Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: WCKv8/pY3N5OqQlBu8BJ1eoRgUi1TFkg+ebHlkMVLsw=
Subject key identifier: 5C:D1:58:95:6E:18:C0:32:71:96:90:53:AE:37:64:52:DB:C4:80:3A
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 019CAC10226A59BCF9C9F1F81D0B16CB54A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0E58
Signing time: Mon 02 Mar 2026 01:01:04 +0000
Manifest this update: Mon 02 Mar 2026 01:01:04 +0000
Manifest next update: Tue 03 Mar 2026 01:01:04 +0000
Files and hashes: 1: UUfjp8DsgnyXyAKHpxYY24nPV9k.roa (hash: z2A5oacpxbaOodlp6c1sfM8uFMWqz0u+N2Xu9qkatg0=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: MvO1k5DYn3uL7Ggii7DHGsD2ZAQ72LrnFDC3BHUtPoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:22:6a:59:bc:f9:c9:f1:f8:1d:0b:16:cb:54:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Mar 2 01:01:04 2026 GMT
Not After : Mar 3 01:01:04 2026 GMT
Subject: CN=5cd158956e18c03271969053ae376452dbc4803a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:72:f6:df:d7:90:07:2c:9c:e0:53:08:7d:d8:
95:b3:2e:ad:3a:3a:6f:5f:ce:49:37:8c:cc:02:c5:
2e:01:42:c8:7b:04:df:b7:ee:ec:02:ae:00:f3:9e:
01:a8:1f:e8:45:68:cb:ef:23:26:7e:31:e3:f9:a2:
a4:31:35:59:5b:03:69:a4:3d:7d:24:95:fe:b0:33:
9a:01:f8:11:ae:97:8b:4b:2d:66:fb:4c:88:cc:64:
38:d1:20:71:ca:0e:02:e3:2c:10:9e:71:a3:7e:c8:
b5:5b:99:7c:d9:a0:0c:d5:58:44:5d:51:4c:a8:6f:
2e:c9:c9:18:13:5f:1d:ad:e4:00:65:72:57:79:69:
43:66:eb:c9:b3:90:e9:85:f4:81:63:15:38:da:c7:
cc:7e:d7:5e:40:3c:d6:4c:73:b8:31:82:bd:2c:82:
64:b2:1b:ae:4b:32:9e:4d:8a:06:56:60:32:18:c2:
18:be:25:b3:0e:b7:69:bd:ad:5a:b1:fd:0b:75:71:
f9:fc:51:05:40:77:39:e3:00:b3:21:07:9e:16:ff:
b1:e2:59:ec:ba:56:5d:fb:00:d6:83:0e:c7:1a:78:
30:19:b7:26:96:11:02:18:e7:4e:75:db:ee:ea:84:
ef:16:58:28:95:da:57:6c:11:23:02:a3:03:ce:3b:
3d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D1:58:95:6E:18:C0:32:71:96:90:53:AE:37:64:52:DB:C4:80:3A
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ea:27:fc:5e:29:c3:42:93:7b:1f:00:d7:0e:28:88:1d:df:
a9:9a:07:b9:12:af:7e:c0:13:58:a5:a8:78:3f:40:19:64:0f:
c4:70:d5:28:31:5d:a2:3e:b8:71:99:73:6e:35:5d:9f:d9:ca:
8e:99:32:90:6a:a2:8d:c9:16:63:7b:bb:65:30:0e:8f:d4:45:
75:00:c4:2f:6c:04:89:2b:e7:1f:06:02:63:d5:24:b4:e4:5b:
22:95:d8:32:57:e7:4b:0f:cc:9b:1b:25:8f:00:37:64:f6:16:
ea:1f:1e:b4:e5:0a:15:1c:62:2b:a8:67:74:bd:e3:3d:00:84:
63:aa:33:11:d6:05:ce:c0:2f:b3:8c:d7:3d:ad:d2:ca:0d:b0:
b6:f9:80:ec:e5:d8:a7:52:9d:85:18:a9:2c:a3:d6:43:96:20:
6c:0b:f6:bd:51:2f:de:60:1f:f4:ce:39:3a:71:f5:28:08:79:
3f:db:bc:23:fc:36:89:42:75:df:8d:b0:21:ea:62:05:42:94:
31:d4:c4:05:23:39:27:55:8b:19:c3:7e:13:f8:27:9f:13:8c:
22:5e:46:63:ba:1f:48:21:c2:2b:07:9f:c0:b6:7b:76:11:4b:
82:b9:28:0c:c5:a4:9e:c6:a7:de:10:9a:30:80:3b:c8:5b:7a:
b6:f7:46:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:52:20 2026 by rpki-client