Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
File: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft (raw, json)
Hash identifier: mMPdOs1pQ9T1GsUu7aoF0Sf4BM3N8ddnSqQkKHvEt64=
Subject key identifier: 88:84:F7:96:C8:21:E6:5B:7D:0E:B0:76:77:37:E5:69:6E:DF:58:E1
Authority key identifier: C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
Certificate issuer: /CN=c8544c778152f0fd85e5dcb44904f001e5987424
Certificate serial: 019D98F4103E1BBC99ABA8C8601BFE7BF268
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
Manifest number: 096D
Signing time: Fri 17 Apr 2026 01:00:24 +0000
Manifest this update: Fri 17 Apr 2026 01:00:24 +0000
Manifest next update: Sat 18 Apr 2026 01:00:24 +0000
Files and hashes: 1: H1VE2ZkBqR8y9rnIA-ZTuzeFoCk.roa (hash: 3CEpvrN229vRpcqITP4Y01YD4936c1DOC0Lixuq0wEM=)
2: qRXAdJp0xbYo0FT6eucc0rsG8Yw.roa (hash: fUKa/Z+tq+35Z3GUfMU3rii79affOtxwZwlAfn3uJ6U=)
3: yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl (hash: KkRXv2Td+5MH4RWV6ZH+tW2RzLH2+dJ+GArlKBMjJfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:10:3e:1b:bc:99:ab:a8:c8:60:1b:fe:7b:f2:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8544c778152f0fd85e5dcb44904f001e5987424
Validity
Not Before: Apr 17 01:00:24 2026 GMT
Not After : Apr 18 01:00:24 2026 GMT
Subject: CN=8884f796c821e65b7d0eb0767737e5696edf58e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:ee:fe:fb:c2:01:cf:1c:af:4a:08:cb:00:
6a:76:f0:d2:ac:87:80:25:28:2b:95:87:c5:1c:03:
92:6b:3a:77:45:aa:3f:25:ab:67:b1:0b:27:10:3f:
6a:4a:70:bb:a8:53:99:ef:d6:c5:91:0c:7d:5a:fa:
46:78:e7:5c:ea:3f:10:d1:32:0d:e4:a1:d7:d4:92:
1a:97:ed:2e:8b:8e:3e:8c:a0:93:d9:47:9d:83:b9:
82:d6:0b:83:14:b7:81:7c:0e:06:0b:7e:1d:56:a0:
d8:5d:d3:0d:e6:00:2e:cb:ca:ed:d8:e4:e9:65:b4:
bf:6e:48:ca:bb:bc:4d:3e:56:25:38:96:9b:d2:5c:
31:3c:7b:fc:41:92:0f:b6:79:ec:5c:ea:f4:d9:60:
3d:aa:7a:5e:2e:7e:a6:52:06:26:18:c7:43:24:c3:
86:b9:8e:4f:25:bc:3d:f6:5e:bc:71:84:8e:ed:7c:
55:b1:17:8f:ca:48:b4:e7:55:37:61:f7:38:93:4a:
ef:c7:23:0b:41:8f:ef:8a:cf:cc:d5:2b:d0:e0:63:
9d:30:39:e8:d6:fb:3c:00:8d:ca:82:30:fb:e7:6a:
ae:9e:fa:53:57:80:68:63:1c:13:98:82:0f:7a:bf:
38:c4:52:e7:a8:7a:cd:f6:c0:e6:95:0d:da:c0:7a:
3a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:84:F7:96:C8:21:E6:5B:7D:0E:B0:76:77:37:E5:69:6E:DF:58:E1
X509v3 Authority Key Identifier:
keyid:C8:54:4C:77:81:52:F0:FD:85:E5:DC:B4:49:04:F0:01:E5:98:74:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/a1f351-42fd-4d44-a9b3-d940050e56ca/1/yFRMd4FS8P2F5dy0SQTwAeWYdCQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:82:be:40:43:fe:01:89:37:20:62:3d:e9:bd:dd:6c:1b:36:
c8:08:0d:27:19:b9:f7:63:79:e2:4b:2b:8c:db:ff:d7:6d:61:
23:ff:c1:ec:83:b0:8e:e0:ba:25:ae:85:a6:21:53:49:7d:85:
af:c0:27:40:8a:78:c7:f0:37:52:bd:47:ae:1a:fb:5b:b7:c5:
0c:72:7c:7c:be:85:d4:36:f6:25:81:f4:0b:b4:52:0e:ad:38:
12:ae:3e:56:e9:6c:c3:86:9a:08:1e:77:fa:79:5c:35:56:78:
1e:6b:b5:f9:9a:d6:a4:8f:fb:00:2a:d6:39:a7:7e:5c:96:57:
e0:b1:c8:64:66:93:d2:c2:fc:97:33:fd:16:de:8e:8f:a1:6a:
46:50:7a:19:1e:3e:d6:09:5c:23:84:81:62:35:ab:9b:c8:96:
92:f1:6a:f4:0f:93:ee:bc:42:46:b5:94:8b:3c:c3:a8:7d:b5:
2e:cc:da:53:19:cd:10:da:30:d7:00:94:c0:19:44:30:b6:1d:
d4:1f:31:fb:26:14:82:7b:a3:ca:88:d9:d1:f1:4b:af:65:95:
72:33:52:65:78:74:64:d0:13:d2:b1:88:86:23:e4:e3:6c:b3:
c8:68:28:b8:c9:4c:da:5d:d2:2c:d4:42:4a:61:c2:69:31:21:
c5:32:eb:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:34:17 2026 by rpki-client