Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
File: YcaCaHQ-gj4OHIcAYMChQiPxUes.mft (raw, json)
Hash identifier: pzwn9L0nk52k2+S5x0gpwYHY1Wnueu3WxmzwhWj2nZE=
Subject key identifier: 35:AC:48:A7:AD:51:11:1A:95:9F:0A:81:F8:0E:87:70:70:41:32:CD
Authority key identifier: 61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
Certificate issuer: /CN=61c68268743e823e0e1c870060c0a14223f151eb
Certificate serial: 019D9B513B37CD4618BF97B68ECCFDF24B93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 12:01:25 +0000
Manifest this update: Fri 17 Apr 2026 12:01:25 +0000
Manifest next update: Sat 18 Apr 2026 12:01:25 +0000
Files and hashes: 1: YcaCaHQ-gj4OHIcAYMChQiPxUes.crl (hash: zMoY1pfbKoAQWGEEBWPzBC6q5IOZFPfdTHXCZY6Wjiw=)
2: b8CCvMj6XsXWpjo1kqL4lHdDIeI.roa (hash: ORCFwxYaf4vPg6tOj10K2FmfsSRr15XuWRZrPrnhk3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:3b:37:cd:46:18:bf:97:b6:8e:cc:fd:f2:4b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61c68268743e823e0e1c870060c0a14223f151eb
Validity
Not Before: Apr 17 12:01:25 2026 GMT
Not After : Apr 18 12:01:25 2026 GMT
Subject: CN=35ac48a7ad51111a959f0a81f80e8770704132cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8c:dc:0a:ae:18:78:9a:45:b6:b2:8f:ed:ca:
5a:16:0d:ae:5c:78:93:33:4e:b2:61:13:fe:e5:29:
b4:39:de:c4:af:2a:c5:4a:bf:0e:af:0f:3f:c8:08:
3c:1b:40:bd:2a:fe:7f:77:ca:2b:d3:bb:0a:47:ed:
bf:c4:f2:10:b2:b8:97:09:93:2d:78:18:a8:c0:32:
98:88:5e:dd:20:ca:30:ae:27:3f:80:8e:55:2d:bd:
88:eb:3b:58:5c:49:ab:c1:4b:5e:ea:e8:44:a9:a4:
a3:a1:1a:f4:4b:c1:46:72:2f:c0:39:0a:53:bc:e6:
4e:60:7d:b2:79:9b:5a:2d:d2:93:6f:af:16:0a:95:
01:7b:58:db:a7:26:66:a3:24:11:b1:f0:26:bd:78:
8b:f4:0b:75:62:1d:f0:e2:40:4f:85:9b:57:43:b0:
e7:cc:4e:fb:1c:ac:20:fc:4d:4a:55:cc:a0:06:f6:
85:95:4a:26:e4:a4:7f:0a:0e:6a:1c:1b:45:cb:09:
6b:a9:7c:5b:14:79:ee:a5:f0:e1:d9:67:aa:dd:3e:
ae:73:9e:42:eb:81:85:5b:e0:74:58:8f:be:a6:e6:
a6:36:a2:36:45:df:05:42:a1:41:6e:26:c9:65:94:
fd:57:c5:67:29:88:77:bf:73:a1:c9:40:18:84:14:
a4:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:AC:48:A7:AD:51:11:1A:95:9F:0A:81:F8:0E:87:70:70:41:32:CD
X509v3 Authority Key Identifier:
keyid:61:C6:82:68:74:3E:82:3E:0E:1C:87:00:60:C0:A1:42:23:F1:51:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YcaCaHQ-gj4OHIcAYMChQiPxUes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/62641c-3444-4425-bf51-6d05c0d0da6f/1/YcaCaHQ-gj4OHIcAYMChQiPxUes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:54:42:d8:d6:63:8a:c6:9c:54:2f:c6:1c:81:d3:35:ae:24:
89:a8:0c:d6:df:ae:7c:56:89:93:c4:9c:21:73:82:c1:3c:3d:
ba:e5:25:7b:06:40:a8:7c:a2:ac:41:c4:1f:70:a6:ed:51:4d:
7e:1a:25:35:c6:cf:da:6f:51:01:77:39:ad:0d:20:1a:0a:c6:
ef:72:76:7e:6f:a9:41:a5:31:b0:fa:a9:fe:fd:49:ed:c6:bb:
c5:fa:86:33:74:92:cc:99:bf:58:fd:08:8a:6a:cb:57:92:80:
fc:ea:2d:a5:b5:6f:05:3f:0b:12:c0:4f:31:8b:38:7f:2e:35:
7b:a8:3b:cb:ce:5b:2e:ab:ca:67:a4:fb:67:e2:59:e6:dd:f7:
d3:eb:c3:f6:cc:d5:75:a4:73:0b:42:0e:64:aa:21:fb:16:35:
6c:04:49:7a:60:3e:b9:69:ba:b7:e0:84:cc:99:99:6e:07:22:
e4:03:dd:41:d8:29:38:18:37:67:1e:96:b3:ae:02:db:42:ce:
05:d2:d8:f7:57:bd:ca:65:23:22:a5:e3:01:d1:63:54:23:12:
37:ff:a0:93:91:67:75:56:30:03:c7:f7:70:b9:2e:21:e0:60:
34:ce:88:f2:3e:00:2a:d5:38:2d:a4:25:f3:11:af:23:30:bf:
b5:72:f4:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:27:05 2026 by rpki-client