Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
File: YDM81vG1nAtoLh2jiSN-2j6dqRg.mft (raw, json)
Hash identifier: owulzXWMmZ2cFKYfXsibijAdOg+x+ix+gwY8K6OzFFQ=
Subject key identifier: A9:F8:DD:E6:EB:7A:E2:75:0C:F7:C3:59:6B:DD:65:E8:C8:E3:A0:06
Authority key identifier: 60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
Certificate issuer: /CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Certificate serial: 019DA30A3797317438FA57967ACADB3DFB4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
Manifest number: 0FA9
Signing time: Sun 19 Apr 2026 00:00:48 +0000
Manifest this update: Sun 19 Apr 2026 00:00:48 +0000
Manifest next update: Mon 20 Apr 2026 00:00:48 +0000
Files and hashes: 1: YDM81vG1nAtoLh2jiSN-2j6dqRg.crl (hash: KcaqkkPq8WFW3HPriB3zphVbwc0/phklX1FYHXyxwy4=)
2: nd54JNe4vIZ_-Gecq7CuS7z9ouE.roa (hash: uDzn2UrQJ/gWE6VmVbdTq4BSTBqexLqsyHgtdAqNXeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:37:97:31:74:38:fa:57:96:7a:ca:db:3d:fb:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60333cd6f1b59c0b682e1da389237eda3e9da918
Validity
Not Before: Apr 19 00:00:48 2026 GMT
Not After : Apr 20 00:00:48 2026 GMT
Subject: CN=a9f8dde6eb7ae2750cf7c3596bdd65e8c8e3a006
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e7:31:d1:92:39:25:f7:ef:42:b7:e7:f6:f2:
22:7b:b4:3d:71:a5:3e:6f:03:d6:4a:44:1a:32:df:
dd:f2:14:25:dc:57:b5:40:db:a9:a5:45:91:a9:c1:
ba:3d:aa:9a:c7:96:08:7d:81:c9:8b:76:46:9e:67:
4b:e6:96:fa:1e:12:1b:2b:c6:4b:2b:6b:60:1c:95:
bd:ad:52:20:c1:8a:8b:00:b5:1a:6f:24:e6:e7:b5:
6a:57:7b:50:37:09:6f:f0:29:88:a5:ff:e6:3f:79:
3d:14:26:19:50:3e:76:7b:44:ce:9f:22:2c:39:9a:
c6:d5:b7:0d:da:31:93:f6:8e:f5:73:59:b2:1e:83:
48:a8:0b:33:54:22:e5:43:59:57:50:93:88:e3:b4:
0b:c1:16:3e:ee:0a:72:23:05:1b:75:a9:56:dc:d8:
4d:c9:a5:9a:ce:82:bc:17:30:9c:10:c0:ad:bc:ff:
fb:e1:d0:44:3c:74:d4:98:55:ef:8f:d9:4c:a5:f8:
ff:87:40:82:da:f7:1f:e7:f1:94:1b:0e:ad:69:f2:
bd:db:be:19:62:23:8b:bc:4e:26:84:de:e0:dc:c1:
1e:5a:3b:ad:3a:68:66:cf:0f:b6:09:19:46:67:81:
1f:aa:0f:1c:c0:b4:91:6d:2d:13:b3:aa:cf:a4:71:
df:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:F8:DD:E6:EB:7A:E2:75:0C:F7:C3:59:6B:DD:65:E8:C8:E3:A0:06
X509v3 Authority Key Identifier:
keyid:60:33:3C:D6:F1:B5:9C:0B:68:2E:1D:A3:89:23:7E:DA:3E:9D:A9:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDM81vG1nAtoLh2jiSN-2j6dqRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/4222b2-c79c-4d5e-99d7-cdb281a2b3a8/1/YDM81vG1nAtoLh2jiSN-2j6dqRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:db:51:a5:ae:db:f4:27:f1:2b:3d:ab:ae:89:c2:31:8e:93:
dd:85:e7:b5:5c:5e:07:99:bc:de:bd:ac:3e:3e:86:f6:2c:87:
6d:31:3e:9a:8a:0a:60:f7:02:63:0c:a0:ca:30:ac:0d:26:1f:
d8:76:75:65:b1:70:a8:ae:3e:44:ce:6a:bd:ce:71:99:08:15:
28:84:9f:fb:4d:19:eb:64:ea:83:28:5c:35:f9:cc:e0:88:22:
ad:bf:67:d7:ff:85:6a:78:d5:d2:25:b1:02:9c:16:66:92:86:
81:9a:a6:de:20:3d:f9:6a:8a:45:19:b3:3e:0c:04:b2:4e:b9:
c8:b9:fa:0e:0a:b9:b4:68:96:26:d8:48:38:a3:08:80:61:d4:
14:4f:c6:82:30:62:64:42:30:69:ac:2a:22:3a:51:96:80:19:
bd:06:82:a9:34:25:a8:a5:2e:fb:4e:8a:12:ac:7e:9a:c5:5d:
9b:44:91:38:ed:87:f6:90:4f:1e:4b:f7:a1:47:e9:39:33:fe:
b2:5c:0c:6d:59:17:31:23:fc:09:b8:c2:97:d9:26:22:a9:ba:
f4:10:2c:33:c4:49:24:15:21:2e:d6:1c:2b:5e:07:b5:22:8d:
e8:41:8a:b8:af:c5:12:57:41:7b:11:e9:dd:71:dc:34:c5:29:
49:a9:a5:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:53:40 2026 by rpki-client