Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
File: YHZWuPfoG1FJtIYPgSex1OO0h9w.mft (raw, json)
Hash identifier: +G+YPRdLBKwRHLDZtM1FlIZxtuD9/yeDquY7foZhbbI=
Subject key identifier: 51:1B:2E:DE:CC:21:42:A2:EC:A8:B5:D9:5F:B7:69:59:AE:CD:04:88
Authority key identifier: 60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
Certificate issuer: /CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Certificate serial: 019DA52F34B8B7DB83DE1E76C91F2ED6F833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
Manifest number: 0ED9
Signing time: Sun 19 Apr 2026 10:00:27 +0000
Manifest this update: Sun 19 Apr 2026 10:00:27 +0000
Manifest next update: Mon 20 Apr 2026 10:00:27 +0000
Files and hashes: 1: UUfjp8DsgnyXyAKHpxYY24nPV9k.roa (hash: z2A5oacpxbaOodlp6c1sfM8uFMWqz0u+N2Xu9qkatg0=)
2: YHZWuPfoG1FJtIYPgSex1OO0h9w.crl (hash: bIlQPdtVxXd1tb+OQo4b07QCbEGk2a6BUJ/DMH6s+Jk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:2f:34:b8:b7:db:83:de:1e:76:c9:1f:2e:d6:f8:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607656b8f7e81b5149b4860f8127b1d4e3b487dc
Validity
Not Before: Apr 19 10:00:27 2026 GMT
Not After : Apr 20 10:00:27 2026 GMT
Subject: CN=511b2edecc2142a2eca8b5d95fb76959aecd0488
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:ae:e1:d4:57:58:79:4e:25:ed:67:69:66:63:
9f:ae:aa:84:b2:45:47:56:ad:c5:5f:b9:6a:20:45:
49:95:d8:b7:b1:15:f1:c9:03:08:a6:ed:53:ff:70:
75:90:3c:40:e6:dc:a1:e5:c0:be:21:c8:0c:fb:8b:
11:7a:57:fa:ea:b4:ef:14:a2:ca:65:b1:2f:46:e8:
3c:32:88:ff:2f:63:81:87:6e:21:85:e9:fa:ec:8e:
95:30:31:f8:ce:30:ed:68:7d:e5:76:9c:49:2d:30:
57:ae:da:e3:8d:6d:9c:c4:3b:56:a1:00:bd:fe:c3:
a0:18:f9:a3:2e:03:ea:d7:d3:9e:15:35:8a:76:dc:
f6:11:4e:d8:a5:bc:d5:fa:61:8b:6a:42:25:70:c2:
c0:c1:7a:eb:66:6c:4f:ce:19:42:fa:43:c1:cd:5f:
cd:77:9a:99:3e:b1:9c:d6:cc:a1:e8:91:b4:ff:64:
ec:94:fb:97:2d:17:58:23:cb:58:cd:f9:8f:56:45:
1a:10:f3:67:cf:be:dd:c0:a6:c3:e3:fe:c7:f5:91:
21:63:7f:af:1c:fc:2a:9a:d3:a0:fb:de:b6:4b:cf:
d6:64:6a:9c:1d:4a:d4:3d:d3:73:52:1f:c5:87:27:
ef:56:19:e7:cb:31:2b:c1:9b:1b:07:52:8d:cc:a2:
19:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:1B:2E:DE:CC:21:42:A2:EC:A8:B5:D9:5F:B7:69:59:AE:CD:04:88
X509v3 Authority Key Identifier:
keyid:60:76:56:B8:F7:E8:1B:51:49:B4:86:0F:81:27:B1:D4:E3:B4:87:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHZWuPfoG1FJtIYPgSex1OO0h9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cee55d-985a-4e36-8e39-82bc8a3180c6/1/YHZWuPfoG1FJtIYPgSex1OO0h9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:98:a9:03:8d:dc:ef:3a:90:22:2a:cd:26:c0:4d:67:e5:6d:
84:00:73:0d:9a:af:7c:38:ec:5b:2b:22:6f:62:b2:f3:d7:b6:
8b:f3:73:ec:f9:b9:61:1a:ca:ad:8a:82:87:a7:26:43:91:c6:
db:8e:8b:cb:b0:1d:d7:4f:0c:59:f7:73:15:4f:72:b4:b1:02:
b0:c3:8b:60:f3:db:bf:22:ad:ee:a3:66:d3:25:f3:7f:3b:78:
e8:9f:09:01:85:85:98:50:81:9a:1e:be:f4:7c:6f:0d:3c:6f:
93:7f:40:f3:bc:66:1e:45:fc:76:36:57:8c:da:49:03:fa:8d:
b6:4d:9b:ad:21:9b:ec:ee:e6:b5:29:f8:21:a4:27:79:a9:84:
2d:dd:0f:6e:99:b6:d0:f3:67:a3:4f:5e:e2:72:f3:a0:58:c7:
e3:86:fd:6b:c6:eb:68:10:14:3b:4b:ce:99:b7:9a:0a:21:09:
58:e2:59:2b:65:16:80:56:e7:2d:91:6a:9a:1c:71:19:79:33:
f2:eb:13:19:62:6c:49:42:8f:3e:4f:60:9c:7b:5d:37:cd:38:
65:86:d1:d1:81:b5:72:5e:65:be:f2:ab:6c:c6:b3:39:f0:b5:
b7:d6:2e:1a:fd:68:37:e2:15:8d:b0:18:84:dd:94:d2:43:42:
a5:5c:ad:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:59:39 2026 by rpki-client