Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: djE8gS9BgxxQhv4xVncxegxST0De+zEbge60E+l2YQo=
Subject key identifier: 47:22:51:09:02:CD:54:1A:16:80:54:F0:17:B0:8D:D4:2F:43:B7:18
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 019D9A072E7EFAC5B276CB601B94906FCA69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 06EA
Signing time: Fri 17 Apr 2026 06:00:54 +0000
Manifest this update: Fri 17 Apr 2026 06:00:54 +0000
Manifest next update: Sat 18 Apr 2026 06:00:54 +0000
Files and hashes: 1: Rmbqki6sfeVONmSCUKVbSwnLV2w.roa (hash: m02OGs1ERDq2Tep5VBBDirUwK9M85zv/SGcl5/T9Gng=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: PTBhis6iHl//M75nTfmvVZ5B3zGoAr7pFdbS9XKXl9o=)
3: YrjDjaI3_Q6KPQ90f8RoYBEvTqI.roa (hash: VmD17BnA3G7W1dMkZraFPy0h1sdRJ/jQerJj3HVgUI8=)
4: mEMBpqCiAZX-66IM2v28OLBYmaU.roa (hash: D0q/tQQJTMQWefAkqZBJ1Tlw8AdCPKqxL86ZtoZ1fgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:2e:7e:fa:c5:b2:76:cb:60:1b:94:90:6f:ca:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: Apr 17 06:00:54 2026 GMT
Not After : Apr 18 06:00:54 2026 GMT
Subject: CN=4722510902cd541a168054f017b08dd42f43b718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3d:8c:81:38:f1:f0:4a:38:f8:73:d0:4c:54:
45:bc:ab:ae:87:cf:57:cf:7c:fc:29:ba:ac:cb:68:
99:07:af:41:d7:e1:a6:49:0c:f4:1a:ce:ee:77:c4:
2a:dc:43:3b:7e:d4:75:5c:b5:42:39:69:9b:4e:6f:
1e:35:73:b1:54:12:de:2f:5c:b0:14:cf:3e:1a:93:
d7:b2:57:bb:02:d0:4b:a9:91:3c:0c:7e:83:fa:b4:
3e:51:0e:de:72:5d:03:a0:fb:72:ca:43:b5:e2:a8:
63:94:b0:50:c4:bc:bd:c2:09:a9:34:6e:cd:4b:45:
f9:85:cf:a1:f9:ff:28:75:bc:63:97:17:04:15:ee:
31:28:6e:99:90:43:ce:de:87:79:36:80:cb:d9:3d:
67:c7:2d:58:d7:34:16:b6:6d:94:c0:44:fa:37:c4:
49:51:c7:37:3e:1f:75:de:9e:c9:ba:3e:cc:d7:d1:
fc:c0:4f:e9:8b:3f:c6:4c:8e:bf:08:5f:ea:aa:a1:
d7:11:b5:39:d4:43:9a:bc:04:33:f1:93:22:03:1b:
74:37:74:87:5c:f4:c9:9d:d1:a1:96:54:b6:e6:1b:
d4:32:8c:ec:26:ef:4d:4f:0e:ea:68:f1:b8:e1:30:
0a:f3:c2:5e:b3:29:67:45:1d:ab:01:4a:f2:14:49:
99:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:22:51:09:02:CD:54:1A:16:80:54:F0:17:B0:8D:D4:2F:43:B7:18
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:89:7d:51:04:af:e2:00:c2:1b:73:d6:3b:ee:f2:f5:b3:66:
95:a3:0a:da:4b:48:db:95:42:b8:9f:00:8f:4c:14:bd:12:7d:
6e:e6:3c:20:4f:48:15:4b:55:d8:d9:7d:43:c4:72:01:d8:71:
b2:b9:29:c7:33:88:1d:67:23:d1:17:62:a6:87:1e:2b:e7:7f:
db:25:bc:4b:b9:81:6a:29:df:22:f9:ae:63:e1:c6:d8:07:cb:
7b:8a:a9:c0:3c:57:c5:98:16:90:fb:5a:18:d6:05:9d:e9:70:
7b:d4:fe:bf:22:1f:16:b1:8e:c8:51:ab:9a:d0:0a:29:a4:38:
2e:8d:18:25:21:ae:ef:65:aa:bc:4e:9d:a3:26:ff:3d:39:8a:
db:3d:bc:17:b5:96:23:be:76:91:49:d3:53:f7:2d:9f:e5:6e:
78:e4:3b:32:c3:9b:58:4c:93:f3:70:84:43:16:8b:cc:3e:b7:
71:f5:f3:1e:ff:d0:3a:3b:8f:23:48:4a:2e:0e:3e:f7:33:aa:
aa:7a:a8:ce:3b:3e:1c:40:ca:a3:f1:68:12:cb:10:a9:f4:fa:
11:10:98:48:9e:b1:90:68:2c:28:37:dc:b0:2b:4c:90:b1:21:
00:67:c7:18:f5:ee:61:50:12:73:85:30:86:1c:b8:05:16:73:
34:fb:fb:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:52:23 2026 by rpki-client