Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
File: YNCwIHYDvkPYSS6YUTeLi08JWU8.mft (raw, json)
Hash identifier: TlbmymvCoQGIYGGQvcl3v+VcpHY+wJETrVMkWNlmiV0=
Subject key identifier: A8:96:2F:78:6F:44:9A:C4:5D:3C:09:42:6F:49:A9:8E:82:33:B5:F8
Authority key identifier: 60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F
Certificate issuer: /CN=60d0b0207603be43d8492e9851378b8b4f09594f
Certificate serial: 019D9AABD943137E391CBC378058258BC9CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
Manifest number: 1855
Signing time: Fri 17 Apr 2026 09:00:46 +0000
Manifest this update: Fri 17 Apr 2026 09:00:46 +0000
Manifest next update: Sat 18 Apr 2026 09:00:46 +0000
Files and hashes: 1: Lft1TVXiYVdikjn_A01iU-k02DE.roa (hash: AUhYpOdbzarhMkv1M+Fv4hjTQh+rQF7twSf3TVX7HXM=)
2: PejTwsBdKH5-f3Vp_HDi2lV40HI.roa (hash: sQMSKyXDXZzbEaxAsB9c8v4n+R0LYVRrVo36SmpYF40=)
3: YNCwIHYDvkPYSS6YUTeLi08JWU8.crl (hash: P99lgRKZonnq+BeaQOMAjgIIVGBwPTXRGG+sL5+ypH4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:d9:43:13:7e:39:1c:bc:37:80:58:25:8b:c9:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60d0b0207603be43d8492e9851378b8b4f09594f
Validity
Not Before: Apr 17 09:00:46 2026 GMT
Not After : Apr 18 09:00:46 2026 GMT
Subject: CN=a8962f786f449ac45d3c09426f49a98e8233b5f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bf:b1:1b:67:f1:44:dd:20:7f:da:3f:1b:e7:
d5:89:1e:c4:6b:54:58:e5:57:22:9e:33:3a:bb:df:
1b:57:4d:18:2d:ad:0e:13:2b:f0:e6:57:39:b2:dc:
ec:a9:a2:40:cd:d0:f2:de:a6:8f:fd:87:db:a6:11:
2f:a9:40:90:bc:97:3a:03:41:56:41:98:b1:ea:29:
c6:7c:48:25:72:f3:6b:07:a3:53:91:1c:4c:b3:ad:
4a:81:12:7d:e0:7e:46:92:3a:12:09:4d:fa:1b:e8:
40:89:96:09:cc:c4:53:c2:7f:c0:18:c9:71:9f:b7:
46:cb:02:30:12:3b:5f:dc:b8:c7:04:b6:8d:3d:1c:
6d:24:2b:45:07:c0:70:8f:0e:53:d0:59:bc:6b:dd:
b5:08:d5:8a:15:04:84:26:6e:fd:cf:37:73:62:59:
82:a2:f2:81:48:19:07:76:1f:66:91:f0:c4:f8:48:
cf:f4:ec:92:da:57:b3:1c:aa:52:e0:89:b0:54:64:
24:24:cf:e5:b4:cc:ea:0d:ed:92:43:b4:2b:09:dd:
bb:33:43:e8:fc:82:49:3b:5a:4e:5b:59:4b:f6:14:
c9:60:81:ef:92:03:bf:45:ba:bd:a7:42:37:5d:04:
49:ec:00:2f:1f:55:44:51:34:b2:a4:4e:16:5f:ce:
1c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:96:2F:78:6F:44:9A:C4:5D:3C:09:42:6F:49:A9:8E:82:33:B5:F8
X509v3 Authority Key Identifier:
keyid:60:D0:B0:20:76:03:BE:43:D8:49:2E:98:51:37:8B:8B:4F:09:59:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YNCwIHYDvkPYSS6YUTeLi08JWU8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/f5794a-b191-4646-a842-f49fea545e78/1/YNCwIHYDvkPYSS6YUTeLi08JWU8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:ee:a4:13:ca:76:36:e1:18:2f:2d:4e:0b:09:81:ad:f7:e8:
5c:38:de:fd:7b:fb:f2:74:ba:f4:f8:33:8a:3d:18:f7:dd:c9:
8c:9d:16:fb:cb:fa:4e:7a:d5:96:a9:5b:b5:05:d4:97:93:bc:
e0:f3:a0:76:67:f4:b1:49:5a:0e:e7:d0:5a:ac:2f:64:ef:1f:
ff:ec:3d:f3:ba:2b:04:eb:25:ce:56:4e:0e:40:3a:d3:fc:87:
74:d5:94:54:6a:82:90:cb:98:6b:b0:47:07:60:08:71:8a:dc:
41:b5:90:f2:3a:1e:11:53:0d:f5:3c:8c:bf:c7:57:8b:2c:31:
69:98:c7:90:16:ac:39:3f:a6:ef:14:24:51:5c:9a:11:d1:9d:
b7:d3:63:ad:1d:1e:76:20:fe:5a:bd:7f:4d:de:60:37:91:9f:
b3:f3:75:29:0d:2d:57:35:b2:68:2b:b7:f6:4a:88:79:b8:91:
b7:46:fc:75:57:60:37:34:b0:47:64:88:ad:64:17:b0:76:d8:
c7:97:c3:9a:49:05:4f:02:ff:31:0f:b4:cd:6b:76:3d:27:59:
42:4d:d2:a4:de:22:23:76:de:e1:1c:74:66:a6:99:ca:2c:db:
ff:f5:75:e2:6b:29:ca:d7:87:0f:d5:5f:9b:c5:63:2d:ac:c6:
6a:f2:cc:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:04:48 2026 by rpki-client