Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
File: YGhXxDyh3wTLaaSgqshim98ydWs.mft (raw, json)
Hash identifier: iqeYoZ5vU52R4h+3uN8z/cg95Ht1qb4Cjh1Ikg9X85Q=
Subject key identifier: 86:71:48:8C:E9:5F:04:6A:13:31:29:C8:C1:91:A1:48:C3:E2:6F:15
Authority key identifier: 60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
Certificate issuer: /CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Certificate serial: 019DA3E6ACECFA8F8F720EFB38314BABCF36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
Manifest number: 157E
Signing time: Sun 19 Apr 2026 04:01:36 +0000
Manifest this update: Sun 19 Apr 2026 04:01:36 +0000
Manifest next update: Mon 20 Apr 2026 04:01:36 +0000
Files and hashes: 1: YGhXxDyh3wTLaaSgqshim98ydWs.crl (hash: 9aRJHnB7vtnwjUncyqRCxHstMilf/o/pyefefdcGd94=)
2: r07b59Kbc0tU4fUroKjDGDeksk4.roa (hash: VbjM5vBRkz4uK7ac3fSu6tjCMa1PBV229HM3K4xTekY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:ac:ec:fa:8f:8f:72:0e:fb:38:31:4b:ab:cf:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606857c43ca1df04cb69a4a0aac8629bdf32756b
Validity
Not Before: Apr 19 04:01:36 2026 GMT
Not After : Apr 20 04:01:36 2026 GMT
Subject: CN=8671488ce95f046a133129c8c191a148c3e26f15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e2:93:13:d0:0d:5f:41:8c:62:c5:b9:8f:7a:
ca:b2:73:53:ba:89:dd:b5:63:3f:83:44:54:3f:d3:
44:74:cd:f7:7b:ac:e5:da:76:de:bb:d9:b1:f7:0d:
8d:1b:25:5f:1e:d5:74:c3:48:1a:87:eb:22:f1:f6:
db:7b:5c:8a:83:c6:a4:7d:0d:50:52:64:18:17:5b:
97:21:f3:36:05:8c:7e:3b:7b:e6:33:3f:f9:f1:c2:
8f:9a:f9:fb:c1:1b:fe:26:be:66:28:0f:78:a9:e8:
2c:f3:c4:32:5b:19:2d:03:d4:5f:1b:1e:9b:6d:6c:
27:7f:57:3b:fe:2c:4e:98:f6:a6:65:6b:73:26:44:
55:67:70:34:57:c1:d2:35:8e:d6:a8:07:e2:df:0a:
a2:58:3b:af:cc:1b:73:eb:48:6b:b4:83:db:e6:93:
9e:c2:c6:39:81:cf:98:d0:bb:b7:5c:7c:cc:55:d3:
33:b4:44:10:91:4b:c4:e9:cd:a6:13:2f:a5:f8:7c:
2b:d1:00:0b:95:95:48:28:43:60:10:25:84:e3:2d:
1c:c3:ae:88:e1:e3:48:7f:02:07:40:79:38:91:e6:
80:0b:1c:48:bc:2b:b1:2b:d3:ae:32:09:d7:d2:ad:
f4:8a:e3:c1:e9:d0:cd:7d:08:33:0e:ed:8c:bb:36:
14:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:71:48:8C:E9:5F:04:6A:13:31:29:C8:C1:91:A1:48:C3:E2:6F:15
X509v3 Authority Key Identifier:
keyid:60:68:57:C4:3C:A1:DF:04:CB:69:A4:A0:AA:C8:62:9B:DF:32:75:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGhXxDyh3wTLaaSgqshim98ydWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/95d7dc-0c8b-4941-b9c1-d4710d022336/1/YGhXxDyh3wTLaaSgqshim98ydWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:13:66:66:a6:a9:52:52:c8:60:48:67:6f:0d:46:3e:91:98:
42:00:f6:24:52:99:a2:04:e6:45:10:89:6d:f6:99:ca:54:d5:
cc:50:b1:d8:db:50:19:a5:80:b7:6c:a6:3f:b8:d7:c7:e3:e8:
0c:18:69:c0:6d:4e:5c:1d:65:0f:bf:7f:02:26:da:f9:6b:85:
ce:eb:ab:74:41:b1:72:a1:a4:89:b0:12:92:d4:75:00:fc:4e:
d6:5b:71:d9:0e:76:ab:3d:94:99:a8:b5:7d:57:1e:48:6f:ae:
91:9e:1c:47:7c:18:5d:8b:c2:da:7e:4b:03:59:1d:b3:ae:d4:
7f:35:46:9c:23:e5:72:82:bd:27:1a:aa:25:a7:29:bc:54:8f:
0b:e6:f5:88:7e:2c:16:a7:b5:05:5c:f1:22:bf:7c:12:97:4b:
a0:5f:88:59:8f:16:6a:ef:a1:a3:f5:c7:cd:89:63:60:e6:99:
07:33:af:93:b5:c3:a2:d7:7e:f0:60:a5:65:cd:36:54:5a:ff:
8f:f1:00:fc:c8:18:f7:6a:58:f9:0a:06:e6:98:5a:19:0a:a2:
21:32:22:b1:a4:d4:8f:64:d1:de:34:ee:6f:4d:a1:4b:72:4b:
14:4b:7f:93:71:87:57:cc:61:c6:12:7c:bf:46:14:41:42:2c:
35:66:ac:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 11:33:42 2026 by rpki-client