Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
File: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft (raw, json)
Hash identifier: /czDSnawGB78I8Ab+mKicWsNArAXfSqGInBkri4o0mM=
Subject key identifier: 88:69:8D:02:1D:23:48:A4:61:F9:06:03:A4:15:14:F5:FD:78:60:D0
Authority key identifier: 61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B
Certificate issuer: /CN=614799c67c08547d80bb35d02dae505d5a65dc5b
Certificate serial: 019DCC068AE4F7ADA7D5E0B194233749FF19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
Manifest number: 0AEA
Signing time: Sun 26 Apr 2026 23:01:13 +0000
Manifest this update: Sun 26 Apr 2026 23:01:13 +0000
Manifest next update: Mon 27 Apr 2026 23:01:13 +0000
Files and hashes: 1: B-jtVqVW9M43hbMxN6j_v-hrwB4.roa (hash: xV6nCB7rwxI+22ZkCjSqm8Ae38pQziS4ET9GFX+UA2o=)
2: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl (hash: /GL9LcduZa07Q9xSYulmckcVYlMe0Lt2uklRsAx5+rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Apr 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:06:8a:e4:f7:ad:a7:d5:e0:b1:94:23:37:49:ff:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614799c67c08547d80bb35d02dae505d5a65dc5b
Validity
Not Before: Apr 26 23:01:13 2026 GMT
Not After : Apr 27 23:01:13 2026 GMT
Subject: CN=88698d021d2348a461f90603a41514f5fd7860d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:bb:5c:bd:ce:58:af:e4:5a:27:ca:f3:c6:cb:
25:10:3d:26:d7:5f:96:f3:0e:2a:28:18:27:6f:60:
27:99:00:0a:02:12:d1:2c:84:56:7b:41:3b:d0:2f:
dc:6b:7a:a5:8d:ea:6f:1e:b2:f7:b1:ac:1d:08:75:
a9:67:d1:e9:c1:f9:42:5c:ae:8b:b6:29:e5:fe:5f:
01:e0:b7:0c:7a:6a:81:8c:e7:ed:eb:eb:77:7a:db:
91:f8:c3:c0:c2:d4:f6:74:af:79:cd:69:0d:3c:0f:
c1:7f:58:e5:bf:a9:19:f6:62:cb:1d:0a:1a:d1:01:
49:37:f5:ae:e1:ed:e8:5f:d2:64:1f:e8:02:4e:27:
b3:2d:32:a6:76:83:06:1e:ed:22:56:c7:dd:76:3e:
37:05:64:9b:5c:77:97:18:ba:38:e2:17:fc:51:a7:
db:47:89:5c:1a:54:33:b6:77:1d:3f:c6:2d:a3:bb:
51:03:29:14:5b:c2:23:80:9b:b9:bd:6b:be:38:12:
36:1e:b7:60:5f:27:a9:54:f4:16:61:ba:34:30:b9:
44:e0:21:4c:0a:24:15:6a:bf:38:10:e0:5d:41:fe:
42:96:26:f6:de:30:b5:49:bc:a7:98:33:29:ee:ec:
21:a3:3e:9f:fd:21:e1:d7:6b:6a:d9:8f:89:0f:0c:
40:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:69:8D:02:1D:23:48:A4:61:F9:06:03:A4:15:14:F5:FD:78:60:D0
X509v3 Authority Key Identifier:
keyid:61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:74:de:6b:55:c5:ae:1d:e1:14:88:d3:ab:4a:54:bc:e7:8b:
df:1f:91:a5:5f:61:d1:40:bb:0e:9f:86:0b:a7:50:3b:3c:91:
0e:af:b2:b5:a4:8a:ac:ae:46:13:c9:70:7f:dc:10:31:da:98:
1a:e8:25:b2:42:e8:69:1f:82:ff:4e:0e:40:12:ff:2a:aa:60:
03:51:2b:e3:b2:03:ba:3e:fd:43:a0:99:db:a2:08:de:83:2d:
99:73:9a:12:27:e7:d8:f1:78:a4:cb:3a:4b:a7:25:33:95:26:
08:70:f4:e3:20:33:05:13:a6:33:b8:d1:a6:45:5d:e3:bb:4e:
1e:c1:5d:1b:ac:48:5a:90:a5:58:0e:6b:af:e1:0f:41:e0:f6:
ed:7a:d1:dc:f6:bf:a8:81:32:39:bc:c3:f4:df:4f:94:8b:94:
60:a1:99:53:41:6c:df:77:6b:4a:75:57:24:f8:58:2b:a8:56:
4f:86:ee:82:a4:6f:1c:6a:fe:6a:67:ea:97:2c:dd:a2:f1:11:
0d:46:c5:da:1b:2d:13:85:a8:f0:65:3f:c3:ad:20:7b:bb:e5:
34:d7:b3:08:be:43:f3:d7:3a:f3:e7:96:e1:2f:cd:6c:88:04:
5a:05:75:e9:c3:ed:13:c7:f7:ad:d1:5d:84:0f:96:d8:60:9d:
22:e3:a4:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:16:06 2026 by rpki-client