Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
File: yF0BtEKUbhkkMT1WTzG35C4kVec.mft (raw, json)
Hash identifier: mNQntsjdqlexjJ5tIczG242r4l52jHo3iJED2TF73JM=
Subject key identifier: FF:80:65:A8:0D:E1:37:7B:53:09:0D:FF:31:14:9F:F5:D2:55:B8:63
Authority key identifier: C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
Certificate issuer: /CN=c85d01b442946e1924313d564f31b7e42e2455e7
Certificate serial: 019D9AE27956560D9B3C62F88367695865F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
Manifest number: 0D44
Signing time: Fri 17 Apr 2026 10:00:26 +0000
Manifest this update: Fri 17 Apr 2026 10:00:26 +0000
Manifest next update: Sat 18 Apr 2026 10:00:26 +0000
Files and hashes: 1: sKXRq8aEnFIgbr4b51dpoMmQO8Y.roa (hash: c2iR1V9JRLqe/KQCQ1Fbh3FmzQaok+nemeB5OzyBRRk=)
2: yF0BtEKUbhkkMT1WTzG35C4kVec.crl (hash: 2Jko7nRqnHfn87vesYubuawStHxD+YlF6gk1jBp7Xlk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:79:56:56:0d:9b:3c:62:f8:83:67:69:58:65:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c85d01b442946e1924313d564f31b7e42e2455e7
Validity
Not Before: Apr 17 10:00:26 2026 GMT
Not After : Apr 18 10:00:26 2026 GMT
Subject: CN=ff8065a80de1377b53090dff31149ff5d255b863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:94:62:d9:e9:e4:52:74:2a:f8:05:df:81:e5:
bd:8a:b7:c0:f2:1c:e9:fb:79:f9:d0:93:72:bb:aa:
6c:03:50:6d:7e:c3:76:b8:42:56:0e:c6:bb:b0:6a:
b1:42:78:6f:7b:3c:10:b7:74:b7:3d:4e:26:ac:7a:
c1:35:5e:35:e5:a9:fd:b0:5d:c6:03:a0:8b:3f:62:
7d:13:af:01:2b:09:ab:34:33:90:20:c1:6d:c3:05:
b7:31:f3:47:6a:6c:e3:2a:19:af:56:67:58:77:a1:
bb:7a:45:c6:04:d4:de:20:31:c0:8b:30:89:a5:fc:
30:0c:d3:21:c0:40:6f:71:89:c4:2e:27:6d:d5:f2:
ed:60:44:0a:83:a1:77:c5:41:80:18:19:51:3b:45:
d5:a0:30:b4:3d:e3:f9:93:e0:58:78:d1:da:af:c1:
d8:33:9d:d9:19:61:64:3c:88:f2:47:82:91:66:14:
b9:48:d4:9a:26:37:91:7a:67:c3:ae:ca:db:81:b0:
e0:6e:0c:41:7a:1f:3c:55:d3:59:bb:49:e8:9b:a2:
f8:19:93:b1:61:ae:1a:66:d9:85:8f:f4:a8:8d:b6:
11:8f:64:90:78:32:00:d8:08:ee:d3:5b:5b:c1:24:
03:67:97:09:8b:13:7f:85:43:a8:61:cb:df:fc:d0:
09:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:80:65:A8:0D:E1:37:7B:53:09:0D:FF:31:14:9F:F5:D2:55:B8:63
X509v3 Authority Key Identifier:
keyid:C8:5D:01:B4:42:94:6E:19:24:31:3D:56:4F:31:B7:E4:2E:24:55:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yF0BtEKUbhkkMT1WTzG35C4kVec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/550873-d063-420d-a051-16b97b9a885e/1/yF0BtEKUbhkkMT1WTzG35C4kVec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:86:ec:8b:50:61:10:a1:48:e5:38:91:e5:c3:bb:4a:39:b5:
85:1c:23:37:ea:f9:12:08:3f:01:5a:68:d6:c0:8d:16:70:76:
85:c4:15:90:2c:64:83:12:52:1e:95:0f:17:3d:19:96:26:42:
49:d4:db:17:af:ce:24:4d:d7:32:7b:08:e4:26:ae:14:bd:6e:
18:94:57:db:7e:25:ea:d4:5b:df:34:29:66:3a:46:80:af:33:
90:0a:74:7a:c8:06:4f:10:d3:6a:90:cd:ee:fd:1e:92:d1:e0:
4b:82:a8:f9:51:dd:ed:94:bd:5a:34:8e:58:58:20:b8:d4:b3:
a4:a7:b1:a5:00:21:7f:78:bc:b9:28:43:0e:a1:b1:e3:e6:eb:
33:97:38:d8:5a:ef:ef:ea:d2:43:4a:a3:95:a3:4c:99:34:d0:
5e:1f:42:bf:fb:2c:0f:a0:fe:71:c8:0a:a9:3b:51:4c:20:25:
90:59:70:da:d4:bd:7c:98:5d:fb:c2:f1:6b:04:43:51:b4:f5:
06:58:90:da:d6:7c:d7:e5:ae:16:90:65:e4:f6:da:91:df:65:
4d:60:8b:42:66:b2:91:5b:3a:38:b7:34:38:bd:bb:70:31:7f:
36:b5:31:39:b8:83:e8:14:35:11:25:12:bc:cb:5b:c3:f0:2b:
12:37:5c:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:51:48 2026 by rpki-client