Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
File: yniqfjFrIfhDz7lYEMaAzdv6bm8.mft (raw, json)
Hash identifier: sHFHLcZDgZDO6xaiAYkrwe0ORS43Vxi3TS1o6dcf6p4=
Subject key identifier: F8:46:64:39:03:46:FE:90:FD:F4:DB:34:58:24:B0:16:02:78:BB:C9
Authority key identifier: CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
Certificate issuer: /CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Certificate serial: 019D98BD31F413E4606385972A76AFFC0908
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
Manifest number: 0612
Signing time: Fri 17 Apr 2026 00:00:28 +0000
Manifest this update: Fri 17 Apr 2026 00:00:28 +0000
Manifest next update: Sat 18 Apr 2026 00:00:28 +0000
Files and hashes: 1: NmILLaZO13ylxBiJtXCUuUjLxwc.roa (hash: ouwe61Qw3KErUT8wYroof+WiBVltIWBJpKDg8a/XyWg=)
2: yniqfjFrIfhDz7lYEMaAzdv6bm8.crl (hash: EabRQ93A/nz01/29ZanF8QTavwa7wh/f+dqz2zy2YTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:31:f4:13:e4:60:63:85:97:2a:76:af:fc:09:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca78aa7e316b21f843cfb95810c680cddbfa6e6f
Validity
Not Before: Apr 17 00:00:28 2026 GMT
Not After : Apr 18 00:00:28 2026 GMT
Subject: CN=f84664390346fe90fdf4db345824b0160278bbc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:db:15:2b:69:dd:b9:17:44:bb:ee:de:ac:2d:
48:14:39:b4:02:5c:b5:1a:4f:4b:cf:8e:2f:2f:fc:
c1:d8:e0:3d:e6:7a:88:d6:65:ed:4c:75:33:c1:d7:
35:ba:bd:07:64:b4:7b:c1:a7:f5:fc:2a:0e:b5:47:
a9:8d:72:8b:9d:86:44:96:88:2c:65:91:40:28:e2:
ee:f2:c1:3c:22:c6:88:8c:77:dd:ba:21:9a:6b:e6:
cc:e5:0d:e6:ad:43:0f:9f:11:72:8a:64:32:33:87:
d4:59:01:95:37:0d:bb:05:28:80:e2:c0:56:71:a7:
09:f5:86:84:38:ce:0c:02:f3:66:a4:01:2c:72:ec:
7e:41:ca:18:cb:86:89:37:34:6e:bc:73:ea:0a:e0:
7a:f6:65:90:a2:d1:61:64:6f:c2:89:15:f2:74:cb:
e1:4f:a1:4e:84:30:6a:cc:8f:f0:0b:66:9b:de:a1:
3e:db:77:a0:a2:94:4a:18:70:82:f2:da:7f:d2:87:
ab:1c:ac:87:17:4c:5c:4c:94:de:f3:21:9d:27:4e:
76:b1:70:68:48:53:31:f6:3b:c6:9d:a8:68:35:49:
1e:da:0e:7a:fb:f1:21:32:b0:5c:73:2a:e0:02:96:
64:af:8f:ef:62:d1:83:9a:14:bd:02:00:5d:3f:38:
52:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:46:64:39:03:46:FE:90:FD:F4:DB:34:58:24:B0:16:02:78:BB:C9
X509v3 Authority Key Identifier:
keyid:CA:78:AA:7E:31:6B:21:F8:43:CF:B9:58:10:C6:80:CD:DB:FA:6E:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yniqfjFrIfhDz7lYEMaAzdv6bm8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/7da34c-3984-4442-b646-e3138ff1e899/1/yniqfjFrIfhDz7lYEMaAzdv6bm8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:b6:12:8a:03:5e:0c:12:a7:f8:79:a7:af:7c:62:b6:45:6f:
9f:83:aa:ef:70:58:ce:01:9f:2e:3f:a9:b2:2b:2e:f7:a2:d9:
ee:0f:79:0d:3a:d3:42:48:13:7e:5e:b9:0f:f7:ed:d8:38:d1:
96:a1:4a:c4:f1:79:a8:14:48:28:78:d0:87:d3:b5:96:2a:d4:
af:ba:b8:de:d8:fe:08:8c:ee:f3:30:f1:58:16:fe:22:22:dc:
05:06:50:97:7d:c0:eb:b2:6e:58:8e:8d:47:81:29:cb:f8:32:
08:c1:de:8a:9d:0a:80:21:f4:67:a6:a8:ff:71:76:dd:35:e6:
31:72:29:38:d7:88:65:c6:9a:bd:26:fc:f8:89:eb:ab:d8:93:
91:1e:f4:8c:e9:42:57:69:09:fb:de:7d:79:c5:8d:fa:ce:51:
78:0e:b9:4e:24:17:74:22:89:3a:a3:b2:1a:64:92:bf:76:d4:
9a:94:34:cf:35:39:69:f0:17:a0:94:d5:6e:a5:ff:72:25:28:
30:97:25:6c:50:88:41:fe:9d:22:d1:5a:b7:8f:61:6f:87:db:
3b:ff:d6:14:a5:67:c9:c0:04:f6:cc:e7:23:d5:aa:d8:4b:48:
50:09:97:a7:bd:6c:31:a4:e9:02:ab:de:a7:f1:83:57:de:54:
be:4d:da:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:26:34 2026 by rpki-client