Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
File: aYLwUTKpmJUH6_bumJUYdTuizbU.mft (raw, json)
Hash identifier: Sob6Q2M/YIaQBgPAY14Ody6OGgAmO8NJbPPNqT9oGZ8=
Subject key identifier: F0:D3:79:25:AB:77:4C:0B:5C:C8:5A:B1:7B:3B:3B:0E:EF:63:9D:2D
Authority key identifier: 69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
Certificate issuer: /CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Certificate serial: 019D9A74B0428D483E62226B68B00B553C41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
Manifest number: 0D74
Signing time: Fri 17 Apr 2026 08:00:31 +0000
Manifest this update: Fri 17 Apr 2026 08:00:31 +0000
Manifest next update: Sat 18 Apr 2026 08:00:31 +0000
Files and hashes: 1: SDv1pmvtKKy8j5zdxmiuQfAHvKA.roa (hash: la1FbIJeldqJDtutGbiRvWT587OJLuf+NXuNKZUoghY=)
2: aYLwUTKpmJUH6_bumJUYdTuizbU.crl (hash: GqZGcbzGYu64ch9eRNZ2jlkgS5ZcMxGAZGSlhAVgB4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 08:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:b0:42:8d:48:3e:62:22:6b:68:b0:0b:55:3c:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6982f05132a9989507ebf6ee989518753ba2cdb5
Validity
Not Before: Apr 17 08:00:31 2026 GMT
Not After : Apr 18 08:00:31 2026 GMT
Subject: CN=f0d37925ab774c0b5cc85ab17b3b3b0eef639d2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:48:1c:d3:30:67:d5:13:d3:ee:60:d0:29:02:
23:bb:fa:00:b8:71:56:33:63:fd:4f:67:ab:8e:73:
88:22:03:e3:93:3e:32:28:eb:de:39:62:64:09:c8:
4d:63:27:e5:53:6c:70:e3:63:5b:fa:2e:af:18:b9:
a9:44:e4:bb:87:7f:d1:9b:c1:b4:52:27:8c:1f:98:
09:94:55:0a:22:6b:8e:7b:aa:f1:12:1f:7f:8a:30:
92:4e:dd:7f:41:52:c1:f5:8c:08:3b:24:99:d0:4d:
10:f4:6b:68:e6:83:f9:95:59:4f:76:1b:48:5f:fc:
10:fb:cb:de:25:04:10:a6:09:64:2b:99:e7:f3:ba:
a0:a7:ed:3a:b2:c6:11:22:9c:6a:06:6d:4e:17:71:
46:5a:9b:e5:7a:1f:cb:81:ba:fa:69:e8:36:12:1a:
e3:05:e5:de:f7:53:bb:2f:f6:df:c7:9b:30:ce:07:
89:ef:9a:6e:05:bc:92:37:85:87:7a:5b:64:7f:77:
97:cc:d9:57:16:a5:3c:12:54:72:23:ad:41:c6:ba:
04:12:da:ea:ea:6d:cd:57:dd:40:96:ef:d7:8c:00:
e3:83:ba:db:64:da:b8:75:a3:78:38:e8:7e:d4:3a:
f4:56:c3:00:af:36:12:b0:f8:6e:33:91:80:d5:bb:
8c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:D3:79:25:AB:77:4C:0B:5C:C8:5A:B1:7B:3B:3B:0E:EF:63:9D:2D
X509v3 Authority Key Identifier:
keyid:69:82:F0:51:32:A9:98:95:07:EB:F6:EE:98:95:18:75:3B:A2:CD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aYLwUTKpmJUH6_bumJUYdTuizbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/690409-019d-4812-930c-f926fabf7afa/1/aYLwUTKpmJUH6_bumJUYdTuizbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:01:49:51:d4:dc:8f:35:c1:91:63:9f:b0:82:b7:93:ae:0f:
98:ff:0a:5d:fb:0e:da:6f:4c:8b:3d:8c:e8:7d:82:94:e3:89:
98:51:b2:82:41:59:d7:08:dd:1d:b8:c3:ef:ce:50:67:f9:30:
79:20:bc:c5:ac:84:c7:89:42:4d:f5:f9:a8:0b:b4:f1:0f:6d:
cb:1f:49:71:93:f4:e6:e9:dd:90:f3:73:55:70:e9:50:2e:1d:
0f:aa:1f:22:60:40:09:85:b0:d7:bd:88:80:f8:ef:9f:06:f8:
50:3c:f9:93:d3:bd:b7:43:2a:12:25:c4:b8:26:b9:fc:68:04:
86:1a:6b:55:03:88:df:74:ef:05:66:6c:54:48:22:1a:d4:26:
a7:a7:b2:86:55:28:bf:78:5c:16:59:84:6f:5b:2f:42:f7:84:
0a:38:1b:0c:bb:45:54:bd:34:5f:e3:70:37:1f:8d:b6:3e:d4:
6d:bf:16:1c:32:33:6b:45:40:4c:90:1f:ea:24:9d:2f:57:95:
91:1e:c8:ab:51:8e:9c:c1:6b:57:fe:08:9e:33:19:85:ec:a6:
69:46:8e:f7:45:e2:92:e1:fd:db:c5:62:3f:6c:89:7b:d5:2d:
86:e5:0d:44:08:ce:8e:18:e1:08:2d:10:3c:b3:ed:23:4b:7b:
4e:5f:86:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:38:23 2026 by rpki-client