Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
File: YhoTCpDLA344A_6gv0ZaoIL-NJg.mft (raw, json)
Hash identifier: agKT8dccneazXQhxIXREClDOJ9dq7jn92Nsebp4Kku8=
Subject key identifier: 07:97:28:CB:B1:68:7C:DD:0F:AC:E2:8E:EF:C3:6A:7B:2C:4D:F1:48
Authority key identifier: 62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
Certificate issuer: /CN=621a130a90cb037e3803fea0bf465aa082fe3498
Certificate serial: 019E1D59B44C7CFFD109629569EE13DCB596
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
Manifest number: 072E
Signing time: Tue 12 May 2026 18:01:18 +0000
Manifest this update: Tue 12 May 2026 18:01:18 +0000
Manifest next update: Wed 13 May 2026 18:01:18 +0000
Files and hashes: 1: Rmbqki6sfeVONmSCUKVbSwnLV2w.roa (hash: m02OGs1ERDq2Tep5VBBDirUwK9M85zv/SGcl5/T9Gng=)
2: YhoTCpDLA344A_6gv0ZaoIL-NJg.crl (hash: 9XDE75mqPc67mRP9/RFfgfKG17wdamXfTwpJmxvYXV4=)
3: YrjDjaI3_Q6KPQ90f8RoYBEvTqI.roa (hash: VmD17BnA3G7W1dMkZraFPy0h1sdRJ/jQerJj3HVgUI8=)
4: mEMBpqCiAZX-66IM2v28OLBYmaU.roa (hash: D0q/tQQJTMQWefAkqZBJ1Tlw8AdCPKqxL86ZtoZ1fgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:b4:4c:7c:ff:d1:09:62:95:69:ee:13:dc:b5:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621a130a90cb037e3803fea0bf465aa082fe3498
Validity
Not Before: May 12 18:01:18 2026 GMT
Not After : May 13 18:01:18 2026 GMT
Subject: CN=079728cbb1687cdd0face28eefc36a7b2c4df148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:26:56:cd:2f:cc:b9:26:cf:5f:b0:f5:a1:20:
aa:74:62:e9:32:82:4b:b9:f0:cd:ef:c9:0f:ff:5c:
8b:97:df:e3:be:cb:d4:c1:3b:ff:21:32:70:c5:da:
e1:30:25:32:ae:aa:8c:88:47:27:a9:17:53:a6:7b:
1b:8d:ee:5b:24:28:a4:0f:61:ec:98:0d:9f:f3:04:
9b:81:fe:95:45:ca:9d:57:da:83:f2:e7:47:b9:c5:
fc:dd:a5:91:e5:64:71:5e:72:e8:9a:f1:cb:ab:11:
7d:d8:57:52:a1:05:67:7c:f4:5d:d6:52:c9:7e:47:
9f:89:bd:a0:68:db:66:a3:dc:ea:cc:ee:88:ab:ae:
e1:14:c7:7d:1d:94:a6:ac:25:89:2a:63:11:46:a2:
59:71:31:3f:b7:0f:e1:ca:2a:b6:6b:66:6b:c3:2a:
d9:91:78:f5:bd:47:37:12:d3:30:19:38:75:57:d5:
ab:25:c2:e9:89:5c:7b:0e:2a:08:31:24:4a:eb:c5:
5d:87:3c:52:da:bd:10:54:85:cb:dd:00:d3:f0:4c:
2e:7d:9f:8a:5d:af:f0:32:2e:50:37:a3:23:63:9d:
42:bb:3e:00:80:ac:12:5d:1e:2a:32:fa:4f:3b:35:
61:0e:75:92:08:f9:95:6e:57:f1:1a:d6:85:d0:0b:
49:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:97:28:CB:B1:68:7C:DD:0F:AC:E2:8E:EF:C3:6A:7B:2C:4D:F1:48
X509v3 Authority Key Identifier:
keyid:62:1A:13:0A:90:CB:03:7E:38:03:FE:A0:BF:46:5A:A0:82:FE:34:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhoTCpDLA344A_6gv0ZaoIL-NJg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/21492f-1663-409d-bfb2-6a0451c49d4d/1/YhoTCpDLA344A_6gv0ZaoIL-NJg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:00:86:22:25:4c:24:fb:2a:ce:27:26:10:63:d7:91:d4:6a:
51:9f:e3:18:1c:b3:2b:bb:1a:3a:7a:4e:56:ac:00:0e:61:87:
b1:0c:78:d5:a2:03:8d:a4:a9:d0:3f:e7:33:89:b5:91:0e:4b:
14:b8:93:91:2d:7d:73:6c:c8:9a:91:e1:f1:60:ff:09:2d:42:
e9:e3:2d:09:71:71:24:37:94:65:88:8e:51:da:0f:f2:66:f2:
da:98:d3:1a:4e:d5:62:05:b4:4d:ce:0b:b0:a9:42:38:25:25:
c7:a2:5b:fb:b0:66:22:3f:75:00:c6:8f:7c:9e:09:fa:f4:e2:
41:81:dc:84:9f:b5:7b:bd:4d:a7:b1:b7:8a:b5:98:82:1b:8e:
1d:6c:77:4f:3b:1d:26:38:d5:38:f2:a4:62:1d:60:6d:9e:f7:
7c:47:b3:b1:1c:d6:a2:88:8d:f7:32:a8:84:6a:0e:52:af:7d:
1d:55:d0:b6:7d:a7:31:a2:ca:12:f9:90:1b:50:56:93:d6:dd:
b5:fc:c8:72:db:29:b4:c2:fd:e4:cc:71:42:da:dd:74:81:fe:
6d:82:8f:bf:d3:ae:fc:3f:df:6c:13:e3:9d:28:4b:70:36:8c:
1b:4c:bd:d3:de:b8:bc:af:19:09:9b:45:37:05:21:f6:d9:cb:
15:20:24:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:23:26 2026 by rpki-client