Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
File: yxODRz6KqHJwaPx1LgYOPb9j4O8.mft (raw, json)
Hash identifier: fPX49P9+/SZlZlnBhiQnPCUfsriE3j2dXR0r7fFERYE=
Subject key identifier: 75:28:EF:23:87:67:7C:A3:C2:5F:B7:92:44:3D:1B:4C:BE:2F:C4:E7
Authority key identifier: CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
Certificate issuer: /CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Certificate serial: 019D9A748DD563F60F708547B37150FDA2C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
Manifest number: 0A7E
Signing time: Fri 17 Apr 2026 08:00:22 +0000
Manifest this update: Fri 17 Apr 2026 08:00:22 +0000
Manifest next update: Sat 18 Apr 2026 08:00:22 +0000
Files and hashes: 1: 153fjxVtV5IdmULjsKFsyho7xsA.roa (hash: sMHTNIGNQvUhkdN5VlDx3F2+I4FUHbgADAQUyA3sCa0=)
2: yxODRz6KqHJwaPx1LgYOPb9j4O8.crl (hash: x3JnlvIYIAAR5zYIHNExPq9FNVyuexIdmP2t5pBT7bM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:8d:d5:63:f6:0f:70:85:47:b3:71:50:fd:a2:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Validity
Not Before: Apr 17 08:00:22 2026 GMT
Not After : Apr 18 08:00:22 2026 GMT
Subject: CN=7528ef2387677ca3c25fb792443d1b4cbe2fc4e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:7e:72:10:7d:6d:46:6a:d2:25:ed:ba:01:da:
a9:bf:a5:f5:80:f8:91:fd:7e:6a:f1:c2:ca:0b:2b:
51:cc:4b:bf:7d:a2:79:e9:0d:41:e3:03:61:87:1e:
12:e0:b4:f7:d9:9b:5e:be:3b:6c:3f:9a:bd:87:c2:
80:85:22:63:f8:a9:31:ef:4c:d8:d7:b5:e3:53:7c:
71:5e:1d:67:ad:f7:83:c2:55:0b:bd:18:20:15:e4:
64:38:85:ea:78:a4:0b:f2:89:21:f5:95:b0:b2:91:
0d:f8:2d:c1:97:1f:39:29:62:5b:8d:35:3f:1b:c7:
ed:be:41:82:9a:43:b4:6a:b8:6d:ca:dc:9d:a5:e6:
42:b0:42:4c:09:01:0b:44:15:d7:c0:17:b4:f0:32:
85:46:02:83:d0:4e:bf:02:24:f0:1f:06:e5:df:0a:
11:dd:d5:70:eb:f1:6c:27:b7:d8:68:14:38:44:22:
f6:a2:94:08:da:4e:15:72:5d:4d:81:56:01:2c:ea:
ad:6c:1e:96:95:51:06:26:29:0a:9e:05:30:5a:e0:
4e:c9:a8:bb:b7:39:2c:9c:66:c5:77:85:c6:51:35:
49:6c:38:c9:54:d9:3d:ea:94:11:94:13:a1:72:1f:
a3:8b:48:86:5c:69:a9:e9:a7:c5:9f:93:73:f8:2b:
d7:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:28:EF:23:87:67:7C:A3:C2:5F:B7:92:44:3D:1B:4C:BE:2F:C4:E7
X509v3 Authority Key Identifier:
keyid:CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:89:a3:b8:4c:06:18:d5:b2:a8:1d:77:d8:70:67:b6:d1:d6:
de:be:a4:70:cc:f0:51:05:9b:b2:18:af:c7:4d:7c:04:ec:96:
d5:62:8a:e4:ad:89:32:b9:26:33:5d:2e:da:20:ff:6f:3e:06:
0a:74:05:62:16:ca:f3:c0:9d:c3:0f:c2:81:9a:1e:ce:3e:f8:
f8:d1:c2:ed:98:6b:cc:ab:b6:ae:18:b0:e8:86:b4:02:a6:a3:
1c:63:db:05:6a:5b:42:72:5d:89:c7:b7:a6:b7:a6:08:33:3b:
b5:92:ac:d4:23:31:29:56:92:63:a0:01:20:0a:14:b5:93:dc:
8d:0c:7e:d6:ff:27:6b:35:06:9a:7a:7e:e6:4a:ed:aa:72:c2:
c3:5d:72:1e:e4:45:80:a9:68:68:6d:a6:3c:a4:21:0a:d3:3f:
ca:39:e6:9a:20:9c:4a:18:ab:f8:74:1e:c5:c7:0a:9f:a7:29:
e6:67:96:d7:43:3c:c5:6d:2c:83:1b:f5:90:01:ee:ea:34:aa:
23:41:5e:0d:64:93:5a:23:2c:bd:90:1b:12:96:a8:db:24:ae:
d9:82:5f:73:37:1c:f0:2c:d5:72:26:15:cd:a4:1d:59:48:05:
bd:f0:6e:dd:6a:03:bb:9e:f0:21:e7:7c:7d:44:14:5c:9c:11:
43:ad:89:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:53:06 2026 by rpki-client