Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
File: YG03z4fxLyqy3vMTgMOGuCbBnWU.mft (raw, json)
Hash identifier: XeMFBfpbZnOVsKAKNmVFLP1ksp05Sp5Vh0Heeybo/o4=
Subject key identifier: C9:2D:76:03:39:A9:AF:71:C3:76:F2:DD:79:18:84:AE:77:36:EF:D1
Authority key identifier: 60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
Certificate issuer: /CN=606d37cf87f12f2ab2def31380c386b826c19d65
Certificate serial: 019CAC477EBE1CAD3F8B2654E94A0C2735A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
Manifest number: 1843
Signing time: Mon 02 Mar 2026 02:01:32 +0000
Manifest this update: Mon 02 Mar 2026 02:01:32 +0000
Manifest next update: Tue 03 Mar 2026 02:01:32 +0000
Files and hashes: 1: YG03z4fxLyqy3vMTgMOGuCbBnWU.crl (hash: fFlxhCTu1XqVvjtWd6WZiX7KzJluKUSNWCigohqmK9g=)
2: nYvqn5kV5F9eabpIomemvJsL_Qg.roa (hash: V5VSGZcEQmaqLWAdKNhlKguBGH4P4kr/kPeIkQ2hxfM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:7e:be:1c:ad:3f:8b:26:54:e9:4a:0c:27:35:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606d37cf87f12f2ab2def31380c386b826c19d65
Validity
Not Before: Mar 2 02:01:32 2026 GMT
Not After : Mar 3 02:01:32 2026 GMT
Subject: CN=c92d760339a9af71c376f2dd791884ae7736efd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:37:65:4d:d6:81:ae:7a:f9:b4:42:45:06:69:
02:f3:23:65:2c:ec:c5:fd:fd:ac:e7:ff:d8:61:a2:
67:55:76:2a:a2:ab:b5:84:d3:24:dd:84:16:d6:b8:
c7:99:e4:d1:6b:a2:76:3f:73:0f:2c:89:fd:55:d3:
31:44:59:20:fa:3c:35:66:d1:22:9a:21:ab:3d:78:
25:f2:6c:78:18:9a:76:24:a3:9e:d6:34:84:a2:14:
36:d8:f9:d8:37:09:a3:5d:45:3c:cb:b4:0d:44:65:
c1:87:eb:43:c2:84:e2:d0:37:07:6d:bd:ad:39:fa:
3a:75:31:ca:b1:a4:d2:54:40:94:30:6a:10:e4:0e:
7e:1c:22:fc:c8:64:14:37:25:d8:d4:42:23:a0:f5:
da:3a:b3:c8:0c:31:52:e8:75:ca:86:68:28:98:fd:
a8:72:dd:b9:b2:c3:b8:f7:fd:92:81:54:35:45:9d:
9c:05:90:dc:af:be:5c:f9:83:31:df:32:2a:d0:b9:
f1:9b:8d:32:c1:65:c9:1e:29:ba:33:98:dc:43:21:
24:f1:7c:31:60:93:df:0b:57:48:ab:fc:88:9e:49:
fe:1e:31:ee:69:83:55:f3:1f:3a:dd:a1:fd:cb:93:
4c:9f:70:db:5a:42:c7:3b:ba:44:0f:71:60:8f:0f:
8d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:2D:76:03:39:A9:AF:71:C3:76:F2:DD:79:18:84:AE:77:36:EF:D1
X509v3 Authority Key Identifier:
keyid:60:6D:37:CF:87:F1:2F:2A:B2:DE:F3:13:80:C3:86:B8:26:C1:9D:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YG03z4fxLyqy3vMTgMOGuCbBnWU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/a20d6a-91ba-442f-8927-dc0043e9bb4d/1/YG03z4fxLyqy3vMTgMOGuCbBnWU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ac:d8:b5:7b:23:0d:ab:5d:9b:f1:dc:11:23:c5:32:d1:63:
dc:e6:5f:c1:6a:36:8d:b7:7e:61:ad:8d:53:95:88:48:22:c4:
9e:b3:87:3d:88:c3:0e:d0:62:2b:36:d0:67:0d:d0:4c:cf:e2:
5b:f0:a0:3d:a9:6f:e4:00:84:ff:1e:b0:18:c5:7d:81:7a:be:
db:69:42:a1:a6:d5:23:9a:6b:d0:0e:11:07:6f:8a:8c:9e:14:
22:da:cd:61:50:c5:f2:78:de:16:fe:0c:ac:cc:b9:f0:ce:ac:
4a:16:68:a3:6c:7b:33:09:c2:59:a3:ae:c2:a3:48:11:63:c3:
f1:23:f0:49:19:62:4b:4c:42:5e:b1:9c:fc:dd:22:cd:49:94:
2a:61:7a:98:50:49:5b:62:00:44:f9:6c:a9:df:0e:23:7b:12:
0c:fe:a6:f7:f6:e8:c4:24:2e:d4:2f:27:a4:e1:10:47:b1:9d:
37:9d:58:3f:49:15:4c:94:ba:4d:eb:b2:96:6f:55:7c:da:1f:
c6:52:bf:e8:a7:eb:11:e0:68:c5:b2:da:65:ef:1d:80:82:a3:
ec:12:ea:31:48:02:fe:2e:08:01:9e:4d:76:7d:35:0b:92:88:
5f:75:98:57:1d:a6:86:f6:fd:ad:de:e8:c0:c2:d4:f2:2a:25:
13:1a:c5:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:59:55 2026 by rpki-client