Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
File: YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft (raw, json)
Hash identifier: 57MkQpFrIrr9v9BZ2jW7MCShw1fQcQS/CDGUOfl4nPA=
Subject key identifier: A1:9B:1B:02:A7:68:67:64:82:81:FA:26:B2:D2:0F:1B:CA:CA:5B:C3
Authority key identifier: 61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
Certificate issuer: /CN=61041121ccc6e65d933961fd572d59e261f21a31
Certificate serial: 019DCE627D4BEBF57F927D3F8E4E780B7A46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
Manifest number: 18DE
Signing time: Mon 27 Apr 2026 10:00:54 +0000
Manifest this update: Mon 27 Apr 2026 10:00:54 +0000
Manifest next update: Tue 28 Apr 2026 10:00:54 +0000
Files and hashes: 1: 8x9EixpS_cTo1YUsFO5RBhE9yQg.roa (hash: H+557dvreWM3Tp/NNdorNLcHs2h/JJEHvmmY5yieUec=)
2: YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl (hash: r0S69sZTVg1LNTL77k1hDJlZgYduTQ04RcJT9ibbrks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:62:7d:4b:eb:f5:7f:92:7d:3f:8e:4e:78:0b:7a:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61041121ccc6e65d933961fd572d59e261f21a31
Validity
Not Before: Apr 27 10:00:54 2026 GMT
Not After : Apr 28 10:00:54 2026 GMT
Subject: CN=a19b1b02a76867648281fa26b2d20f1bcaca5bc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b4:d7:7c:a0:18:d8:8d:ad:63:d7:ab:a3:d1:
34:51:57:0c:c9:fc:f3:47:0e:35:d4:bb:03:08:3e:
a8:77:73:e5:ec:88:33:e9:63:00:f9:1a:b6:67:be:
59:be:55:f5:7f:8a:d5:39:4d:3f:53:11:71:38:16:
06:b9:68:0b:00:05:3c:7d:e0:d5:c2:1d:db:0b:af:
52:91:1b:ad:3c:72:c0:4d:ed:d4:be:ec:52:79:4a:
08:7f:c4:85:17:cf:57:52:07:ac:08:4c:9a:71:c2:
4b:3e:02:28:f5:ed:c6:59:55:f9:3e:f9:9f:6c:de:
cb:e2:46:ff:3e:4b:12:cc:5c:cc:a4:c8:fe:7b:ae:
cd:77:ea:8a:79:5d:52:ac:69:66:0e:52:57:87:6f:
48:b6:76:9c:03:9c:25:e3:f4:5c:45:62:92:f7:08:
85:02:27:23:1c:21:d3:29:80:7d:fb:eb:78:51:52:
c8:c3:1e:b5:d0:32:6d:dd:7b:11:47:a5:47:9c:33:
94:9a:a4:16:7d:5e:55:2d:ae:fd:db:c2:0d:b4:e0:
ae:bc:74:1a:48:e8:f2:d7:04:42:12:10:0d:22:b4:
f5:ed:a1:6d:1d:ff:a3:80:69:e2:7c:21:39:ec:7a:
46:7e:13:1a:f9:3c:b7:4a:58:fb:64:24:87:da:e3:
a5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:9B:1B:02:A7:68:67:64:82:81:FA:26:B2:D2:0F:1B:CA:CA:5B:C3
X509v3 Authority Key Identifier:
keyid:61:04:11:21:CC:C6:E6:5D:93:39:61:FD:57:2D:59:E2:61:F2:1A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/383be6-7c31-4dca-b3c1-dba6d7594c19/1/YQQRIczG5l2TOWH9Vy1Z4mHyGjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:a6:4e:19:40:78:14:b4:f9:9e:16:03:a7:45:20:97:24:de:
a0:bb:25:3e:9e:00:2c:bd:bb:af:68:a9:d8:d8:c4:8d:23:19:
c9:ee:4c:19:43:50:30:70:c3:2f:ff:a6:56:48:a5:1d:24:3d:
a5:bc:98:f9:db:40:de:e7:de:f4:dc:5c:d0:be:8b:6a:f5:ca:
31:d4:e5:fb:08:e1:f2:3a:8b:56:fc:75:2e:51:8f:99:ac:42:
f5:e1:53:3d:31:5c:4b:6e:b7:26:49:46:1a:2d:ca:81:de:b5:
dc:b8:58:63:51:13:6c:5d:7a:9d:88:45:05:65:57:21:e9:76:
c4:49:87:3d:4c:3b:cf:69:f2:13:6d:dc:7e:e5:98:e5:62:2a:
dd:7a:8b:fc:e0:2c:4d:00:0f:63:48:d3:88:10:ad:9b:de:15:
4c:cb:08:2e:c6:30:2d:d6:6a:7e:c2:fd:fa:82:37:a4:0e:82:
e2:06:8d:41:d4:b6:74:1d:62:25:45:c0:68:1a:b8:8a:72:7e:
71:6f:03:e5:ab:e2:79:fc:8c:03:a3:bf:e7:21:14:7b:2a:84:
95:10:77:e1:9c:90:b9:2c:34:90:3d:d4:32:ff:5b:c0:cc:4a:
95:5e:69:b4:ef:be:9b:89:1c:56:6a:fe:9c:44:eb:19:ec:3f:
90:98:ac:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 16:13:32 2026 by rpki-client