e9:a6:e3:7f:1b:6d:
72:bb:0d:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:09:01 2026 by rpki-client