Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json)
Hash identifier: XJR4sPNi7YqfqgnP0cpcZNCG2NlyH3eq8CBSjHUJ2fU=
Subject key identifier: 08:3E:D6:68:38:3F:68:95:DE:7B:91:D5:21:0C:3E:7A:01:EE:B8:18
Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Certificate serial: 019D992B0A84B577B01B91BE401CFA8A4074
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 02:00:27 +0000
Manifest this update: Fri 17 Apr 2026 02:00:27 +0000
Manifest next update: Sat 18 Apr 2026 02:00:27 +0000
Files and hashes: 1: K2muBRhSzEeWwEOKyiaVJYw5K3c.roa (hash: 9FMIKD8yGkaykJTy68XJ8mxhdE87R0V7qtYcMc3oayY=)
2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: hhwuEZUiD+xzgLt14jmdMa32sbHgsvchUPYDs+QVg7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:0a:84:b5:77:b0:1b:91:be:40:1c:fa:8a:40:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Validity
Not Before: Apr 17 02:00:27 2026 GMT
Not After : Apr 18 02:00:27 2026 GMT
Subject: CN=083ed668383f6895de7b91d5210c3e7a01eeb818
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:92:1a:10:c7:3b:ef:aa:0a:0f:b8:80:b3:37:
a5:0c:df:ab:4f:87:2e:9f:9f:f9:dd:5f:95:db:c3:
48:d2:7c:5a:ed:f1:62:eb:27:cf:69:2d:40:06:e6:
cd:f1:7b:2e:fc:ff:db:5c:20:16:1e:2a:47:3c:b9:
21:ef:ee:c0:34:b4:9c:40:82:ee:c5:e7:31:4a:c8:
97:2e:41:02:42:cd:e6:11:16:5a:ac:d6:f1:39:8c:
b4:eb:7b:25:72:af:84:8a:1e:c2:19:78:db:ce:98:
34:bf:03:3e:19:5e:20:12:07:ce:76:57:47:f4:95:
46:85:20:21:50:62:00:be:f1:39:76:e4:84:b5:ac:
aa:3c:c9:a7:93:e4:72:61:66:fd:9d:d7:f1:a0:df:
d1:c5:c3:ca:ce:d4:d5:b8:10:56:53:7f:84:9c:3c:
27:81:43:3f:0c:c5:30:2d:0a:3a:95:ad:95:9c:bd:
c7:5c:28:6c:2f:e8:43:4e:8f:f3:32:4f:50:10:39:
c3:e3:2f:bb:d9:c9:c6:7c:fb:a4:c2:40:17:5b:5f:
3b:27:db:3a:fb:89:ba:28:6a:26:9b:7c:af:d6:90:
32:65:4f:4e:c6:8e:c7:0b:fe:f6:f5:a6:26:21:20:
76:5d:35:02:f3:2e:c8:f9:a9:01:f2:2e:8d:e8:fa:
6b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:3E:D6:68:38:3F:68:95:DE:7B:91:D5:21:0C:3E:7A:01:EE:B8:18
X509v3 Authority Key Identifier:
keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ee:0f:87:0f:02:c8:ee:91:ec:7c:fb:b6:e7:23:aa:4c:c9:
4d:0d:5c:f7:61:f6:35:be:1f:92:0d:b2:91:93:ca:fa:61:c3:
e3:5a:ae:30:a5:b8:72:de:a8:39:c4:f9:2b:26:85:5f:f1:63:
36:b7:85:76:28:91:33:d3:19:7d:71:8a:5c:73:ba:11:36:d3:
d8:92:b7:03:d0:84:e5:56:df:04:82:a3:62:85:36:af:20:17:
ce:a4:cf:52:f8:e1:a4:0f:24:c6:47:38:ed:42:0d:c5:a3:88:
d4:af:8c:2f:80:f3:af:54:79:bc:29:0e:9c:49:8a:ee:72:07:
ec:76:e1:36:6a:c3:cb:bb:e3:04:5e:63:65:ef:93:a5:86:b9:
dc:db:b4:80:7a:2d:b5:ca:e4:bd:ca:86:ab:c8:d4:c8:f1:fb:
33:0f:fd:2b:92:7f:e7:84:82:e1:4b:33:49:cd:2d:a5:77:fd:
65:80:1d:9b:64:a2:5f:e1:95:68:8e:0a:80:82:0b:54:97:2f:
74:79:26:a7:1e:9a:3c:98:9c:36:9c:59:5f:16:9b:1b:d9:bb:
3f:0e:05:7f:45:a7:c3:0a:ec:28:ca:11:c4:d5:ee:16:3d:2d:
ac:95:d0:88:a1:0a:fd:56:5c:51:ea:06:80:13:af:e7:af:19:
4c:fd:e9:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:53:54 2026 by rpki-client