Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
File: yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft (raw, json)
Hash identifier: C594DjmRsezGCVmrbEftsvSTGQO4R/9EG1Qwn6Nw3DI=
Subject key identifier: 74:A4:4D:D2:69:EA:FC:07:C6:D1:05:91:00:8F:C9:9F:FF:0F:C1:2B
Authority key identifier: C8:E5:0C:A1:71:34:83:7A:50:D3:06:3D:43:D4:43:38:5A:BE:6F:49
Certificate issuer: /CN=c8e50ca17134837a50d3063d43d443385abe6f49
Certificate serial: 019D6C5412F4F782F4471A3888631688B7C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
Manifest number: 181F
Signing time: Wed 08 Apr 2026 09:02:22 +0000
Manifest this update: Wed 08 Apr 2026 09:02:22 +0000
Manifest next update: Thu 09 Apr 2026 09:02:22 +0000
Files and hashes: 1: KruYfdwnUNYxfXkcEK0pRrgHkqg.roa (hash: UrG6tcE8plAV8A8NaRxXB6Nz6rhzF4jRdCMcfNiMj5Q=)
2: yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl (hash: VVGQwPID5q5sNEK6tEJdNxAC67JxY2VGx83JQHSzjMo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Apr 2026 09:02:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:6c:54:12:f4:f7:82:f4:47:1a:38:88:63:16:88:b7:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8e50ca17134837a50d3063d43d443385abe6f49
Validity
Not Before: Apr 8 09:02:22 2026 GMT
Not After : Apr 9 09:02:22 2026 GMT
Subject: CN=74a44dd269eafc07c6d10591008fc99fff0fc12b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:5e:33:9d:b3:b5:49:e1:2d:d3:2e:af:64:09:
c3:59:69:c4:84:5b:1b:db:ef:5a:c8:4c:a0:ca:c1:
d9:20:e6:2a:c9:98:01:bd:3c:92:43:89:88:c3:93:
22:5a:cd:55:4d:5c:ac:76:9f:7a:9c:22:a0:60:3c:
b2:5b:e1:83:37:ef:b3:cf:40:6e:4b:3c:f5:78:4c:
12:20:6f:7b:9d:08:6d:92:5e:4a:37:b5:94:f1:fe:
0b:6e:60:42:59:16:c8:cc:6c:18:70:9c:7a:dc:d5:
85:a1:8b:06:55:04:1e:f5:f0:57:5a:20:4f:3e:54:
de:05:3b:29:64:20:d2:85:de:75:29:09:dc:2f:74:
c6:14:30:08:52:a0:26:1e:b8:1f:89:e2:b0:7d:71:
02:a9:75:2b:d7:22:df:0d:d0:a0:05:de:ab:4f:5f:
aa:4d:f8:03:54:dc:8b:3f:5a:db:44:5b:4e:05:13:
d2:bb:36:9c:62:0f:95:e9:1b:b5:f1:56:9f:ae:3a:
e8:06:b7:ee:68:40:cc:6e:7f:57:94:5b:c2:d8:01:
41:e4:a8:ff:8c:17:4c:1d:c9:13:28:b7:66:9d:a8:
d9:42:e7:fc:a8:62:29:78:dc:0b:15:4b:c5:be:dc:
44:9d:4f:56:a1:23:72:31:e2:39:c3:d5:77:30:53:
d4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:A4:4D:D2:69:EA:FC:07:C6:D1:05:91:00:8F:C9:9F:FF:0F:C1:2B
X509v3 Authority Key Identifier:
keyid:C8:E5:0C:A1:71:34:83:7A:50:D3:06:3D:43:D4:43:38:5A:BE:6F:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:5f:d6:58:53:2d:36:32:61:7e:55:63:e4:01:f3:f7:3f:0c:
98:c3:cb:1c:17:c0:7e:2f:e8:ee:fa:45:11:ee:88:0c:6d:dd:
44:41:75:31:c0:51:e9:75:c1:c4:47:10:35:f5:ef:81:b5:c8:
16:b6:31:31:b1:81:df:bf:41:cb:27:98:fc:76:aa:76:92:36:
2e:08:20:13:c0:99:59:18:5f:c9:8e:70:d1:79:e7:80:2c:e0:
2f:31:cb:39:aa:8f:59:d6:59:87:ca:3f:82:37:b6:56:0b:bd:
57:eb:c4:c7:78:6d:53:4b:12:36:9b:12:3b:ee:f7:27:cf:04:
45:75:ed:8f:b7:b5:67:f4:f8:07:3a:3a:8c:a9:bc:9c:15:06:
88:d0:9f:7f:eb:ef:23:7b:82:a6:31:6c:a0:f0:91:79:ab:bb:
b1:ed:58:54:35:34:c0:b7:9e:10:68:bf:47:14:14:34:1b:c2:
01:6b:a4:2e:a2:30:21:a9:7a:d8:58:22:b6:f8:c7:7c:bc:61:
d1:40:2f:3d:dc:9f:48:ca:a8:1c:1b:d0:a6:a9:09:8d:80:a7:
66:94:cc:06:39:e7:6c:90:34:b6:bb:a8:89:7c:b1:8c:09:2b:
49:a2:81:20:24:a3:fb:97:ad:9e:ed:84:85:c3:fa:07:13:d1:
83:bc:1c:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 8 16:39:19 2026 by rpki-client