Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
File: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft (raw, json)
Hash identifier: KeswAbwRTqIWcv7m4Fo2EZTuv2xKtCpqO4eHVkzA5wg=
Subject key identifier: 78:16:40:5E:78:82:0D:33:10:AC:89:1B:4E:C2:B3:BF:5B:DD:C8:5B
Authority key identifier: CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
Certificate issuer: /CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Certificate serial: 019D98BD9F3D64874A0B0714AAE96FCF932C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
Manifest number: 0575
Signing time: Fri 17 Apr 2026 00:00:57 +0000
Manifest this update: Fri 17 Apr 2026 00:00:57 +0000
Manifest next update: Sat 18 Apr 2026 00:00:57 +0000
Files and hashes: 1: mQ0ACAyJhS24Ge7JfejryYjhrr4.roa (hash: vb4PW+qjvJj8W9hO5gMvw1SrDAuFxyDok45TJihaRuk=)
2: y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl (hash: DrYRQ1eVowJLEbI0vQWhniR8j8/6nDJ+3rPbRpkaehs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:9f:3d:64:87:4a:0b:07:14:aa:e9:6f:cf:93:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbb525e263a95b1652064bdff8964d4bf62b533d
Validity
Not Before: Apr 17 00:00:57 2026 GMT
Not After : Apr 18 00:00:57 2026 GMT
Subject: CN=7816405e78820d3310ac891b4ec2b3bf5bddc85b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d6:6d:a4:0a:50:a6:13:8c:4f:db:3b:05:75:
89:f4:b9:70:78:4f:63:fe:07:07:8e:06:90:fb:e1:
4c:d5:f8:a2:ca:e6:a6:9d:a7:ec:e7:55:f4:0a:e9:
9b:05:6a:06:dc:d2:c7:e5:1b:fb:ab:76:cd:61:4f:
ce:6e:6a:ad:d3:78:85:17:21:4d:54:5d:6c:e9:f5:
9d:6d:76:16:cc:35:21:2b:55:e3:c3:18:3e:2d:ea:
36:dc:17:9e:17:7a:ae:ca:ac:8c:10:b9:f2:4a:c3:
53:a1:29:ef:0f:0d:8e:42:3e:25:d5:75:12:1c:6d:
0f:37:7c:85:f9:db:75:58:89:68:2e:b6:b6:0d:fb:
87:3e:46:97:19:7a:b1:30:db:df:74:40:08:f2:a8:
10:46:b3:38:fd:25:11:97:b6:76:a7:e8:7b:03:a2:
67:33:26:dc:0a:56:22:d7:14:b2:34:ec:2b:8d:be:
fd:84:2f:30:9c:45:8b:88:51:aa:96:72:5c:4a:98:
2b:18:f5:b6:e8:47:e7:e8:4a:9b:c9:67:85:85:d8:
ef:df:92:0c:5a:0a:ac:58:a7:8d:6d:c8:b8:30:0a:
50:29:e8:a1:61:ae:32:27:50:ad:e2:f7:19:b4:fc:
d8:5f:18:78:47:ad:87:4c:6c:99:d8:03:68:b9:98:
ee:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:16:40:5E:78:82:0D:33:10:AC:89:1B:4E:C2:B3:BF:5B:DD:C8:5B
X509v3 Authority Key Identifier:
keyid:CB:B5:25:E2:63:A9:5B:16:52:06:4B:DF:F8:96:4D:4B:F6:2B:53:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/bd7209-44e9-423e-84a4-b89dc4fd6ee0/1/y7Ul4mOpWxZSBkvf-JZNS_YrUz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:48:92:0f:8b:27:b7:a6:2f:e4:31:06:f2:ac:2a:c1:4d:82:
f2:d8:88:ec:d2:d5:ed:1e:d0:11:a9:9a:7a:2f:2f:17:ca:fc:
9c:a1:de:6c:70:2b:b8:df:5f:7b:39:6d:a2:ae:e5:3f:20:69:
46:69:96:68:62:8a:04:bb:e4:5d:02:f4:01:0d:51:a7:bd:91:
ae:23:54:af:0d:17:18:79:ce:ad:51:04:34:cf:76:52:f5:c4:
ee:ac:12:56:57:d4:90:e6:f1:1d:19:8e:a3:ba:d4:f4:7b:85:
64:20:ea:e5:3a:60:30:f2:fe:23:28:8b:a7:82:07:a4:20:d4:
07:33:de:2d:e8:3a:5c:6d:d2:4d:fe:01:92:37:e6:89:0f:7e:
e6:31:54:24:80:98:75:0d:f0:39:16:71:c7:a9:4b:bb:b3:4a:
a0:77:fa:cd:a4:05:fe:02:e8:d2:bf:08:f8:e7:02:b3:cd:06:
c8:8d:82:f0:4e:24:e8:65:5f:f8:9a:1e:62:15:30:85:7d:05:
6f:da:30:1e:9e:a1:eb:13:72:6a:bd:75:a5:db:b5:48:a8:5b:
57:73:6f:4f:fc:6c:06:0f:b7:76:85:cf:5a:92:6d:5d:78:4d:
e2:2c:af:e0:99:69:b8:be:ed:b6:67:28:07:1c:1a:37:df:07:
ff:68:d9:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:34:33 2026 by rpki-client