Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
File: yp4g0QNLRO916V_ffriIFbb30vg.mft (raw, json)
Hash identifier: IGNii2sIuzlzq/RkpuKqhy+ro+1qcBicTUsc0TrpvBE=
Subject key identifier: 5D:11:44:47:AC:CB:78:C3:9F:F6:82:3C:D6:8B:0A:37:EE:11:21:E6
Authority key identifier: CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
Certificate issuer: /CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Certificate serial: 019D9E1B0603D96A9BC437C53E68F3191273
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
Manifest number: 1120
Signing time: Sat 18 Apr 2026 01:01:04 +0000
Manifest this update: Sat 18 Apr 2026 01:01:04 +0000
Manifest next update: Sun 19 Apr 2026 01:01:04 +0000
Files and hashes: 1: D3wkpKKSoJovDsiCfvbh1DYTkx8.roa (hash: c0FcHGYTB+tG9IR/+QbyBfjUn2VqFpbtfy3DDserGhM=)
2: KSjHgXPRASqnBW1tjOtvhmkWPHE.roa (hash: h5XvzMTTFxSuHg9vWwCmjacM7SXacJTLfB8wl2n3Cec=)
3: yp4g0QNLRO916V_ffriIFbb30vg.crl (hash: uc+PF1M9PMqaoTzlnqQZV15jaXdev2jjULzs6OrpKOQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9e:1b:06:03:d9:6a:9b:c4:37:c5:3e:68:f3:19:12:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9e20d1034b44ef75e95fdf7eb88815b6f7d2f8
Validity
Not Before: Apr 18 01:01:04 2026 GMT
Not After : Apr 19 01:01:04 2026 GMT
Subject: CN=5d114447accb78c39ff6823cd68b0a37ee1121e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:9d:3e:ce:aa:f4:83:62:3c:5f:42:3a:3d:1f:
32:31:43:17:17:9a:48:b3:75:09:b7:c6:a2:58:6a:
b4:dd:51:53:06:61:cc:df:9b:bd:92:50:37:14:0e:
bc:a6:93:70:0e:c0:7b:5d:18:b8:49:b1:da:25:b9:
9f:b6:96:2a:0f:15:ae:5e:bb:47:5f:d9:21:18:2d:
cd:c2:54:50:7c:ab:c1:2c:3b:19:95:90:ba:a3:1c:
e9:cd:b6:20:69:2a:17:f1:d8:f8:0d:68:b6:7e:a0:
12:3d:74:da:7b:ed:df:69:97:b6:ba:ee:5a:cd:cb:
18:bc:f3:cd:b4:8a:54:aa:62:cd:31:25:ed:d7:ed:
fe:17:62:e0:76:6c:33:1c:73:f7:be:fe:22:31:67:
ae:15:f3:30:d6:5a:7a:b3:04:75:65:7b:08:c3:24:
b4:6a:ea:ce:e0:98:b6:6b:31:5a:ff:ba:20:8b:24:
c7:45:65:e4:2f:14:45:3f:8b:5d:c8:05:a8:99:f0:
4b:29:fc:74:14:4a:e1:1c:84:13:ab:44:be:0d:54:
df:2f:e0:7d:14:cb:cc:c6:c2:36:d7:18:f7:3c:cc:
49:50:66:c3:d2:25:48:a6:2e:bd:ec:b8:3a:7e:a0:
12:5d:55:37:69:e0:9f:ac:00:f3:2e:21:d7:7c:39:
11:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:11:44:47:AC:CB:78:C3:9F:F6:82:3C:D6:8B:0A:37:EE:11:21:E6
X509v3 Authority Key Identifier:
keyid:CA:9E:20:D1:03:4B:44:EF:75:E9:5F:DF:7E:B8:88:15:B6:F7:D2:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yp4g0QNLRO916V_ffriIFbb30vg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/13a680-f698-4c97-9bb6-12701ab51acf/1/yp4g0QNLRO916V_ffriIFbb30vg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:cb:91:79:6a:61:96:3e:d9:06:ed:fb:fe:c2:01:97:7e:8d:
04:65:1d:77:6e:d3:60:d6:f0:b1:b0:d9:5f:98:b7:75:a0:62:
7f:d8:e8:52:67:ed:e2:2e:c0:fb:72:63:74:15:05:2a:c5:47:
6b:f0:83:e8:7c:b2:38:63:4b:b4:bf:38:41:e3:d0:f4:e9:c6:
13:ed:ae:f2:ce:fc:8b:ab:6f:78:18:3f:d7:31:6e:07:8b:b3:
e1:cb:e4:c1:ce:e3:68:e5:f5:1d:4a:ba:9c:c6:c4:d7:88:11:
5f:da:91:ad:ef:bf:51:40:12:86:56:95:21:0b:7f:2d:07:a4:
ee:09:be:ac:f7:e5:8d:ef:6a:3a:92:4e:04:78:59:00:4c:2f:
a4:ea:9e:cc:a0:37:a0:ae:c8:5c:92:0e:a1:b2:9a:5c:be:1f:
d2:24:89:c1:50:59:eb:1d:6f:0b:7f:ef:8f:e1:a1:87:8a:27:
e9:7b:a8:b5:95:0b:e7:b3:59:d3:b3:60:28:2b:e4:56:55:ee:
c2:88:84:d4:71:91:9d:09:15:5f:13:c7:8d:49:98:7d:66:0b:
7d:ec:e6:6c:32:15:89:ab:57:16:f7:db:2c:84:de:a9:30:e9:
8e:a0:aa:47:0e:2a:c3:cd:77:22:01:a8:b2:d5:bc:30:1e:f3:
78:6c:ff:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 03:05:12 2026 by rpki-client