Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: x55BJoKsGA3G006yROYdL9qKJv5fxetXLWW2o7z4fRI=
Subject key identifier: 49:8A:73:1F:59:37:7F:D7:D2:8C:31:F9:D5:5B:6C:31:F9:7D:44:26
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 019CAC7DE908BC3B2BA5E3E28408ACC08D2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 066F
Signing time: Mon 02 Mar 2026 03:00:58 +0000
Manifest this update: Mon 02 Mar 2026 03:00:58 +0000
Manifest next update: Tue 03 Mar 2026 03:00:58 +0000
Files and hashes: 1: Rmbqki6sfeVONmSCUKVbSwnLV2w.roa (hash: m02OGs1ERDq2Tep5VBBDirUwK9M85zv/SGcl5/T9Gng=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: qltn6T4eeh0vUsOHghYDtygq9oB7TGPfjQooqLGZeaY=)
3: YrjDjaI3_Q6KPQ90f8RoYBEvTqI.roa (hash: VmD17BnA3G7W1dMkZraFPy0h1sdRJ/jQerJj3HVgUI8=)
4: mEMBpqCiAZX-66IM2v28OLBYmaU.roa (hash: D0q/tQQJTMQWefAkqZBJ1Tlw8AdCPKqxL86ZtoZ1fgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:e9:08:bc:3b:2b:a5:e3:e2:84:08:ac:c0:8d:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: Mar 2 03:00:58 2026 GMT
Not After : Mar 3 03:00:58 2026 GMT
Subject: CN=498a731f59377fd7d28c31f9d55b6c31f97d4426
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:96:b9:f7:7d:19:ed:db:b3:36:f9:af:f8:4f:
7e:91:45:10:a9:0a:b4:1f:8f:1d:c2:65:cc:33:c2:
be:09:4e:35:44:eb:af:5b:2d:9f:e5:75:29:10:6d:
da:94:fa:57:89:da:18:08:62:37:f7:5a:95:82:18:
f9:1d:17:ad:39:28:3b:f0:1f:04:20:95:c5:cd:4f:
8a:ae:cb:8a:85:5d:33:4c:8e:0a:f6:61:ae:2c:30:
3a:fc:f0:41:8e:ef:62:f8:3a:07:1c:ac:87:9b:ca:
7d:f2:73:ac:92:12:a6:61:31:01:71:d6:33:be:d0:
f5:b2:37:3a:6b:ef:62:4c:ab:88:cb:5d:ca:81:2c:
81:99:d8:7b:d4:d0:f6:6d:46:0b:61:ce:bd:eb:70:
34:7f:fb:d3:51:5b:0d:22:75:5f:5a:95:06:df:de:
3e:c7:0c:2f:86:c5:ba:4e:6f:a4:6f:52:37:66:2c:
36:d3:ad:59:79:35:91:15:ea:ca:e5:41:a8:3d:b1:
ff:01:89:2f:69:51:97:ab:e7:f6:0d:9c:d5:15:ab:
d6:4b:a3:c5:d8:d7:d6:55:34:ee:a8:94:bd:8b:a2:
85:7c:93:aa:7a:ad:78:bf:83:db:11:5f:d8:b7:7c:
4f:24:09:9b:c2:85:1d:13:e4:c4:d8:58:d5:c1:cb:
13:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8A:73:1F:59:37:7F:D7:D2:8C:31:F9:D5:5B:6C:31:F9:7D:44:26
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:22:6d:53:01:4a:68:d1:0a:22:76:65:c2:81:a2:61:e2:53:
51:9e:9f:a7:a0:6b:04:26:41:47:e7:0e:89:3a:76:51:0b:3a:
05:8e:94:d2:05:b2:30:e4:99:76:b4:5e:aa:36:22:2c:47:d3:
ca:59:57:a1:30:71:d0:70:3a:07:10:ad:26:03:7a:61:92:74:
77:d3:58:ab:33:65:d0:37:21:8d:ed:e3:92:39:0f:fc:49:58:
4b:0b:30:07:bb:2f:51:15:fa:43:1d:a6:17:73:d6:eb:d5:27:
64:26:bf:8b:ed:85:b8:69:3b:2e:f4:3f:16:11:8c:9d:97:38:
42:0d:0f:17:92:45:02:4e:db:f2:c3:fc:87:c6:c2:ec:cd:73:
67:0e:33:e6:a9:8f:ac:0c:20:af:f9:82:80:02:15:8a:51:ca:
97:79:c2:4f:83:97:94:25:62:bd:9d:b7:24:f1:07:cd:be:42:
4f:b5:db:ad:c5:e0:68:25:3c:14:78:e7:97:33:3c:84:16:9f:
b1:d3:d4:46:c8:4a:53:69:8c:a3:90:e3:82:25:8f:fa:e6:b2:
05:25:d7:55:80:5d:4d:e6:80:a4:14:97:74:1b:67:18:8f:53:
45:d1:18:9a:24:fe:e4:38:fc:a5:e9:2f:40:55:1a:46:9f:10:
ea:5f:71:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:15:20 2026 by rpki-client