Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
File: 0YHQxAlRpPkA5NndnCDkhWNQkg4.mft (raw, json)
Hash identifier: SA0FY491DujJy3spml8udKAbWxaP9gnSwX6NP3luMls=
Subject key identifier: D6:29:DE:CF:F8:5D:B0:B5:23:91:18:1F:96:6E:2B:F1:EF:54:E9:7A
Authority key identifier: D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
Certificate issuer: /CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Certificate serial: 019DCDF4C37DF76078BF83890B709DAB82D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
Manifest number: 18E2
Signing time: Mon 27 Apr 2026 08:01:03 +0000
Manifest this update: Mon 27 Apr 2026 08:01:03 +0000
Manifest next update: Tue 28 Apr 2026 08:01:03 +0000
Files and hashes: 1: 0YHQxAlRpPkA5NndnCDkhWNQkg4.crl (hash: lyEJ0Fl1O8yBIGZ9+AQt0JaSXv5jPbf4A894rsZerhg=)
2: 6twj1FNGbSdC6GwrHJCaAlK97kQ.roa (hash: ZXy5hFs9BRqqonUgm00rE7vHIrD50csuYB7WxmR/ZMA=)
3: BfkIMDedHvkhA2THdLsjdvt92Lg.roa (hash: ltzWWyb9KbJKCS0qvZNQB+aDHpJjbdvCT6eRcpViW3Y=)
4: coJoVPwD-NPH-ETwi5cG_7WPcf8.roa (hash: GKRZPbLDmw4jESIu5RvOoK1/PXU2kw57mn7Q0tZcbW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 07:32:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:f4:c3:7d:f7:60:78:bf:83:89:0b:70:9d:ab:82:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d181d0c40951a4f900e4d9dd9c20e4856350920e
Validity
Not Before: Apr 27 08:01:03 2026 GMT
Not After : Apr 28 08:01:03 2026 GMT
Subject: CN=d629decff85db0b52391181f966e2bf1ef54e97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f4:64:86:1a:b1:ab:ce:50:48:39:7a:27:76:
23:b4:d3:ee:d5:31:8f:55:0c:6e:f3:12:46:eb:67:
43:fe:1c:7d:1e:77:52:21:35:8e:c7:67:14:91:a1:
d1:cc:b6:f6:7c:1a:10:30:7b:bc:69:51:73:09:e4:
5e:cc:70:b8:69:58:dd:96:76:15:4d:cd:ed:ab:3d:
ed:35:8b:67:30:8c:a2:34:a2:16:86:b8:7c:87:df:
a6:af:bd:56:ac:8f:5f:bf:59:01:7c:37:a6:62:8f:
25:1d:e0:28:5c:47:b1:36:44:2c:3a:4b:90:6c:0a:
d0:91:59:74:2b:14:8a:b1:9d:12:4d:b3:9f:e2:70:
17:95:b4:44:7c:8b:48:0e:05:ef:e9:e9:f2:ce:1b:
9e:33:63:83:d0:bf:14:67:ce:1c:b0:15:db:5c:14:
35:fc:a3:4d:86:d7:b7:f8:11:ab:af:0f:6c:5b:5a:
36:f2:f8:10:ed:22:e2:d8:2b:d8:ba:8c:73:5a:b4:
7b:ee:00:0a:e0:a3:b2:d4:f7:08:e3:a2:2a:07:bd:
71:86:ef:ee:b3:68:d1:7e:1d:f1:65:a3:1b:0f:36:
c5:79:a5:7c:8e:40:15:a2:bc:b7:f4:ab:4a:71:a5:
c8:b3:04:a6:0d:ec:ad:02:72:d4:da:19:2c:63:30:
3a:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:29:DE:CF:F8:5D:B0:B5:23:91:18:1F:96:6E:2B:F1:EF:54:E9:7A
X509v3 Authority Key Identifier:
keyid:D1:81:D0:C4:09:51:A4:F9:00:E4:D9:DD:9C:20:E4:85:63:50:92:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0YHQxAlRpPkA5NndnCDkhWNQkg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/a9d79e-b282-43c1-8b8a-388b81c0c90c/1/0YHQxAlRpPkA5NndnCDkhWNQkg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:6b:4a:a2:d8:2a:16:06:72:c0:ce:80:2c:eb:7e:e7:cb:22:
b7:3a:38:83:fc:53:4e:99:f8:27:9e:a3:12:7b:4f:b7:40:db:
26:d7:b2:12:9c:26:c3:43:a3:73:85:d1:52:39:33:9c:ac:06:
72:cd:ac:f1:29:19:33:e8:ef:7f:c5:c3:1a:08:64:7a:ea:9c:
fd:5f:28:45:25:df:e2:ef:17:c8:b9:c0:8e:fa:5e:15:0e:97:
de:a9:17:e0:8b:2d:e2:7b:96:0e:f0:86:4e:5b:c4:2b:ab:7d:
35:8d:ad:b3:bb:b6:94:b9:75:77:88:e8:e0:e7:42:e3:0b:ae:
10:74:af:94:65:85:84:01:02:11:13:61:7c:fd:a1:ed:6a:95:
6e:48:4f:73:46:18:64:67:96:a5:d5:70:1d:83:0a:6f:15:50:
d7:35:8e:37:96:35:84:d0:1d:79:29:ce:f8:c8:8c:5f:00:a4:
40:66:be:c2:fa:e3:c6:fe:aa:47:f6:83:95:e5:8c:45:06:9e:
e2:57:06:78:c4:38:26:5d:fc:2e:48:4a:ff:b6:01:5b:da:ab:
a3:49:73:0b:90:2a:78:c0:1a:86:38:9b:1e:c9:2e:36:fe:42:
d2:81:5a:e3:4c:56:de:76:f8:d9:76:84:0f:23:76:e3:e8:03:
35:2e:30:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:55:04 2026 by rpki-client