Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
File: YAG5U8a-H5GDHWilwBFcIODNf5o.mft (raw, json)
Hash identifier: jBrKM3Tap0HxADPECdOACNWTPqRChIfODPeT3UiBpRc=
Subject key identifier: AB:2E:7F:8D:4A:71:D2:81:35:0B:99:94:F6:C4:81:29:2D:27:F0:FA
Authority key identifier: 60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
Certificate issuer: /CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Certificate serial: 019D9AE361650F6FC7B7CBC914CB269249CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
Manifest number: 08A6
Signing time: Fri 17 Apr 2026 10:01:25 +0000
Manifest this update: Fri 17 Apr 2026 10:01:25 +0000
Manifest next update: Sat 18 Apr 2026 10:01:25 +0000
Files and hashes: 1: YAG5U8a-H5GDHWilwBFcIODNf5o.crl (hash: hnA+0DxFEhoy9q88++EI7JYYyB+V4Z15pUfT1KZSKCE=)
2: sWQ5MFr-3Y0UZG4yuW0yjqbQ7Eg.roa (hash: I4OaI58SiKbwgQhwOAwtZE0NHDRmM5MSDXp++yDS4Xg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:61:65:0f:6f:c7:b7:cb:c9:14:cb:26:92:49:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6001b953c6be1f91831d68a5c0115c20e0cd7f9a
Validity
Not Before: Apr 17 10:01:25 2026 GMT
Not After : Apr 18 10:01:25 2026 GMT
Subject: CN=ab2e7f8d4a71d281350b9994f6c481292d27f0fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:97:b0:29:7d:44:dd:b8:dd:a8:51:be:28:7f:
05:d6:9c:1a:dc:7a:bb:2c:f4:f9:e0:01:b2:3a:75:
d5:8e:48:3f:03:0b:14:b2:5e:12:25:42:44:6e:ce:
a5:66:35:0f:d5:6c:64:e4:71:46:80:29:dc:8c:38:
92:1d:78:84:c1:48:2b:31:89:d3:22:7a:cd:70:40:
e3:51:88:36:51:8e:b4:3c:1a:09:ad:9e:84:39:4c:
34:9d:e9:29:17:9a:ff:10:df:61:12:99:fc:fa:c6:
27:33:04:04:17:d4:1f:c9:38:8a:da:47:6e:f1:31:
e0:f0:b0:8b:a3:e8:18:2b:3d:2b:29:ab:01:ab:de:
53:79:7b:b4:8d:06:f5:9e:0c:30:f8:6f:91:ed:2c:
29:98:6a:ea:be:57:f9:83:e3:5d:a3:5f:d4:fd:ff:
49:b7:9a:a3:d4:50:76:71:6d:b7:f4:d8:3c:60:e6:
ca:8a:43:78:99:43:e1:d4:fe:a3:81:4b:39:3d:5b:
97:71:75:4e:d6:0d:89:d7:24:5c:eb:be:8c:79:ef:
66:31:f4:cf:1f:50:85:86:73:4a:2d:60:93:96:c2:
60:24:15:d3:41:7c:f3:a3:0c:a0:f8:a4:f2:f3:6c:
99:4d:92:5e:cc:77:7b:23:e1:fc:c0:79:c5:d1:0f:
ce:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:2E:7F:8D:4A:71:D2:81:35:0B:99:94:F6:C4:81:29:2D:27:F0:FA
X509v3 Authority Key Identifier:
keyid:60:01:B9:53:C6:BE:1F:91:83:1D:68:A5:C0:11:5C:20:E0:CD:7F:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAG5U8a-H5GDHWilwBFcIODNf5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/213be6-ecb9-4300-8346-a647675f46b6/1/YAG5U8a-H5GDHWilwBFcIODNf5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:64:fa:9f:a2:97:41:51:17:3b:2e:4a:8e:48:2f:ec:7f:7e:
6f:4a:32:d2:4d:98:22:5f:67:48:b2:64:2f:f3:0c:5e:42:89:
fc:9b:5a:3a:5a:32:5b:8d:75:1d:ee:5a:b5:9a:b4:77:e8:98:
9f:d0:93:96:ec:4a:c8:e2:3f:49:2d:43:c9:d0:1b:6c:90:90:
d1:97:e6:26:32:69:6e:2c:7b:a1:94:b3:cf:9f:98:9f:e2:c3:
f2:5f:ca:bd:7f:5b:a3:15:89:35:96:fe:19:7a:7a:5c:62:a3:
3f:2f:d7:fc:a3:43:85:61:b0:e3:fb:34:58:87:a5:85:b9:4d:
68:f9:e4:ea:f9:45:ec:51:ef:e1:dc:eb:42:15:fb:31:c9:35:
01:57:40:ab:61:0b:00:41:3f:b9:74:e0:a4:c1:0d:09:2f:8c:
cc:43:1e:a9:b3:34:03:31:49:51:ec:ff:c8:97:fa:5f:df:cb:
d9:e8:3c:87:b0:1d:ef:99:72:17:73:73:25:58:cd:4c:34:9f:
61:f4:d4:27:fc:2e:12:2a:b5:5e:f0:61:76:bd:33:7e:26:ad:
34:dd:c3:a8:1b:51:46:84:3c:c1:fa:a8:b1:91:9b:55:69:ca:
87:47:1b:20:d7:3d:64:73:49:7b:32:b5:ef:2e:ed:55:99:85:
9c:73:25:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:17:23 2026 by rpki-client