Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: ZzgQZNprgKxYQISAACnLKtKO4LSH8o5WDUXuQc9X5+8=
Subject key identifier: 54:EC:A3:3F:B4:38:57:06:98:D5:92:A7:55:C0:A7:7A:98:34:39:F4
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019D99CFDF09C0C70B80446667D0ED2F4972
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 05:00:30 +0000
Manifest this update: Fri 17 Apr 2026 05:00:30 +0000
Manifest next update: Sat 18 Apr 2026 05:00:30 +0000
Files and hashes: 1: NkhNpoa7Mava_QXc8cJpKFD-6x0.roa (hash: NHb2sZxdiKyxH3v4fGC8EWYo7uPMfDDnkonpIAR9yAY=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: rXT3QfM5RlawhD9mXFyLezvjv/xsFWKVAnaOZBY3W7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:df:09:c0:c7:0b:80:44:66:67:d0:ed:2f:49:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Apr 17 05:00:30 2026 GMT
Not After : Apr 18 05:00:30 2026 GMT
Subject: CN=54eca33fb438570698d592a755c0a77a983439f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3b:58:69:de:d3:72:cd:be:d2:cd:ec:1a:20:
f7:2e:76:81:36:2d:46:9a:0b:6d:f5:d8:24:74:a6:
f1:41:ee:b1:ac:c0:52:f8:ec:c4:da:2c:42:7c:66:
46:fa:e3:52:d7:b5:a5:2e:69:b4:ed:60:16:96:56:
62:0c:52:ef:91:46:0c:1e:c7:4d:9d:7e:44:b1:09:
d0:9a:0f:7e:a2:01:c3:70:ae:54:12:9e:10:11:9c:
2d:3a:c7:49:f9:fa:72:d3:98:bd:93:88:aa:53:47:
18:17:6b:6a:cf:f6:6c:5e:c5:44:79:96:4a:97:f4:
53:ba:c7:34:ae:18:e3:df:f7:b7:47:59:92:c0:ed:
3d:ee:8b:10:6d:be:d7:79:71:98:4d:d5:70:19:5b:
91:10:ec:1a:92:19:84:ce:85:4b:e8:7a:9e:b7:81:
66:4f:4a:d7:e8:95:5a:ff:00:3f:86:e8:a6:7f:2b:
2c:b6:be:ba:87:fd:23:37:63:99:d9:24:ab:b4:0e:
47:53:31:ce:05:0b:0d:15:36:0a:8b:32:6e:d1:da:
11:28:6c:9e:ae:41:d6:54:f2:f4:06:df:d5:9f:ec:
e4:56:6b:2a:e2:17:10:3e:64:21:e1:fa:36:19:3e:
84:b1:b8:f6:cd:28:80:d8:b7:69:b5:00:63:78:1b:
44:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:EC:A3:3F:B4:38:57:06:98:D5:92:A7:55:C0:A7:7A:98:34:39:F4
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:cb:b1:8f:0a:9e:57:9d:20:6f:06:91:ec:24:fb:2b:85:1c:
68:0d:05:4c:32:7d:23:34:c0:70:c4:da:3e:f0:38:90:f1:38:
96:0e:f1:ce:73:3e:cc:05:0d:ad:0d:c0:bb:19:cf:61:ca:65:
c7:02:90:37:07:b8:07:ce:a5:18:6d:cf:28:f3:0c:ef:f3:e8:
7c:3c:55:02:99:e4:6e:24:5b:0f:e5:22:46:6a:2f:08:bc:58:
fb:f9:9a:b9:a1:7f:ea:28:cb:94:73:92:46:a9:9f:f1:1b:8e:
61:b0:46:c6:17:fb:df:66:72:55:78:c7:4b:39:59:9e:dc:3b:
93:39:dd:8e:cd:48:84:b2:59:0e:17:80:5a:15:2d:10:32:fb:
66:e9:a4:79:16:7b:e8:ec:bc:fc:70:4d:26:46:62:b2:8a:86:
6b:b2:52:0a:23:23:ee:bf:e0:c8:95:32:fe:84:c0:3f:24:f3:
3b:07:59:3b:32:c6:47:b7:36:7d:01:5a:75:58:00:4a:61:23:
a7:ad:9c:53:19:47:8e:ce:7d:8c:4a:f1:27:90:0d:ae:20:4e:
cd:a0:e9:61:c0:e2:87:29:a5:1f:26:20:95:1d:55:e9:82:22:
92:03:6a:ab:c2:f2:40:1c:73:b8:82:c1:ac:25:27:10:c3:3a:
f2:66:14:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:03:01 2026 by rpki-client