Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
File: yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft (raw, json)
Hash identifier: uMqQ+hHDRIdngCjTQp6jyAsS2PKnp0VbtXmH5XhlHNg=
Subject key identifier: 03:F7:B6:E6:E9:9D:4F:90:75:74:E1:48:89:7E:06:89:FB:DF:DF:FF
Authority key identifier: C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
Certificate issuer: /CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Certificate serial: 019D98188782BE002041FBC2B2539492923F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
Manifest number: 18C2
Signing time: Thu 16 Apr 2026 21:00:37 +0000
Manifest this update: Thu 16 Apr 2026 21:00:37 +0000
Manifest next update: Fri 17 Apr 2026 21:00:37 +0000
Files and hashes: 1: Y7bdVsOqZQqj1I_OKBkoS9oMFd0.roa (hash: uxAajtv2PDYgeD7fkffrgQE1gHL9LPe5ZmBXFSGnqgI=)
2: yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl (hash: XD7Wm1xzsCS0tA0i5eXIyRW9oJ0zzv5cQwr+QrhG83w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:87:82:be:00:20:41:fb:c2:b2:53:94:92:92:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85f510c72ce0b79c2899b35845ffe3670693f05
Validity
Not Before: Apr 16 21:00:37 2026 GMT
Not After : Apr 17 21:00:37 2026 GMT
Subject: CN=03f7b6e6e99d4f907574e148897e0689fbdfdfff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f4:a3:91:4c:29:b5:99:a9:33:7a:65:be:92:
ed:d5:9f:86:27:75:9f:c8:cb:7e:a2:69:49:00:e8:
75:a1:0d:ba:ca:20:06:c0:d6:cb:32:e2:57:6f:3f:
f1:4a:dd:13:8b:f5:21:7c:ee:d4:76:10:11:92:75:
0a:8a:e9:11:54:4a:5f:ae:62:84:1d:7c:4f:43:7a:
23:06:8b:bb:fe:1f:7f:4a:b1:0a:25:50:31:77:fe:
95:4d:b8:9f:75:35:4f:d8:9e:d1:48:c5:80:37:e6:
2f:9e:c3:b6:03:f2:bb:f9:24:81:9b:82:2f:53:1a:
b5:3a:01:b8:09:eb:45:1f:0b:5d:39:b4:5d:6c:d7:
a2:dc:30:cf:fd:d8:bb:57:53:44:c5:fb:26:29:f9:
28:5d:e0:02:1a:f8:a9:bd:ad:71:19:0e:56:43:a6:
41:ab:2c:9a:7a:dd:65:9a:67:70:ad:f2:93:96:b8:
7a:2a:b6:7b:07:16:9f:5c:c1:34:03:02:12:cd:b2:
a6:86:d0:10:86:a2:26:96:6a:0b:1c:a4:dd:73:60:
10:19:05:f7:c4:c0:ed:b0:72:71:ac:9e:71:6f:7b:
94:60:4d:ae:7f:9f:34:a9:63:65:d4:d8:23:fd:d9:
5b:10:3d:b5:cd:9e:1a:e6:01:bc:79:b5:e4:ff:ed:
32:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F7:B6:E6:E9:9D:4F:90:75:74:E1:48:89:7E:06:89:FB:DF:DF:FF
X509v3 Authority Key Identifier:
keyid:C8:5F:51:0C:72:CE:0B:79:C2:89:9B:35:84:5F:FE:36:70:69:3F:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF9RDHLOC3nCiZs1hF_-NnBpPwU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a2cfb0-0e68-4e47-8881-b8c9a2a9da46/1/yF9RDHLOC3nCiZs1hF_-NnBpPwU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:45:a0:cf:1c:a8:3d:52:67:45:71:7f:f3:36:f4:ae:3b:b7:
dd:dd:e5:c9:2b:5e:86:cd:72:71:45:78:d2:c3:63:24:3a:cd:
9f:3c:cb:32:4d:6f:77:a3:23:cb:8f:20:44:43:a4:4c:3c:4d:
2b:20:bf:7b:e5:f3:ca:6b:8b:a0:42:58:5e:bb:6f:aa:c0:66:
42:01:4d:3b:b1:86:44:13:2f:d0:79:53:42:ac:60:19:27:c6:
ad:a7:91:a1:e7:15:45:3f:8b:6e:15:c0:8f:8d:5e:c9:ca:6e:
ab:40:0c:84:fb:7e:3d:08:75:99:8e:26:ab:6c:1c:e4:86:4b:
22:9c:60:81:4d:ef:53:98:4f:09:2b:a0:2f:12:fd:54:bb:52:
99:c6:83:a0:d4:a6:60:e3:bb:d7:96:2b:e6:f5:2e:1e:5c:95:
f4:03:29:a3:b9:3f:89:c9:18:d4:d6:d4:38:d6:f3:21:e5:03:
fb:c2:9b:98:e1:d6:7e:f6:b4:a9:e3:fe:82:81:82:60:cd:ba:
e3:c0:f5:75:11:4b:88:c3:d8:48:08:f8:d0:20:bb:34:3e:49:
47:41:b6:46:b3:ed:3d:59:a9:f2:97:3a:f3:75:94:64:81:d6:
b0:fb:af:50:88:c5:77:e8:47:0f:b2:e4:d8:28:0a:99:85:d1:
d5:46:4f:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:53:55 2026 by rpki-client