Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
File: yQs5SsYzN2B_obsOq6EUU6gx85g.mft (raw, json)
Hash identifier: 8AyiCpy5B66yVi4lw268Kf4BqAPdg9lNFW9gpPGBU70=
Subject key identifier: 4D:BB:34:FE:64:DA:9C:46:65:B2:91:99:5F:1E:18:05:4D:2E:41:17
Authority key identifier: C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
Certificate issuer: /CN=c90b394ac63337607fa1bb0eaba11453a831f398
Certificate serial: 019D9A071E62ADDE9BB5E0BFBCBA391CDB1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
Manifest number: 0F60
Signing time: Fri 17 Apr 2026 06:00:50 +0000
Manifest this update: Fri 17 Apr 2026 06:00:50 +0000
Manifest next update: Sat 18 Apr 2026 06:00:50 +0000
Files and hashes: 1: XsUKN2cOhLRHhR3AtKfxWQhi9jo.roa (hash: 6oB/bvwt2D2mFpVBEQFtPNnqH7Wf192r6bul35x6h9A=)
2: yQs5SsYzN2B_obsOq6EUU6gx85g.crl (hash: t0JrfjNTeeVfKEr/WRSIJP1twfsfZqP6aGReOBoDXJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:1e:62:ad:de:9b:b5:e0:bf:bc:ba:39:1c:db:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c90b394ac63337607fa1bb0eaba11453a831f398
Validity
Not Before: Apr 17 06:00:50 2026 GMT
Not After : Apr 18 06:00:50 2026 GMT
Subject: CN=4dbb34fe64da9c4665b291995f1e18054d2e4117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f2:74:ce:3b:7b:08:d9:fd:78:9c:89:19:49:
86:fb:5c:f3:9d:42:30:55:17:e5:71:5e:86:49:31:
d8:aa:14:88:38:f9:27:97:4e:51:29:9a:7b:f9:0c:
a9:a0:ba:6f:0d:5e:49:d1:13:4f:5e:59:f4:7e:d9:
b8:5c:84:db:2e:22:4b:1d:f1:b3:f9:95:72:f7:66:
cb:1d:40:fa:28:7b:c7:fc:0e:a3:4c:be:a4:2c:83:
20:c0:ec:97:3f:63:0d:85:f7:b5:55:67:c4:aa:17:
3b:6f:d1:e8:b4:27:22:6c:13:99:a5:f8:26:fb:83:
b9:b4:11:60:81:44:06:da:29:bd:d2:7d:e7:cf:ad:
2e:4a:c5:fa:53:70:fc:5a:0a:a6:d4:43:c8:75:f0:
9d:6f:f3:98:c0:1e:d5:e0:d5:23:64:d0:54:12:63:
b7:ba:01:6a:3f:12:be:dc:a7:eb:84:b6:8a:c8:bd:
51:5b:31:33:fe:95:34:45:27:51:6f:0e:14:4b:37:
42:63:c7:ac:4e:08:21:9e:5b:72:f4:8a:ed:9d:76:
79:07:d5:01:70:eb:d8:d9:ce:8a:a6:87:52:20:ec:
a0:c6:03:57:42:24:14:2d:5e:56:97:b4:b9:1e:79:
85:bb:6f:cd:3e:f0:4d:d6:e3:69:9f:cb:d5:d2:73:
d4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BB:34:FE:64:DA:9C:46:65:B2:91:99:5F:1E:18:05:4D:2E:41:17
X509v3 Authority Key Identifier:
keyid:C9:0B:39:4A:C6:33:37:60:7F:A1:BB:0E:AB:A1:14:53:A8:31:F3:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yQs5SsYzN2B_obsOq6EUU6gx85g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/7d784b-6639-4bc0-9ab9-1a200e41b006/1/yQs5SsYzN2B_obsOq6EUU6gx85g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:37:f8:9e:03:24:b2:b5:7f:0a:5e:be:29:f1:2f:5d:17:10:
d3:d3:2e:cc:90:bd:45:67:04:44:da:50:b3:ce:b1:8b:f3:6f:
c5:dd:55:d5:b2:2b:2a:c2:91:18:68:9f:73:75:28:7d:d9:30:
99:7d:25:67:01:e1:9d:38:45:eb:a7:b2:bd:1a:fc:a3:55:6d:
ab:9b:73:f9:6e:de:c5:60:b8:ae:2e:a1:5c:a2:67:ce:5c:b2:
fa:5a:d3:0c:b0:08:ca:c1:b5:85:30:fc:7f:08:3a:17:65:e6:
65:ce:98:31:ed:b7:1d:5c:b9:47:22:b0:3e:1a:50:6f:52:20:
e3:1e:20:b2:a7:6d:23:ae:a7:be:29:dd:45:18:10:19:02:35:
53:26:cf:75:c3:f6:03:29:b6:09:ee:23:0b:35:d2:98:14:f7:
88:bc:c3:2a:35:b3:6c:3a:98:3f:f1:9a:a9:9d:e6:95:c5:67:
53:e4:f3:7c:1b:9d:b5:92:64:c6:34:8d:66:61:81:b9:61:38:
9b:f5:c7:b9:c4:20:54:a9:62:1b:da:ea:28:97:47:08:49:bb:
b8:72:b2:ed:5c:1b:8c:55:b4:b6:ea:06:bf:ea:d6:5e:4c:9f:
0e:ab:23:ce:20:24:bc:76:83:7f:ba:87:3e:7e:0c:0e:1f:50:
ec:a1:b6:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:43:48 2026 by rpki-client