Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
File: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft (raw, json)
Hash identifier: H+5/WcE7x/7C1tbFD4ILEX1J7IiTzh2HR+AK4jGQZR0=
Subject key identifier: 0F:60:F2:24:F9:63:35:8D:8A:A3:DF:6D:0C:61:34:D9:64:3F:01:5A
Authority key identifier: CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
Certificate issuer: /CN=ca434d399d93a19d8a8108456c5575096c2ae588
Certificate serial: 019CAC7E24971DA5EAB64BD1C6AA3DADF204
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
Manifest number: 0868
Signing time: Mon 02 Mar 2026 03:01:13 +0000
Manifest this update: Mon 02 Mar 2026 03:01:13 +0000
Manifest next update: Tue 03 Mar 2026 03:01:13 +0000
Files and hashes: 1: G-foIY1cv2s-pbmJJsngENBWLwM.roa (hash: /sje/fJ/oYoi2zdAPSdZ79XrD4oozBnY/U0gHu3a9bM=)
2: ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl (hash: fY/CoyzZU3UD0SRWjo5wnN/9NLzvgsEg9lpq+WbWyjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:24:97:1d:a5:ea:b6:4b:d1:c6:aa:3d:ad:f2:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca434d399d93a19d8a8108456c5575096c2ae588
Validity
Not Before: Mar 2 03:01:13 2026 GMT
Not After : Mar 3 03:01:13 2026 GMT
Subject: CN=0f60f224f963358d8aa3df6d0c6134d9643f015a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cf:55:01:47:96:49:93:72:20:53:08:9a:53:
68:90:a5:db:2c:b8:5b:d6:69:2a:cb:87:4d:70:d4:
43:d8:de:04:33:b7:a5:58:36:27:f3:0a:59:80:84:
85:08:db:0d:3f:23:1d:19:ed:ca:a8:71:81:c6:de:
6a:8f:5c:a7:cb:a1:e3:cc:12:2a:b7:32:f7:32:73:
91:4f:e8:aa:ca:39:97:c4:5a:3c:8b:e6:d6:12:80:
a5:e2:66:5a:5a:5d:23:8e:be:d4:08:95:0a:e8:6d:
c1:47:b5:e0:5b:08:f0:85:96:e6:b6:db:d4:bf:19:
28:a3:92:4d:9d:34:12:2a:33:45:65:69:fc:f0:03:
ba:92:f2:ad:db:78:bb:46:fd:33:9c:e7:f5:9e:9b:
da:49:77:94:a1:8a:e5:ba:22:42:8b:43:8a:f7:c2:
5c:9a:80:2c:7a:ac:02:07:09:2d:24:61:c3:0a:ce:
b5:e5:aa:6c:96:aa:fb:ce:a8:02:fe:f6:a6:6b:8c:
b6:96:49:f2:0e:6a:47:5a:ef:db:fb:b3:57:c0:d1:
d8:1c:15:32:34:36:fe:55:fd:9f:c5:92:0a:1d:e2:
ae:1e:f5:1e:74:3a:f4:5d:28:53:e6:0d:9e:7f:4b:
a5:8f:af:6c:2a:be:7b:78:38:9e:e9:98:00:71:90:
58:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:60:F2:24:F9:63:35:8D:8A:A3:DF:6D:0C:61:34:D9:64:3F:01:5A
X509v3 Authority Key Identifier:
keyid:CA:43:4D:39:9D:93:A1:9D:8A:81:08:45:6C:55:75:09:6C:2A:E5:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/6aec6a-3683-405a-9e61-db2368271913/1/ykNNOZ2ToZ2KgQhFbFV1CWwq5Yg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:54:4c:bc:4c:6b:39:a2:d5:96:ad:c7:9c:7d:6c:56:19:f4:
ab:3b:ad:f5:49:79:62:41:ca:7f:a8:60:0e:ce:00:2c:79:63:
b9:03:1d:1b:b0:51:77:29:f6:cf:d0:3e:7d:79:68:b8:d2:9b:
34:7c:9f:f1:ba:29:35:0f:b4:cc:3e:4f:95:27:64:17:ca:7e:
5a:65:bd:0e:60:d8:c7:59:f0:12:ab:4c:20:68:5e:b5:41:86:
80:98:1b:9e:88:87:91:2f:f3:dd:1f:1f:87:29:e5:88:e6:55:
3c:b0:59:fc:78:c9:75:5d:ed:69:7c:d0:ad:39:40:53:69:93:
4e:dc:e3:54:ec:16:28:3d:db:92:3c:02:69:c6:2e:7e:1f:23:
56:39:2f:7f:df:1b:b4:68:26:fe:72:f8:3e:e5:4b:e3:2f:d4:
36:fa:ea:99:50:0e:86:76:85:e7:36:c1:32:b4:64:42:da:dc:
c3:1d:75:e0:fd:5a:1a:75:ee:e2:7b:7a:46:59:02:80:0f:b3:
7b:d4:a1:00:db:99:13:d9:d2:c2:10:e6:37:e7:ee:48:7a:07:
f0:4d:35:68:5f:e3:59:f9:35:43:4a:66:7e:e2:e1:ed:a8:33:
9d:d4:14:77:d1:6e:ef:e2:d1:d8:44:14:73:50:08:81:29:65:
ea:23:31:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:36:40 2026 by rpki-client