Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft
File: y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft (raw, json)
Hash identifier: b/bsfKGtTSfel1PkNp/NDZvv8voY8NPyrN3CtCMoY1o=
Subject key identifier: 1B:08:30:DC:E3:E6:66:CA:F6:DD:1E:5D:40:D4:BB:C6:9F:E0:29:DE
Authority key identifier: CB:C2:EB:DA:3A:B0:85:10:EB:E9:A1:0E:60:BE:23:16:02:28:A9:42
Certificate issuer: /CN=cbc2ebda3ab08510ebe9a10e60be23160228a942
Certificate serial: 019D9AE2D7FFAA9AB939858654CDEF9615F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft
Manifest number: 18BE
Signing time: Fri 17 Apr 2026 10:00:50 +0000
Manifest this update: Fri 17 Apr 2026 10:00:50 +0000
Manifest next update: Sat 18 Apr 2026 10:00:50 +0000
Files and hashes: 1: y8Lr2jqwhRDr6aEOYL4jFgIoqUI.crl (hash: Z6Azjyx1LZBh44ympGMWoEr4bZIz6WRW7wo1fO+sMxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:d7:ff:aa:9a:b9:39:85:86:54:cd:ef:96:15:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbc2ebda3ab08510ebe9a10e60be23160228a942
Validity
Not Before: Apr 17 10:00:50 2026 GMT
Not After : Apr 18 10:00:50 2026 GMT
Subject: CN=1b0830dce3e666caf6dd1e5d40d4bbc69fe029de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4a:4b:06:48:73:29:d9:b3:67:e1:ff:55:2c:
48:41:8d:ee:b8:d5:ed:87:da:68:b2:37:7f:c5:60:
33:a5:62:bc:08:cd:c9:6d:81:d2:b0:26:e8:70:e2:
e3:9a:7e:7c:ca:a1:a2:f9:e9:ad:61:53:e7:ad:8f:
6e:0b:ef:99:a9:97:e3:71:17:81:c6:4b:ab:8a:e0:
c7:92:3a:8b:d7:13:c4:92:25:60:f5:cf:d0:a2:07:
6b:01:19:3f:3a:d3:84:3a:e6:91:7c:04:b2:79:52:
b3:57:82:ae:dd:32:94:42:b2:a2:ce:c3:d6:b3:cc:
b0:a3:1c:c5:8d:aa:9e:ff:74:b3:d6:10:89:65:d1:
3a:08:59:73:7b:b9:9f:d3:90:68:02:65:fb:d3:4e:
49:de:4a:42:16:5c:54:cd:c4:2c:9e:1c:3a:5c:14:
2b:5b:7c:8b:0f:21:fd:52:83:bf:83:ad:c4:43:ab:
de:66:40:e6:b7:1d:79:f1:2b:3b:9e:e8:24:a8:e8:
23:27:83:bf:8e:1e:8a:e4:c9:12:19:7c:0c:b8:f2:
2c:c4:4a:6a:c5:06:1f:f0:60:fa:30:54:f2:7c:b3:
b6:71:6a:82:50:02:a4:4b:46:24:a1:87:f9:08:ec:
87:d9:67:5c:e9:80:05:3a:80:4b:a3:1e:60:76:fa:
0c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:08:30:DC:E3:E6:66:CA:F6:DD:1E:5D:40:D4:BB:C6:9F:E0:29:DE
X509v3 Authority Key Identifier:
keyid:CB:C2:EB:DA:3A:B0:85:10:EB:E9:A1:0E:60:BE:23:16:02:28:A9:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/814dd0-09e1-4273-873a-7463815a3f4e/1/y8Lr2jqwhRDr6aEOYL4jFgIoqUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:81:3f:9e:e8:bb:6c:84:8e:8a:b8:2c:6e:78:ae:66:92:02:
1e:58:98:c0:45:06:64:29:2a:c2:8e:e6:c6:21:8a:e1:cb:10:
7d:9a:ca:81:4e:da:c3:15:bd:e2:3f:b6:56:1f:e0:55:7b:d2:
00:25:1a:de:90:f3:5b:fa:f4:3e:1a:06:ad:79:82:83:75:3e:
5f:5a:86:67:93:11:4d:a8:bd:be:16:96:69:1d:71:b6:a6:27:
2d:67:51:d7:07:b2:be:2e:12:a2:ef:29:aa:9b:a8:66:fd:9a:
4b:dc:d7:b6:11:be:5d:69:c9:73:54:84:77:bb:b9:43:b6:3d:
27:52:89:e3:4a:61:2a:b3:23:d7:b2:48:ef:54:46:41:25:69:
3a:0e:69:bd:26:07:7b:38:f7:9b:8b:51:93:16:ac:3b:83:a3:
41:ff:7c:1f:8b:cf:16:0d:49:79:d2:5d:a5:3f:36:54:93:9f:
67:2b:dd:de:4d:49:16:70:e7:b2:f0:79:98:b7:27:44:66:6f:
7a:19:d0:0a:1e:88:88:8b:bf:26:40:f4:e8:71:59:24:b4:8d:
bf:40:45:1e:3e:63:20:a5:e8:3d:bc:a3:30:bc:64:96:0a:d7:
91:0f:2d:3a:8c:44:73:ca:1c:87:4e:cc:d1:4f:70:03:d8:95:
c8:b1:d3:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:08:48 2026 by rpki-client