Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
File: 2pa1va-ygzLa_oR87RT3pfrUXmk.mft (raw, json)
Hash identifier: Wq74rq13e3UtKa34e6pZoFuqMXS/ZjwX4aEHEUr5WLM=
Subject key identifier: A6:D8:D2:1B:2A:1A:D9:51:E3:90:66:2E:7A:FC:A1:2E:73:20:F8:B1
Authority key identifier: DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
Certificate issuer: /CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Certificate serial: 019D9C638B225BE7BC1AE3949AE1FB4BB814
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 17:01:02 +0000
Manifest this update: Fri 17 Apr 2026 17:01:02 +0000
Manifest next update: Sat 18 Apr 2026 17:01:02 +0000
Files and hashes: 1: 2pa1va-ygzLa_oR87RT3pfrUXmk.crl (hash: esadW8VqZ3X8hXGVFwtfNpNKvsP/GhWwVuffwHYjCZA=)
2: IBEMSBQMUEmyoGfT9mnmlgVNZhU.roa (hash: SbS7D44DDA57I288AbbBNyIpLwW/oby6dFq63a7XwRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:8b:22:5b:e7:bc:1a:e3:94:9a:e1:fb:4b:b8:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=da96b5bdafb28332dafe847ced14f7a5fad45e69
Validity
Not Before: Apr 17 17:01:02 2026 GMT
Not After : Apr 18 17:01:02 2026 GMT
Subject: CN=a6d8d21b2a1ad951e390662e7afca12e7320f8b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:00:9b:f8:07:86:e5:fb:53:aa:17:fc:db:04:
f2:8c:6c:aa:72:a2:83:23:79:24:e3:1c:33:a7:73:
bf:39:3c:22:1f:1c:49:00:3b:43:5f:74:3a:b8:ba:
d3:2e:8a:de:35:6c:e8:80:a2:32:c8:44:74:fa:b4:
c0:28:6e:9b:a6:37:74:38:d4:fa:e5:54:5d:7d:3f:
f1:54:af:59:81:fc:b6:d6:66:e9:5e:93:93:d9:ce:
05:fa:95:40:22:de:24:c6:14:20:13:18:c9:9a:fd:
5c:74:54:47:ff:e7:dc:e6:02:22:cf:92:f7:dc:a7:
6e:7d:57:47:66:44:3c:06:68:39:f1:9b:86:0a:85:
0f:6a:c3:25:86:3f:69:09:88:2a:6b:cb:7f:61:5d:
6e:18:86:79:96:bb:a5:77:98:3a:b4:ad:d0:67:d0:
b7:2d:54:4c:6d:2e:e4:46:d4:36:62:42:b0:aa:e4:
3a:74:97:30:05:46:79:e5:f0:de:e6:2c:e7:a0:bd:
09:19:1a:0a:19:f8:d3:2e:41:a5:71:5d:2d:1c:4f:
b3:44:7f:05:46:23:16:6f:6f:67:7a:53:4c:e8:e1:
cc:31:ce:08:8d:b9:a0:a7:2d:af:37:4f:d9:a7:a2:
90:4a:a4:02:65:da:d8:b7:01:fd:1c:fc:3e:a3:4c:
4a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:D8:D2:1B:2A:1A:D9:51:E3:90:66:2E:7A:FC:A1:2E:73:20:F8:B1
X509v3 Authority Key Identifier:
keyid:DA:96:B5:BD:AF:B2:83:32:DA:FE:84:7C:ED:14:F7:A5:FA:D4:5E:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2pa1va-ygzLa_oR87RT3pfrUXmk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/819089-473b-463f-b87b-4253950f1155/1/2pa1va-ygzLa_oR87RT3pfrUXmk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:ed:2e:f5:69:bf:2f:6a:e1:5f:21:18:4b:65:2f:35:0c:a4:
9d:aa:c4:af:ac:c2:65:52:2b:60:07:86:4c:1b:1c:a7:ca:35:
56:05:31:f0:5c:a2:48:6d:b5:e3:fc:12:34:69:9d:af:e8:9c:
97:b9:b7:2e:8d:78:47:19:76:fa:0c:e9:e4:26:fe:df:a9:c9:
5f:88:6a:8c:af:16:4f:06:01:59:8d:7b:07:26:4e:7c:64:5e:
31:f9:98:d7:f8:bc:c7:de:f7:13:6f:e4:6d:a1:48:e4:aa:ba:
11:79:41:32:44:96:9e:33:e7:f8:16:9c:62:92:e9:ad:44:d8:
10:bf:8d:63:73:2a:5b:35:3a:fd:57:74:8b:e5:3d:93:a3:97:
73:e2:22:08:fc:69:b8:ff:c9:44:9a:a0:4a:7a:4f:7a:28:c8:
73:bb:dc:87:6c:aa:33:7d:c5:22:85:eb:81:7c:2f:cd:4f:be:
3e:c5:f7:7b:49:ed:94:c3:ca:91:c3:28:3a:f8:4e:fa:a2:fa:
26:85:9d:66:d9:31:31:f7:d1:55:95:de:93:45:c9:01:e9:46:
94:73:86:21:1e:32:49:95:25:29:72:f8:e9:3f:dc:94:d5:77:
a3:cc:17:0f:66:ba:5f:5c:d8:4a:f3:c4:b4:b5:d4:19:17:55:
bd:b3:12:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:35:56 2026 by rpki-client