Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
File: Y42aUATFktCTzImw2QdS4nnVGFQ.mft (raw, json)
Hash identifier: crnqk6MGJUM1xTjHLukYlZ1Fkcabncd/JxyVb74jRJ8=
Subject key identifier: 39:FD:ED:24:47:1F:43:A3:CB:9C:74:F4:31:30:B3:81:BD:44:31:3D
Authority key identifier: 63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
Certificate issuer: /CN=638d9a5004c592d093cc89b0d90752e279d51854
Certificate serial: 019D9998CE0AFA55A6B8B1BD76830FD9A3DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 04:00:21 +0000
Manifest this update: Fri 17 Apr 2026 04:00:21 +0000
Manifest next update: Sat 18 Apr 2026 04:00:21 +0000
Files and hashes: 1: Y42aUATFktCTzImw2QdS4nnVGFQ.crl (hash: Y4wE3ZPmTt5LM2zNgqoEDD4j94CmA/shG34wcZ2k1G0=)
2: yh8RCY-bj175I6qO1y_qoa8Z7Jc.roa (hash: 4zdPWYLlDQUfMdRZQkA+GGAtm8jeXR0HD9R4ibPVvfY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:ce:0a:fa:55:a6:b8:b1:bd:76:83:0f:d9:a3:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638d9a5004c592d093cc89b0d90752e279d51854
Validity
Not Before: Apr 17 04:00:21 2026 GMT
Not After : Apr 18 04:00:21 2026 GMT
Subject: CN=39fded24471f43a3cb9c74f43130b381bd44313d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:64:19:f4:fc:61:60:07:d3:c9:aa:5d:ec:0c:
76:8a:74:ca:62:b3:fd:9a:07:68:52:78:ae:b6:6d:
e6:ee:c2:f2:ac:3a:0e:90:3a:d8:7a:1e:10:cf:67:
4b:66:0a:4a:7a:30:d0:a9:5c:15:3d:32:3c:69:95:
c2:0c:58:f2:0b:9d:df:be:27:14:6a:41:85:95:93:
8a:8a:6e:84:84:db:1d:c4:27:5c:28:b0:d8:89:fb:
e6:b0:9f:50:a3:13:84:f1:4a:66:5d:1d:4b:8d:ce:
89:57:fe:d7:5f:87:df:16:dc:2b:69:9e:43:c9:8c:
97:76:15:8e:dd:9c:dc:b5:e3:3e:02:6f:d5:de:83:
fa:9c:f2:00:83:dc:f3:74:52:a5:5a:e1:a8:6d:88:
b9:e1:29:11:f9:dd:82:0d:0a:02:7d:94:64:1a:60:
51:c9:38:12:31:32:37:80:c9:50:97:32:ba:f0:63:
71:92:d6:ed:08:75:cf:89:b9:3d:eb:27:90:c4:94:
ea:19:a2:af:7d:ff:df:3a:e9:84:8e:1d:78:4c:dd:
21:20:68:91:56:a8:80:12:6d:bc:65:1d:10:2c:0b:
9b:ff:f7:98:c0:87:15:7d:dc:7d:cd:1e:f7:de:ce:
96:70:89:8d:d5:65:57:90:c2:0f:3e:e9:c2:44:20:
b5:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:FD:ED:24:47:1F:43:A3:CB:9C:74:F4:31:30:B3:81:BD:44:31:3D
X509v3 Authority Key Identifier:
keyid:63:8D:9A:50:04:C5:92:D0:93:CC:89:B0:D9:07:52:E2:79:D5:18:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y42aUATFktCTzImw2QdS4nnVGFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0cf6d7-d8ef-44a8-aa07-7768d4fbdcd3/1/Y42aUATFktCTzImw2QdS4nnVGFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:9e:c7:e4:e7:a5:d7:40:73:c1:da:6a:e9:4a:47:3b:04:04:
6c:2f:84:0d:cc:7f:f1:24:08:7e:c9:67:29:e3:df:aa:64:3f:
95:8e:3c:40:8c:9a:ab:33:41:09:5d:8f:a4:a6:da:9a:f0:b4:
19:09:ef:8d:ee:8d:bf:9c:ab:e1:03:39:e9:1e:b5:69:0a:ea:
94:dd:b6:ca:8c:79:cf:f6:41:81:17:9b:67:1d:72:f0:43:b1:
86:47:1e:df:ad:70:77:1d:87:95:fa:ce:b0:e7:25:73:d8:5a:
05:73:0e:22:6e:e8:d0:73:98:5e:41:1a:b1:2a:6b:3d:f6:2e:
dd:82:a7:fb:bc:7f:a7:6e:e9:f2:84:48:b1:35:39:92:5b:f4:
59:85:01:10:19:5b:61:aa:c7:92:8e:f3:14:3c:73:06:13:f3:
c7:b7:90:70:24:02:2f:1a:a3:fd:50:04:0f:5b:39:25:a4:2a:
bf:2a:4d:61:6e:48:6b:2a:b5:73:8e:69:67:96:92:3a:f5:ac:
ef:5e:18:8b:47:23:8c:b3:ba:ae:22:40:92:04:8b:9d:b5:80:
c4:2c:f9:44:4d:19:ae:03:5c:d0:96:68:cf:e8:32:e1:63:e5:
65:f3:df:0a:d0:8a:7a:fe:b8:d5:62:32:53:ce:7e:c3:8f:6f:
34:19:81:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:41:45 2026 by rpki-client