Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: Hpc5ydG3CLylgf9+wNvH/Oh0aqUaKDt1XkJu2BrJbl8=
Subject key identifier: EB:52:BD:F3:32:CA:AC:2A:2B:23:EB:35:E0:17:2A:DE:74:B2:22:06
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 019D9DE3928B9BDE02472A09964A74D7C9CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 14B4
Signing time: Sat 18 Apr 2026 00:00:30 +0000
Manifest this update: Sat 18 Apr 2026 00:00:30 +0000
Manifest next update: Sun 19 Apr 2026 00:00:30 +0000
Files and hashes: 1: 5eILOK-1-Suo2fVqfn_W0lL0-TQ.roa (hash: NzVDzsu+Kq+X+04Ws4gqYwLVPdBaLiyudai4ILZxsxg=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: vVydT6N351/s45/IIpa1llIV3oN4FFl5bUzkg9yP2zU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:e3:92:8b:9b:de:02:47:2a:09:96:4a:74:d7:c9:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Apr 18 00:00:30 2026 GMT
Not After : Apr 19 00:00:30 2026 GMT
Subject: CN=eb52bdf332caac2a2b23eb35e0172ade74b22206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cd:f6:62:4e:16:f5:a2:b9:37:d3:67:ce:7e:
32:8b:56:86:a0:42:4a:bc:c9:99:3f:8f:b1:b2:57:
27:f8:cf:47:ec:a6:07:c6:cb:a7:3f:d1:a2:2e:0e:
a7:76:40:8b:48:f5:10:a0:a3:1c:3c:99:d8:b4:d7:
4f:c2:14:75:90:7b:87:87:e0:ec:77:1d:b4:2f:7f:
e8:14:77:5e:a0:66:c8:af:e0:62:11:91:26:b5:d4:
0c:23:e2:a5:c2:e5:a6:60:a6:25:ba:8a:0a:59:59:
99:43:67:c3:91:17:27:87:05:de:1d:7e:21:f4:b6:
e0:5c:0b:02:36:11:8f:35:3f:d7:01:f7:97:11:e5:
64:1a:b8:3d:bc:06:6b:df:1a:ae:f7:01:2b:f7:84:
a7:27:02:2f:63:5d:fe:b7:27:7a:a1:89:64:22:a6:
1b:e7:1e:77:25:4b:84:a5:e2:e6:39:fe:40:4f:80:
fc:f9:a4:f2:39:d3:de:b9:bc:96:3a:0f:1d:f8:dd:
59:e0:a1:49:be:68:6e:64:c9:7e:60:29:a9:05:2c:
68:33:19:ae:c2:7b:35:54:b2:74:5c:86:b2:86:00:
99:d5:e2:b6:df:e6:98:ff:b9:68:8a:fd:db:4e:89:
c9:53:e8:2a:eb:f9:3f:dc:8e:aa:ab:7e:dd:d2:08:
5c:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:52:BD:F3:32:CA:AC:2A:2B:23:EB:35:E0:17:2A:DE:74:B2:22:06
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:8a:13:33:0d:89:1f:e0:64:8a:80:49:57:ad:45:d5:8a:38:
75:a4:9a:65:21:03:9c:8c:bd:b9:82:78:0b:eb:87:e7:66:2c:
78:09:c0:9b:93:92:6d:8a:26:79:c1:8d:81:5d:59:49:ed:8a:
5b:2f:aa:54:ed:2c:6c:60:0f:e8:5b:c8:02:c8:20:c3:82:e2:
94:aa:43:0e:07:be:f1:7b:71:1d:c2:d9:eb:8d:74:5b:b1:af:
75:27:2a:4a:d3:c1:42:6a:65:3a:bf:90:50:48:9e:6e:28:2c:
ea:08:82:4b:56:f4:3e:88:a9:d8:be:a7:1e:fd:a7:db:65:d1:
fe:db:a1:2b:6f:5e:21:77:5a:3d:27:66:b5:db:61:ee:1a:6d:
f2:6d:03:92:69:fc:29:ea:4e:5a:9c:c6:30:20:63:60:96:e6:
3d:af:51:0b:2d:fd:ba:68:ba:3e:0b:67:17:ea:1e:aa:c3:c4:
0d:76:da:81:37:09:a6:c9:89:3e:70:c7:26:8e:9c:50:3c:75:
5a:44:57:5b:c6:c4:7f:5a:03:dc:fc:41:be:d6:b7:ed:cf:3c:
da:b3:3a:ac:4d:26:42:58:57:76:3c:62:af:0f:c7:9d:69:df:
ca:af:bb:c5:9d:9a:4e:f5:dd:04:48:87:2f:71:0b:23:fa:30:
f1:8a:ff:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 03:25:51 2026 by rpki-client