Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
File: YgsENUY3RvXyN9k2h77C6s8iRVE.mft (raw, json)
Hash identifier: 0MK7rdAzNmNK1JD5opLqUr+bPeUZ73BakKDXXVd4Bs0=
Subject key identifier: B9:D2:FD:D0:DC:7E:1C:1A:AF:BF:22:94:0E:32:DB:4B:22:49:81:12
Authority key identifier: 62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51
Certificate issuer: /CN=620b0435463746f5f237d93687bec2eacf224551
Certificate serial: 019D9AAC18D32D4EA2C7B876204D5AA6E110
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
Manifest number: 0AA4
Signing time: Fri 17 Apr 2026 09:01:02 +0000
Manifest this update: Fri 17 Apr 2026 09:01:02 +0000
Manifest next update: Sat 18 Apr 2026 09:01:02 +0000
Files and hashes: 1: T9qIl1S9tQz4tEVjrSKAWFbOqcg.roa (hash: h4jSuRvvCuZIkrJ0uLJKVCyM1giPtJIbarHhGQfdVf0=)
2: YgsENUY3RvXyN9k2h77C6s8iRVE.crl (hash: Ul5qm8q7cdwlyIHeLpVG6Ujxpn8pl02Eu1JYt2dMBHg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ac:18:d3:2d:4e:a2:c7:b8:76:20:4d:5a:a6:e1:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620b0435463746f5f237d93687bec2eacf224551
Validity
Not Before: Apr 17 09:01:02 2026 GMT
Not After : Apr 18 09:01:02 2026 GMT
Subject: CN=b9d2fdd0dc7e1c1aafbf22940e32db4b22498112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:8d:a3:0a:b7:ad:4b:79:e5:5d:13:f5:b9:41:
a9:e8:b3:21:5b:be:e5:f3:25:27:1d:42:09:0b:70:
17:d2:f0:a4:15:ed:f8:d7:60:8d:74:38:e5:88:28:
e3:bc:22:c1:6c:51:21:31:eb:2d:26:b2:43:e3:16:
b1:26:51:0b:43:68:c0:8c:76:9d:00:6e:00:21:61:
bb:f9:49:77:4d:23:b1:50:e1:4e:31:b4:6b:51:1a:
6d:fa:47:5f:9e:05:1a:57:cf:cf:7e:92:65:ca:99:
c1:43:96:09:18:c3:aa:a4:f8:ed:85:d9:6c:f6:31:
1f:80:14:ce:d9:ce:dd:1b:e2:e5:33:29:38:58:b4:
0c:87:d2:30:22:3d:a3:51:1a:0d:6a:57:83:c8:c2:
da:52:71:ae:da:80:d4:2c:c3:11:4f:ad:ca:cd:f8:
9f:3f:06:99:cd:d6:b0:ea:75:dd:32:3a:bc:1a:88:
f1:b0:3a:ad:6c:9b:66:45:8d:51:d1:df:16:e0:0c:
dd:2b:53:ed:a1:fb:8c:68:a5:05:b3:3c:f3:92:d7:
28:38:02:36:b7:af:ec:a8:4d:c8:68:ad:e2:98:8d:
14:f7:a2:72:44:75:64:77:03:50:23:d9:cb:34:c0:
7d:aa:69:4a:d6:cd:2e:03:a9:cf:f4:3d:9d:f6:72:
c2:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:D2:FD:D0:DC:7E:1C:1A:AF:BF:22:94:0E:32:DB:4B:22:49:81:12
X509v3 Authority Key Identifier:
keyid:62:0B:04:35:46:37:46:F5:F2:37:D9:36:87:BE:C2:EA:CF:22:45:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YgsENUY3RvXyN9k2h77C6s8iRVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4bb2aa-44cd-43b6-a76f-68c59c19b935/1/YgsENUY3RvXyN9k2h77C6s8iRVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:b4:af:36:d2:b6:be:3f:ea:12:ac:a8:71:69:66:58:d1:03:
fb:64:1a:91:3b:bd:de:89:29:06:db:d8:42:2e:b8:92:f6:c6:
3c:d3:da:82:65:cf:dc:2e:b8:08:c0:d1:b6:9c:47:62:a8:5a:
93:d6:4a:33:66:8b:80:26:f1:36:88:12:d9:7b:ec:5e:d5:50:
fa:70:cc:77:80:38:6e:92:e3:48:50:41:32:0b:66:a4:5b:36:
88:54:26:0b:4f:99:44:fd:3f:c9:fb:c7:a4:e3:9c:2f:90:08:
28:b8:be:b3:dc:58:23:69:65:14:80:d7:6b:6a:10:43:10:cb:
3c:78:f9:e5:b9:95:20:b5:c3:f9:4e:45:dc:b4:e1:9d:95:bb:
7c:b8:b5:c3:e7:ee:fb:0c:0b:30:9a:df:cd:2f:2c:7d:0a:5b:
fd:75:4b:54:a0:db:57:a0:3e:f9:07:71:b6:19:89:fb:e6:2d:
5c:89:45:d6:10:ee:7e:32:09:9a:91:89:a9:66:7c:1c:9f:c1:
98:44:2c:ac:3e:e2:9d:75:b9:e6:ee:ec:2b:6b:4b:0b:23:a1:
89:ae:2b:23:7f:e6:d5:93:3a:00:b7:9f:d6:01:93:ef:35:e7:
8a:88:7d:50:e9:10:f8:89:1e:d3:df:3f:3c:7b:a2:4a:29:cc:
ab:a6:e7:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:49:42 2026 by rpki-client