Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
File: YMZLBPqPX-5oZvXHn499zqUBJRU.mft (raw, json)
Hash identifier: q/Cqr92y7oFhpWNMEp9hDMC+SdtoYRxpU9yaO1bxsYQ=
Subject key identifier: CB:B3:FA:71:CA:E3:06:04:56:BD:55:EB:BB:66:A5:5D:A2:DD:23:16
Authority key identifier: 60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
Certificate issuer: /CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Certificate serial: 019CAE6BEF899C74185A115CDF24600DB1D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
Manifest number: 1438
Signing time: Mon 02 Mar 2026 12:00:35 +0000
Manifest this update: Mon 02 Mar 2026 12:00:35 +0000
Manifest next update: Tue 03 Mar 2026 12:00:35 +0000
Files and hashes: 1: 5eILOK-1-Suo2fVqfn_W0lL0-TQ.roa (hash: NzVDzsu+Kq+X+04Ws4gqYwLVPdBaLiyudai4ILZxsxg=)
2: YMZLBPqPX-5oZvXHn499zqUBJRU.crl (hash: H18VZa068834YyKgg0iF+jqMZmdOgntwuS+PHvelxvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6b:ef:89:9c:74:18:5a:11:5c:df:24:60:0d:b1:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c64b04fa8f5fee6866f5c79f8f7dcea5012515
Validity
Not Before: Mar 2 12:00:35 2026 GMT
Not After : Mar 3 12:00:35 2026 GMT
Subject: CN=cbb3fa71cae3060456bd55ebbb66a55da2dd2316
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:bd:92:b4:a9:f8:01:b0:fb:3d:97:8b:91:af:
2b:8c:0f:1e:e3:c8:39:30:e1:b0:2c:f5:c1:69:98:
c8:f6:f7:41:6d:80:c8:a3:d8:75:76:1a:80:ac:e5:
cc:9c:e2:cd:77:d6:83:fd:f7:d0:fc:5f:f2:25:88:
b2:5e:b4:c8:75:0f:d9:08:a6:f8:67:f1:da:4f:24:
3b:1d:d4:90:fd:40:69:d9:f5:c5:1c:bc:a5:19:da:
6d:e3:2f:6f:81:30:ae:f6:50:66:a7:fb:6e:f0:0f:
a1:87:9e:82:55:e3:e7:33:63:b1:32:96:35:3e:4b:
f4:d2:9a:5f:fb:ef:82:1d:5d:85:36:14:e2:a5:7d:
af:e4:b1:80:9d:63:54:d6:d5:2e:39:33:a3:43:53:
8e:ba:13:f9:51:03:38:f3:55:25:5d:5e:15:63:81:
c4:bb:cc:e9:11:ea:7b:03:7b:b0:59:56:31:b0:c1:
48:c3:66:74:36:79:0e:67:aa:c5:f0:0d:2a:fe:e3:
42:fc:6b:4a:65:f6:14:79:6c:12:f5:03:3b:62:b2:
35:33:84:fc:12:b0:46:89:55:18:7e:36:d9:31:dd:
12:58:64:bf:c6:77:00:b6:7b:60:65:41:c3:85:44:
bf:b9:9d:31:15:50:11:6f:5f:b2:fa:6e:d4:09:c4:
ff:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:B3:FA:71:CA:E3:06:04:56:BD:55:EB:BB:66:A5:5D:A2:DD:23:16
X509v3 Authority Key Identifier:
keyid:60:C6:4B:04:FA:8F:5F:EE:68:66:F5:C7:9F:8F:7D:CE:A5:01:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMZLBPqPX-5oZvXHn499zqUBJRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/82491b-8caf-481b-b146-601a58f63393/1/YMZLBPqPX-5oZvXHn499zqUBJRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:66:e6:17:5d:58:c1:79:67:39:54:a7:66:29:8b:cd:64:5c:
57:ac:71:0e:7c:17:ff:af:44:37:92:33:ec:3b:6e:9d:99:e1:
41:3e:58:88:64:ae:a3:55:ec:32:4f:b3:97:ba:5a:f0:cc:de:
44:02:21:be:cc:63:c8:f1:6a:d8:d2:17:9e:c0:89:6a:66:09:
11:a3:7d:0b:d8:6f:de:6e:13:1d:75:ba:ce:58:0c:9a:59:07:
fb:d8:7c:43:80:1f:d0:f6:fd:5c:f1:14:f9:c7:40:a4:24:86:
6c:2e:45:89:46:47:84:84:72:50:e4:e7:96:41:91:15:c1:95:
70:96:70:f9:63:3f:dc:02:ad:90:92:12:6a:d3:dd:30:72:59:
63:a6:25:39:46:4b:4a:7f:81:15:39:a9:9e:2d:e7:73:64:35:
28:1f:23:5a:ee:2b:7f:dc:ad:b2:a3:fa:0f:fd:74:a3:4f:f8:
ea:37:98:50:4d:78:b3:02:74:3a:93:88:33:57:9a:74:c8:51:
42:fb:a7:cf:d1:bd:c8:b6:df:53:3b:ad:7a:5c:2f:63:01:fe:
86:fe:84:69:df:99:af:7a:4f:c1:27:33:b9:7f:17:2d:12:c3:
bf:01:05:e5:97:55:3b:80:3e:65:4b:1e:91:5c:f0:77:4f:37:
17:6c:ac:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:16:18 2026 by rpki-client