Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
File: YgsENUY3RvXyN9k2h77C6s8iRVE.mft (raw, json)
Hash identifier: cURb2yMpT3JaQujEqYQ3wouAeIjvY2aTlkXqd3f/8xA=
Subject key identifier: 73:38:FF:0A:93:DD:A9:6E:FE:A2:A3:DE:B4:0B:25:C1:B6:D8:04:A5
Authority key identifier: 62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51
Certificate issuer: /CN=620b0435463746f5f237d93687bec2eacf224551
Certificate serial: 019CAB34208879F107D8A7B8B324D91DADD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
Manifest number: 0A28
Signing time: Sun 01 Mar 2026 21:00:46 +0000
Manifest this update: Sun 01 Mar 2026 21:00:46 +0000
Manifest next update: Mon 02 Mar 2026 21:00:46 +0000
Files and hashes: 1: T9qIl1S9tQz4tEVjrSKAWFbOqcg.roa (hash: h4jSuRvvCuZIkrJ0uLJKVCyM1giPtJIbarHhGQfdVf0=)
2: YgsENUY3RvXyN9k2h77C6s8iRVE.crl (hash: In43MVaZi0pLp4G2/daE7T7Jw0Z2uEO28gYS6VgelhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:20:88:79:f1:07:d8:a7:b8:b3:24:d9:1d:ad:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620b0435463746f5f237d93687bec2eacf224551
Validity
Not Before: Mar 1 21:00:46 2026 GMT
Not After : Mar 2 21:00:46 2026 GMT
Subject: CN=7338ff0a93dda96efea2a3deb40b25c1b6d804a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:de:9a:0a:0c:fc:ee:ac:ba:b8:63:d6:82:ea:
0d:2f:52:03:2c:98:33:49:6c:e4:3f:95:52:0a:87:
19:2b:16:a4:5e:d5:b1:25:64:55:3e:86:34:67:ee:
7d:51:73:e7:87:1a:4d:b9:c1:e2:65:6c:19:b6:6a:
71:c1:93:69:40:7d:ad:d5:fc:8c:0c:0f:9b:7a:65:
76:32:0c:a6:bf:54:02:f4:7a:53:55:44:26:60:c2:
98:3e:d0:7b:f0:a5:c4:f0:a1:2a:99:e2:1a:f3:ec:
0c:ed:8e:0a:d1:3c:4b:d6:a7:e0:83:d1:bd:78:68:
71:1a:91:8b:38:74:25:45:c4:d7:8b:a0:c6:1f:0b:
89:7a:82:7a:5e:27:bf:02:e3:a9:db:ac:3e:f1:fb:
39:22:a7:6d:0f:06:c0:53:7a:77:55:84:eb:69:76:
d5:bd:a2:7b:72:bf:92:d7:d3:ff:52:57:b4:2e:d3:
bb:87:c3:eb:de:6a:9b:70:a4:43:c3:de:aa:5b:66:
51:b0:63:ca:4f:24:c8:17:86:00:fe:98:f6:b3:1d:
2f:df:1a:81:5b:6f:3a:23:5f:6f:66:75:95:78:af:
8a:d4:67:9c:1a:39:c2:4c:3e:08:9d:74:06:29:55:
85:9f:a8:2d:c5:b1:1d:c5:7d:f9:e7:ad:68:cf:ce:
2e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:38:FF:0A:93:DD:A9:6E:FE:A2:A3:DE:B4:0B:25:C1:B6:D8:04:A5
X509v3 Authority Key Identifier:
keyid:62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:6f:32:17:df:15:50:87:39:b6:fb:86:a3:9c:a5:e8:41:35:
46:e5:e3:c6:aa:38:e5:25:d5:95:f5:a9:6a:46:7b:cc:fb:48:
03:4d:b8:7d:e2:aa:db:7e:fe:e0:d1:dc:ad:e6:f4:11:ce:ec:
03:52:fc:c9:e9:fa:b1:03:98:8d:8c:63:00:00:c8:81:84:c3:
0f:57:c7:dc:ff:7e:67:bf:4c:3b:72:f0:70:a1:a4:e3:d1:cd:
16:79:0d:03:b2:97:8e:fd:c3:2e:70:b2:75:60:06:47:28:e8:
7c:33:5b:84:f1:2e:3c:0a:c3:4c:e0:9e:a3:30:f5:ea:56:b4:
18:27:59:43:cc:c3:cb:7b:2a:21:b7:e5:0c:80:3e:eb:68:44:
56:26:19:9f:7d:e0:70:ff:0a:19:8d:70:b1:7f:d8:93:10:a8:
ff:22:d8:c8:ba:dc:e5:bf:d5:b9:e8:8a:09:bd:de:f6:27:e6:
25:95:84:57:d1:1a:75:8a:25:74:09:3b:a3:fd:6b:2e:19:9b:
c4:cd:8f:74:78:17:52:20:ea:06:dc:e7:68:75:56:22:d3:2a:
23:96:b5:7f:7d:39:e9:a0:3d:73:fe:86:bd:66:1b:a2:df:e3:
82:3c:c1:bc:c0:0d:eb:0b:60:5c:3a:06:a5:cc:21:37:c2:c6:
f1:15:62:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:03:40 2026 by rpki-client