Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
File: YGhXxDyh3wTLaaSgqshim98ydWs.mft (raw, json)
Hash identifier: LlK6LSjeVT4o9rfUyzLn8/uuDTL0LlhpkLmp8gVMvGk=
Subject key identifier: DB:75:5F:CB:8C:0F:AC:F1:3C:80:F3:4A:38:13:B6:61:CE:B1:36:36
Authority key identifier: 60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
Certificate issuer: /CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Certificate serial: 019CAAC6F61EFF5B07AE6AF83F2BDFA18A33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
Manifest number: 14FD
Signing time: Sun 01 Mar 2026 19:01:31 +0000
Manifest this update: Sun 01 Mar 2026 19:01:31 +0000
Manifest next update: Mon 02 Mar 2026 19:01:31 +0000
Files and hashes: 1: YGhXxDyh3wTLaaSgqshim98ydWs.crl (hash: zxHz7oKOhlUCh7BexdZMkv9NyFEg3UhSN8pYtyvu4qo=)
2: r07b59Kbc0tU4fUroKjDGDeksk4.roa (hash: VbjM5vBRkz4uK7ac3fSu6tjCMa1PBV229HM3K4xTekY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:f6:1e:ff:5b:07:ae:6a:f8:3f:2b:df:a1:8a:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Validity
Not Before: Mar 1 19:01:31 2026 GMT
Not After : Mar 2 19:01:31 2026 GMT
Subject: CN=db755fcb8c0facf13c80f34a3813b661ceb13636
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:14:7b:7d:58:c8:87:fa:a2:bb:a4:0f:92:8c:
73:34:c0:36:ac:62:83:4b:ff:5d:e5:29:64:09:df:
3a:b9:3a:86:84:05:6d:c8:f4:37:25:d0:e5:e6:51:
3a:5a:48:b8:5c:c6:51:c3:78:56:6b:68:d2:bb:7d:
f9:8c:bc:e0:2c:a6:30:6e:0d:00:b5:63:91:60:80:
35:e3:72:ed:38:52:d7:7e:b2:4b:26:59:7a:47:3a:
3e:17:04:7d:64:33:f0:48:f1:d1:de:8d:29:93:41:
c9:cb:8b:ff:aa:95:fb:db:1b:96:84:a2:23:88:17:
6c:c5:82:27:b9:d5:33:6a:a3:1b:e2:8e:29:91:cd:
fd:9c:5d:cd:b8:7e:a0:eb:06:70:c4:0c:55:d2:63:
19:a0:2a:45:a5:f4:40:1b:d1:32:35:46:3f:35:9d:
98:f6:09:2b:60:d7:48:51:83:25:02:49:98:55:e7:
c6:3a:bc:a1:a7:01:38:20:6b:b2:32:81:70:68:fc:
fa:36:e7:42:44:f1:ec:36:aa:b5:81:25:a9:61:c3:
5e:f7:58:e4:dc:33:ed:ec:a2:69:99:83:d3:e1:cc:
fb:cf:76:b4:9e:2e:9f:fc:0a:4a:a4:9d:c6:34:fc:
e0:77:d1:c9:be:23:25:07:e9:ea:6e:f3:1c:71:91:
79:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:75:5F:CB:8C:0F:AC:F1:3C:80:F3:4A:38:13:B6:61:CE:B1:36:36
X509v3 Authority Key Identifier:
keyid:60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:92:8d:bf:6a:17:68:22:fe:9e:d7:53:08:6e:28:3a:47:6e:
da:b7:ab:23:a4:d5:22:6b:ac:48:43:4c:c2:2d:c9:4e:38:5d:
70:0f:67:74:51:5a:69:da:32:18:bb:25:14:ed:13:fa:fd:52:
d0:63:de:df:eb:5b:a8:5c:cd:32:83:ef:a0:0e:ec:a9:98:0a:
eb:b0:a0:0d:24:a5:48:49:0c:13:c0:90:70:ee:0e:26:4d:a7:
52:59:64:56:ef:b0:09:67:98:63:06:45:f6:20:75:76:df:3f:
82:7f:8d:25:67:22:8f:2c:2d:2a:e5:21:ea:5b:e5:1b:14:ab:
99:82:3b:58:46:ff:94:90:7a:f4:9b:4f:a6:60:3b:f6:89:7e:
37:5c:70:aa:f1:db:7c:f0:3e:53:2c:7b:8f:1a:e2:f7:c3:7f:
82:20:d0:84:fc:e9:e2:d4:65:75:a2:17:39:c3:43:34:fa:da:
23:bb:27:14:d8:b3:3b:77:be:47:55:83:3c:aa:0a:a9:fd:71:
80:b0:2a:04:fa:8c:21:58:b2:ac:2f:91:b5:86:95:18:6b:41:
d1:db:80:c5:35:1d:15:e9:c9:1e:f5:cc:70:4f:58:c2:1f:4e:
ce:3a:a0:38:3a:7f:6b:b4:8a:19:f8:49:ad:28:c7:37:09:71:
05:9e:07:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:52:15 2026 by rpki-client