Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
File: yxODRz6KqHJwaPx1LgYOPb9j4O8.mft (raw, json)
Hash identifier: ufFZJd0Q1K92WLbHmQz3LcMJ6Q+o0fpxoIV55yx6nwo=
Subject key identifier: 7A:98:79:80:EF:07:A0:99:6D:8E:AF:53:36:04:34:7E:EF:B6:1B:8C
Authority key identifier: CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
Certificate issuer: /CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Certificate serial: 019CACEBCB9897F94041DEFC0182B8BB73AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
Manifest number: 0A03
Signing time: Mon 02 Mar 2026 05:01:00 +0000
Manifest this update: Mon 02 Mar 2026 05:01:00 +0000
Manifest next update: Tue 03 Mar 2026 05:01:00 +0000
Files and hashes: 1: 153fjxVtV5IdmULjsKFsyho7xsA.roa (hash: sMHTNIGNQvUhkdN5VlDx3F2+I4FUHbgADAQUyA3sCa0=)
2: yxODRz6KqHJwaPx1LgYOPb9j4O8.crl (hash: 2tc1MoR4wPCO2V7lUN1cTrSlyjDhJ1ppMJ5/71U1yfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:cb:98:97:f9:40:41:de:fc:01:82:b8:bb:73:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb1383473e8aa8727068fc752e060e3dbf63e0ef
Validity
Not Before: Mar 2 05:01:00 2026 GMT
Not After : Mar 3 05:01:00 2026 GMT
Subject: CN=7a987980ef07a0996d8eaf533604347eefb61b8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1b:bd:27:71:6f:b0:97:30:5c:dd:6b:e1:61:
e5:3e:e4:6a:ba:08:1a:c8:15:f0:5a:db:21:b1:5a:
fc:71:67:7a:7d:66:2e:d0:b9:07:e2:91:10:c1:64:
51:03:05:83:54:9d:db:6b:45:37:13:e6:1e:fc:ee:
b7:44:13:16:1e:29:1a:b2:dd:b2:e7:af:f8:10:63:
5d:e3:83:58:98:1f:c5:bf:d9:20:c4:e5:2e:87:1f:
b4:a9:d0:55:40:ee:ab:c1:49:5f:87:1c:00:1f:7c:
38:0b:28:df:82:a3:04:d8:e3:e8:69:59:da:91:c4:
8f:df:79:75:66:98:ae:54:0a:33:af:11:47:91:e0:
73:dd:24:05:09:28:8d:8b:a7:78:5e:bd:d9:36:b6:
1b:56:f0:0d:7c:c4:31:ea:17:6b:c4:a2:6d:b8:fc:
df:1d:9d:1a:41:33:c5:ea:43:06:ed:5e:de:75:db:
5c:6e:93:82:5f:67:99:5e:4c:0f:dd:62:2c:c3:8b:
58:ef:2c:80:75:2d:dc:6b:45:a4:c0:5c:4f:c9:21:
82:ef:84:96:32:4d:7d:d0:af:48:9b:78:5e:39:5a:
a2:62:92:06:e4:53:4c:a2:5a:a9:d2:fa:96:99:d8:
3e:9d:17:9f:ff:93:63:78:db:c1:f0:00:1e:5e:04:
6f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:98:79:80:EF:07:A0:99:6D:8E:AF:53:36:04:34:7E:EF:B6:1B:8C
X509v3 Authority Key Identifier:
keyid:CB:13:83:47:3E:8A:A8:72:70:68:FC:75:2E:06:0E:3D:BF:63:E0:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yxODRz6KqHJwaPx1LgYOPb9j4O8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c63c94-e569-41b8-8e2b-d18b09cf3a1d/1/yxODRz6KqHJwaPx1LgYOPb9j4O8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:b9:9f:95:44:5a:98:8b:04:e2:d1:c1:aa:d2:7b:31:0c:67:
cc:46:85:b9:84:a3:db:89:c4:28:a5:c4:c7:d2:d4:ba:b7:fa:
65:8f:15:ea:21:21:17:36:c9:0e:c7:02:88:39:ca:9f:24:35:
ae:73:76:18:63:58:24:64:7c:a5:5c:42:06:4b:d3:7d:d8:16:
5b:d6:ab:08:10:85:7c:b9:95:bf:e7:08:cf:9a:a4:a1:0d:9b:
b7:76:21:0e:63:58:10:76:cd:6a:73:db:19:83:13:99:e6:7e:
fc:cb:cb:9e:80:99:3f:a4:a5:3d:3c:45:f1:42:28:7a:b3:35:
f5:0f:f8:e2:a3:c4:1a:02:f4:69:8b:48:19:72:b3:6c:fc:a5:
9d:51:b1:aa:12:42:c0:b3:7a:80:6c:45:71:65:1f:c4:b0:f0:
08:03:bd:01:4a:bf:69:df:49:e2:cb:7f:ee:c3:04:67:43:b8:
e9:62:cb:0a:18:60:6a:00:66:24:a9:f5:b5:d6:aa:63:5e:39:
03:94:e5:f0:90:58:3f:14:ed:44:35:22:aa:f9:23:2c:dd:0c:
a0:04:3a:4f:cb:4e:30:ff:0f:f8:a9:65:77:19:49:f5:0b:bf:
37:a1:29:c6:54:e4:f1:ba:88:c2:2c:63:f0:34:5e:66:78:80:
a9:ce:12:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZys68uYl/lAQd78AYK4u3OvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNiMTM4MzQ3M2U4YWE4NzI3MDY4ZmM3NTJlMDYwZTNkYmY2
M2UwZWYwHhcNMjYwMzAyMDUwMTAwWhcNMjYwMzAzMDUwMTAwWjAzMTEwLwYDVQQD
Eyg3YTk4Nzk4MGVmMDdhMDk5NmQ4ZWFmNTMzNjA0MzQ3ZWVmYjYxYjhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRu9J3FvsJcwXN1r4WHlPuRqugga
yBXwWtshsVr8cWd6fWYu0LkH4pEQwWRRAwWDVJ3ba0U3E+Ye/O63RBMWHikast2y
56/4EGNd44NYmB/Fv9kgxOUuhx+0qdBVQO6rwUlfhxwAH3w4CyjfgqME2OPoaVna
kcSP33l1ZpiuVAozrxFHkeBz3SQFCSiNi6d4Xr3ZNrYbVvANfMQx6hdrxKJtuPzf
HZ0aQTPF6kMG7V7eddtcbpOCX2eZXkwP3WIsw4tY7yyAdS3ca0WkwFxPySGC74SW
Mk190K9Im3heOVqiYpIG5FNMolqp0vqWmdg+nRef/5NjeNvB8AAeXgRvIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHqYeYDvB6CZbY6vUzYENH7vthuMMB8GA1UdIwQY
MBaAFMsTg0c+iqhycGj8dS4GDj2/Y+DvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXhPRFJ6NktxSEp3YVB4MUxnWU9QYjlqNE84LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9jNjNjOTQtZTU2OS00MWI4LThlMmIt
ZDE4YjA5Y2YzYTFkLzEveXhPRFJ6NktxSEp3YVB4MUxnWU9QYjlqNE84Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9jNjNjOTQtZTU2OS00MWI4LThlMmItZDE4YjA5Y2YzYTFk
LzEveXhPRFJ6NktxSEp3YVB4MUxnWU9QYjlqNE84LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABrmflURa
mIsE4tHBqtJ7MQxnzEaFuYSj24nEKKXEx9LUurf6ZY8V6iEhFzbJDscCiDnKnyQ1
rnN2GGNYJGR8pVxCBkvTfdgWW9arCBCFfLmVv+cIz5qkoQ2bt3YhDmNYEHbNanPb
GYMTmeZ+/MvLnoCZP6SlPTxF8UIoerM19Q/44qPEGgL0aYtIGXKzbPylnVGxqhJC
wLN6gGxFcWUfxLDwCAO9AUq/ad9J4st/7sMEZ0O46WLLChhgagBmJKn1tdaqY145
A5Tl8JBYPxTtRDUiqvkjLN0MoAQ6T8tOMP8P+KlldxlJ9Qu/N6EpxlTk8bqIwixj
8DReZniAqc4SvA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:15:08 2026 by rpki-client