Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
File: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft (raw, json)
Hash identifier: gp7lL6g6YTO9l+scYATTVtroeSQbhmvAF6kGPouDfbA=
Subject key identifier: 4E:EB:06:F3:F4:3E:38:3F:44:19:A3:BC:CC:69:92:69:2D:D7:61:24
Authority key identifier: 61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B
Certificate issuer: /CN=614799c67c08547d80bb35d02dae505d5a65dc5b
Certificate serial: 019DCDF4CDCEA994C1486F14D2E9BF69622B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
Manifest number: 0AEB
Signing time: Mon 27 Apr 2026 08:01:05 +0000
Manifest this update: Mon 27 Apr 2026 08:01:05 +0000
Manifest next update: Tue 28 Apr 2026 08:01:05 +0000
Files and hashes: 1: B-jtVqVW9M43hbMxN6j_v-hrwB4.roa (hash: xV6nCB7rwxI+22ZkCjSqm8Ae38pQziS4ET9GFX+UA2o=)
2: YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl (hash: tUeVZEF9QDTxpmQRFoB0oK8YGizaEYL5eEdSnMqdna0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 07:32:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f4:cd:ce:a9:94:c1:48:6f:14:d2:e9:bf:69:62:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=614799c67c08547d80bb35d02dae505d5a65dc5b
Validity
Not Before: Apr 27 08:01:05 2026 GMT
Not After : Apr 28 08:01:05 2026 GMT
Subject: CN=4eeb06f3f43e383f4419a3bccc6992692dd76124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:96:08:e0:84:86:36:f3:a1:d4:85:ba:e7:97:
3e:65:2a:1e:58:59:b2:4a:0e:51:61:cd:cc:89:aa:
4a:b5:0e:9f:29:03:14:c2:f0:62:24:d1:e8:7f:ef:
6e:3c:aa:04:45:eb:ed:3c:91:50:72:af:85:a8:6a:
02:15:04:16:58:2a:ff:82:48:93:04:41:fc:70:a8:
3e:cb:ea:9a:60:fe:37:2d:41:23:1d:ec:3b:ca:02:
5b:1f:0c:7a:89:b9:be:54:96:b8:84:9f:29:ee:15:
59:5b:e3:50:f1:35:84:a1:39:62:4f:47:a8:03:cb:
26:78:2a:4f:9c:3a:8d:bd:71:70:3a:24:18:30:7b:
3c:7d:24:80:f6:3c:e3:2e:48:ca:b1:da:8c:a8:d1:
95:e4:e3:41:ca:2f:f0:7c:55:64:79:c3:58:30:b8:
02:b1:30:dd:c7:d2:7c:87:60:56:8c:43:5b:1a:90:
b9:a5:42:90:7a:3e:f2:06:3d:b6:d0:ef:3a:9b:e5:
bf:85:64:a9:6d:05:f9:3c:15:e8:85:da:5e:7b:56:
21:e5:0c:ed:fa:79:8d:b9:80:cc:37:a3:3c:5a:9b:
bc:b5:ec:e6:29:2e:56:44:24:e0:71:ae:be:a2:31:
ce:cd:ab:98:57:14:38:44:0a:69:64:02:6a:cb:c1:
3b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:EB:06:F3:F4:3E:38:3F:44:19:A3:BC:CC:69:92:69:2D:D7:61:24
X509v3 Authority Key Identifier:
keyid:61:47:99:C6:7C:08:54:7D:80:BB:35:D0:2D:AE:50:5D:5A:65:DC:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/f7c9d1-0f5b-42f5-931d-1dc0b84a1c7e/1/YUeZxnwIVH2AuzXQLa5QXVpl3Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:26:d3:2b:3e:d9:64:27:91:d8:15:8b:6b:40:74:c7:74:d8:
b2:87:ba:c8:e1:3e:3c:ee:d5:39:e9:75:66:00:3c:b9:b8:69:
16:e3:f9:5f:dc:87:4e:2d:3e:cc:a3:5e:6b:cf:ad:d2:f7:33:
7d:5d:3f:40:18:45:e8:8a:f5:ed:cf:37:fb:e2:dc:ba:27:08:
c8:6a:f5:99:92:c4:85:b8:ca:c4:63:44:d9:87:1a:51:e3:67:
2b:3e:87:6e:b1:01:e7:01:0f:65:da:14:77:22:6c:0e:4f:78:
ee:65:46:3a:9b:df:2d:9c:24:e9:5a:16:46:ef:22:6a:d4:42:
ec:9f:bf:0a:97:d9:12:e9:66:4d:45:e6:bc:a7:48:88:34:ad:
73:db:a6:f5:17:f5:69:29:79:a2:98:35:1e:86:9a:39:f9:b6:
db:59:4d:73:83:51:d8:a4:1a:3a:f6:90:9a:9a:43:a4:36:e2:
58:ff:e7:bf:2f:1e:71:d8:c3:7e:b5:ac:c0:a4:1c:d4:09:90:
e7:d2:56:12:58:96:a8:21:5b:f6:9f:10:4a:55:55:83:e3:83:
08:a2:7f:16:d3:03:6b:1d:a4:39:e3:1b:a3:eb:fe:a0:4b:ca:
9d:f1:66:5c:1f:26:e2:20:df:fd:35:46:6f:f6:44:fe:8f:fc:
f1:6e:30:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 10:43:45 2026 by rpki-client