Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
File: YNCwIHYDvkPYSS6YUTeLi08JWU8.mft (raw, json)
Hash identifier: o8RS2KWc+ydUercfrcZud/FwBp8Vt7JTXmhk5We8+0Y=
Subject key identifier: 4F:27:A8:72:B2:BB:C9:FA:FA:75:34:35:AB:E3:B3:32:59:41:09:A5
Authority key identifier: 60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F
Certificate issuer: /CN=60d0b0207603be43d8492e9851378b8b4f09594f
Certificate serial: 019EC22447329857DD4AD17D5DC52B5AD544
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
Manifest number: 18EE
Signing time: Sat 13 Jun 2026 18:00:17 +0000
Manifest this update: Sat 13 Jun 2026 18:00:17 +0000
Manifest next update: Sun 14 Jun 2026 18:00:17 +0000
Files and hashes: 1: Lft1TVXiYVdikjn_A01iU-k02DE.roa (hash: AUhYpOdbzarhMkv1M+Fv4hjTQh+rQF7twSf3TVX7HXM=)
2: PejTwsBdKH5-f3Vp_HDi2lV40HI.roa (hash: sQMSKyXDXZzbEaxAsB9c8v4n+R0LYVRrVo36SmpYF40=)
3: YNCwIHYDvkPYSS6YUTeLi08JWU8.crl (hash: Co3XzujhI03FzH1mDuobAZH9BtT+vXltKB/OnLGcemM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:24:47:32:98:57:dd:4a:d1:7d:5d:c5:2b:5a:d5:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60d0b0207603be43d8492e9851378b8b4f09594f
Validity
Not Before: Jun 13 18:00:17 2026 GMT
Not After : Jun 14 18:00:17 2026 GMT
Subject: CN=4f27a872b2bbc9fafa753435abe3b332594109a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:30:21:fc:54:da:0a:d1:4c:0c:2f:63:b1:0b:
3f:e5:7a:79:20:fa:67:ef:e7:d3:80:9c:aa:41:ed:
67:62:0c:2d:0c:de:09:9c:04:4c:8b:58:ce:c9:a7:
92:b9:7a:eb:c7:f5:5d:41:26:5b:4f:43:24:7e:0a:
5b:0d:9e:73:ab:78:23:aa:ef:ce:04:2e:47:3c:69:
61:6a:d3:08:b4:ff:19:fa:43:03:d0:fe:70:70:70:
3b:56:f6:ee:fe:df:ec:8f:68:e8:6e:14:06:ff:16:
e8:fe:c1:49:bd:e8:ae:04:78:82:cf:37:53:18:28:
f0:10:90:cb:77:4a:10:88:aa:a4:17:21:3e:60:e1:
76:a9:06:88:bc:f9:15:26:7f:6d:a1:96:42:8f:3a:
64:a7:56:44:44:f8:04:94:30:88:e5:ee:d3:bc:97:
cc:87:91:7f:94:0f:cc:02:58:04:f8:3c:fa:0f:98:
13:ea:8e:44:8e:0c:b5:66:de:17:4e:cc:1c:a1:d4:
8c:70:e4:fd:f9:fb:99:9e:4c:a2:7a:df:39:c1:a1:
00:72:17:a8:32:89:ee:c9:e0:41:c6:37:79:2d:c5:
af:fb:80:23:da:21:60:57:e6:40:08:96:2e:c8:28:
16:c3:69:e3:31:b3:de:99:b3:96:70:c4:61:0c:e6:
6c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:27:A8:72:B2:BB:C9:FA:FA:75:34:35:AB:E3:B3:32:59:41:09:A5
X509v3 Authority Key Identifier:
keyid:60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:a1:56:e0:20:55:4b:da:7a:3c:cd:3f:3d:4c:4c:12:a4:f0:
1c:d9:c4:1f:ac:d5:d0:87:5b:1d:90:c1:3b:8a:3f:7d:da:fc:
ef:05:18:26:21:ab:0d:b4:80:d9:0b:cc:fb:35:e1:90:0b:c5:
79:73:da:38:2b:a4:f3:4b:db:6e:f4:60:cc:61:c2:5d:9d:07:
37:44:ac:9c:c4:5b:4a:1f:7d:80:23:5a:b4:4c:4f:68:32:00:
a3:82:36:50:fc:09:d7:81:07:a3:2c:5b:1c:77:e9:2e:e8:df:
cf:5a:e7:67:1c:b1:f8:02:30:ab:5e:c2:eb:75:38:3b:27:5d:
dd:45:45:f5:af:df:b3:3d:7e:a1:41:fb:fa:f9:53:23:78:f1:
7b:18:81:76:a6:96:11:74:59:30:a0:85:cc:52:1a:2c:42:6c:
16:18:e5:63:b2:7b:73:f2:f3:21:8f:ca:d1:26:9f:ca:16:1e:
96:cc:f1:43:79:72:b1:eb:5c:d2:fa:96:bb:f5:95:e2:9c:35:
e3:95:b5:c0:56:21:43:9a:4e:7d:89:18:31:99:9f:52:f7:e4:
15:23:1f:c0:74:c6:d7:60:75:90:b7:c2:ce:35:78:a6:4c:be:
8c:ab:1f:2b:87:ba:4a:5c:35:b8:75:f2:b5:70:a0:3b:66:65:
0d:6f:9d:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 02:30:55 2026 by rpki-client