Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
File: y78j_5hnaDYlSUYv4JLGMV6sykA.mft (raw, json)
Hash identifier: LbdlrrpB1RuMJmc84rP+afCaemAW/W1Qx5hdlyKaRrQ=
Subject key identifier: CF:2E:F8:EF:7E:A3:CA:68:9C:7D:1C:E4:A9:79:4F:BC:88:6F:C9:9B
Authority key identifier: CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
Certificate issuer: /CN=cbbf23ff986768362549462fe092c6315eacca40
Certificate serial: 019D9BBECE108979EF5955739C6160C3D348
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 14:01:06 +0000
Manifest this update: Fri 17 Apr 2026 14:01:06 +0000
Manifest next update: Sat 18 Apr 2026 14:01:06 +0000
Files and hashes: 1: 1-eZ3i0dxANHC7WiRV9EvIipS61A.roa (hash: Ak1nuU6x8cZ4QdQ6COojFaQA6BvDEXKIeiGaihwMfjI=)
2: y78j_5hnaDYlSUYv4JLGMV6sykA.crl (hash: xXRhuVkY3WqdMRhzd2KRvE4XDZn9ZrKqITlM4yTKnQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:ce:10:89:79:ef:59:55:73:9c:61:60:c3:d3:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbbf23ff986768362549462fe092c6315eacca40
Validity
Not Before: Apr 17 14:01:06 2026 GMT
Not After : Apr 18 14:01:06 2026 GMT
Subject: CN=cf2ef8ef7ea3ca689c7d1ce4a9794fbc886fc99b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:0b:13:68:c8:ce:39:94:f7:09:e0:f6:cb:e9:
39:d1:3e:c1:c1:3c:35:7a:08:0d:c7:30:26:af:9e:
6e:3d:cf:57:ef:8e:6a:66:10:89:40:87:c1:42:f1:
20:9f:30:0e:7a:95:72:f9:dd:98:c9:ce:a7:49:65:
b6:d6:ef:85:be:65:89:b7:0f:42:d7:2b:29:80:d8:
5f:b5:d8:af:bc:8f:66:5c:47:d4:31:b4:a1:33:6d:
5c:b2:bc:75:c5:ae:bf:35:b0:dc:ab:6f:1c:ed:73:
e1:f5:eb:ba:d9:d6:88:91:6f:ee:05:75:3f:cb:94:
64:22:7c:a7:38:79:6a:4e:6c:b6:67:2e:20:cd:af:
e1:f7:af:95:b2:1f:9f:4f:e1:a7:d7:61:ec:dc:f3:
68:2a:2e:1d:da:8c:da:f9:9f:d4:4f:85:da:c7:b0:
28:a7:70:fa:7a:a2:25:2f:58:30:f3:67:e3:5e:25:
9a:81:03:77:ac:35:af:57:8d:b5:c0:5f:95:93:13:
d7:fc:2c:7b:fc:6a:c5:27:27:c0:3a:26:ba:f0:9d:
e8:9c:8f:bd:62:b4:53:6f:27:1c:40:b3:b0:e1:c6:
ee:a4:42:e9:3f:38:c7:7b:3c:35:81:fe:eb:47:1c:
bd:90:83:f4:3f:f7:ea:90:77:28:02:30:df:01:0a:
09:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:2E:F8:EF:7E:A3:CA:68:9C:7D:1C:E4:A9:79:4F:BC:88:6F:C9:9B
X509v3 Authority Key Identifier:
keyid:CB:BF:23:FF:98:67:68:36:25:49:46:2F:E0:92:C6:31:5E:AC:CA:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y78j_5hnaDYlSUYv4JLGMV6sykA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a7be5-3cf2-40c5-ba67-854182f09ef5/1/y78j_5hnaDYlSUYv4JLGMV6sykA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:d8:37:85:b0:18:06:93:c3:fc:d9:b9:da:08:1e:7b:0d:38:
67:7e:fb:e7:fa:b0:00:1c:7a:0a:12:b3:df:d8:f7:bd:45:bd:
b9:61:cd:53:f4:05:49:c8:8f:d6:a1:8e:1e:5d:a4:0f:ae:be:
1a:ec:bc:7b:c0:3c:cb:df:46:72:1b:b9:86:1c:c8:42:6c:25:
5b:43:01:b9:46:dd:b0:20:53:ba:4d:b7:92:56:95:71:e6:66:
df:f6:24:54:b7:af:46:1c:4f:b2:6d:08:54:a1:b8:af:87:7e:
48:ee:6f:fd:e7:1e:3a:23:c0:f7:59:1b:52:cd:0c:b0:ab:00:
3c:f0:e9:d0:2b:4d:f4:01:8e:f7:91:39:fd:5c:f4:46:9b:c7:
9a:7c:93:e8:cb:21:a4:9a:0f:f4:de:33:35:fa:14:d5:40:e3:
22:e0:61:10:ce:67:85:b2:b5:28:4a:12:fd:c2:20:90:21:dd:
22:ee:34:1c:65:fa:8a:05:86:a3:02:9a:70:4f:6c:01:8c:4a:
ad:ff:8b:c9:84:0b:d9:88:40:6e:e4:9d:f5:e1:df:3a:62:67:
3f:f2:9d:fd:58:e7:59:97:9c:b8:8c:28:37:37:fa:7b:f9:27:
9d:77:48:2b:ba:31:90:76:f6:56:7d:c8:1e:f3:6b:74:45:31:
cc:e2:95:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 17:56:46 2026 by rpki-client