Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
File: YaXSF3WehhaW_HftmqY7lO2zvn0.mft (raw, json)
Hash identifier: YbJGzLugs7kCNXxmup+rxWR0EV6ywnRRb5LneH5v7Lc=
Subject key identifier: 1D:7C:D8:56:A6:56:32:7C:86:0B:6B:DA:F5:E6:37:74:53:17:6D:82
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 019CAAC6107AE4A206A5283E99D465E41F39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
Manifest number: 17D6
Signing time: Sun 01 Mar 2026 19:00:32 +0000
Manifest this update: Sun 01 Mar 2026 19:00:32 +0000
Manifest next update: Mon 02 Mar 2026 19:00:32 +0000
Files and hashes: 1: 7nMDcW2MBzGpfpdKdPDTB0QB3hU.roa (hash: en70sYlojLOJhZvnO4mg1gQMw5JWdqgwDgeNhf3auMU=)
2: En1jde_TIQ7LiMKAfWOjQ8-vueQ.roa (hash: B07iauNs3fJKlZyy9+dMg1gGMxORKFzCKI2QAYo7MVI=)
3: QaLldwyWCNmsJuYxanxijJENiro.roa (hash: zZJuFSJ24SLOyuCH72+V4rIHBfJPcOF4kPyYmAT7g5s=)
4: YaXSF3WehhaW_HftmqY7lO2zvn0.crl (hash: umGbDS5SHJqKKNAqbmaqySpk+pY6HC9VUL9/X3qqVtU=)
5: jdSwXFGYkX-QEBXIuasgwFC2D7c.roa (hash: 8ECDcLMvUhxjcLk2BpSduz0pbSgekU1Tj/Vgy8O0Vqw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 19:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:10:7a:e4:a2:06:a5:28:3e:99:d4:65:e4:1f:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Mar 1 19:00:32 2026 GMT
Not After : Mar 2 19:00:32 2026 GMT
Subject: CN=1d7cd856a656327c860b6bdaf5e6377453176d82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:34:b5:6f:73:65:25:a7:af:9b:da:28:a8:1f:
78:db:e1:d0:ca:e0:d1:d1:8a:2e:a5:2c:fc:d0:3f:
97:94:41:ff:af:fa:18:07:83:7a:98:5d:b9:df:60:
b9:65:a0:39:1e:38:0b:bc:bc:50:08:05:e9:61:9a:
da:5c:81:94:9f:c3:70:44:01:a8:6a:c1:9a:90:bc:
67:3d:03:83:69:7c:e3:09:5d:e2:75:73:b1:7f:9c:
17:ec:ba:34:85:f2:17:ef:d6:14:8d:c4:7f:f2:a3:
d1:44:a9:46:d3:df:3e:1c:3b:55:a2:89:78:a3:85:
f2:16:e0:17:4c:69:45:1d:b4:fe:cf:7d:fb:c4:f4:
b9:6f:e2:d4:5c:3a:40:40:5d:f3:be:e8:4a:54:7d:
d3:a9:d9:56:15:82:e8:cb:03:17:fc:4c:08:d8:db:
c3:60:7a:24:b0:cd:ad:33:8a:e7:17:ac:8f:4e:fe:
89:7b:36:85:e1:79:ec:bb:7a:c2:12:5f:85:d6:71:
47:10:f8:ca:8a:ba:5d:7e:e5:4e:a5:21:27:45:62:
e7:96:36:fa:2e:92:03:49:a1:b1:b4:24:3f:3a:6f:
40:ab:a3:67:a5:3e:71:5d:e0:ed:e9:9d:73:11:88:
51:db:cc:02:ba:36:21:c5:e4:9e:10:8f:27:07:89:
fc:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:7C:D8:56:A6:56:32:7C:86:0B:6B:DA:F5:E6:37:74:53:17:6D:82
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:57:c3:a8:99:f1:80:3f:e6:21:a1:49:7f:3b:3e:fb:d6:df:
72:35:13:b5:1b:52:11:e6:1a:0d:3c:6d:58:c9:06:8c:1e:16:
db:75:13:ac:8a:7f:ff:0f:60:5e:fe:b5:d2:35:ce:71:de:35:
83:ae:a2:2d:f9:3c:53:83:4d:7f:da:3a:86:b2:0d:bb:61:54:
bb:66:0c:ec:3e:4d:c6:82:2e:05:60:7b:68:4a:6f:d1:22:5b:
d1:48:20:71:1b:91:f7:f8:8b:ce:f1:69:1b:bd:03:24:0a:c9:
5f:ae:ec:0d:10:e5:4e:be:05:94:d4:31:40:76:fc:5a:0c:b6:
db:f7:3c:c7:bc:cf:85:2d:d6:be:6c:51:9e:a2:ae:56:0b:e9:
32:cb:96:11:82:a9:af:80:ff:ac:56:24:71:3f:f3:0c:64:f5:
94:7e:a3:2c:f0:47:65:6b:b9:d8:ea:ca:58:26:64:0e:d1:6f:
7a:b6:de:ec:f5:42:b0:9e:78:b0:43:78:c6:e4:b7:db:aa:38:
22:fb:4b:e9:7c:69:1a:52:43:a9:05:81:9d:fd:93:9b:e5:85:
c7:a9:a5:2e:3e:91:83:e2:f1:76:6b:9f:60:65:bd:61:dd:c7:
f1:ef:3c:a6:06:fe:b9:df:c3:bf:11:e3:bf:00:d8:cf:33:bf:
98:4d:d4:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:13:18 2026 by rpki-client