Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
File: yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft (raw, json)
Hash identifier: Wln7pz/Gkj7l/RhuCAU2fnL7utwn6UjS7LqetfLPJ9Q=
Subject key identifier: B3:7E:82:25:FC:6B:19:EA:0B:BD:C2:96:50:00:34:B0:54:FF:4D:EA
Authority key identifier: CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
Certificate issuer: /CN=cb36180ab4542d6eee66d9f99030df71236ce264
Certificate serial: 019D9A072DDBD0343BA2C96F5FD86B4ADD2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
Manifest number: 1709
Signing time: Fri 17 Apr 2026 06:00:54 +0000
Manifest this update: Fri 17 Apr 2026 06:00:54 +0000
Manifest next update: Sat 18 Apr 2026 06:00:54 +0000
Files and hashes: 1: HNYjnMa8XonNqZQ0AY5BlHwMzX8.roa (hash: 93bbzx6/nbiayVdplAT1nOdB7pkJO7+NMwUpbbLpb2Y=)
2: yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl (hash: 0cnO27LGT7PgHQjpI3zG0i4bD8bZyDXvmlA6Nzgrf1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:2d:db:d0:34:3b:a2:c9:6f:5f:d8:6b:4a:dd:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb36180ab4542d6eee66d9f99030df71236ce264
Validity
Not Before: Apr 17 06:00:54 2026 GMT
Not After : Apr 18 06:00:54 2026 GMT
Subject: CN=b37e8225fc6b19ea0bbdc296500034b054ff4dea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a6:72:17:ab:82:95:da:e0:01:0b:ce:44:55:
65:0a:2a:2d:da:b3:7a:18:40:bb:f3:f7:e2:75:88:
88:71:48:2b:50:2a:99:fe:a6:75:32:0d:eb:66:07:
27:b3:a7:1f:95:e9:af:e9:e6:b4:68:21:29:c8:b2:
8a:fa:7d:92:2f:1f:e2:c4:c4:cc:14:3a:5a:f3:d6:
2c:cd:19:d5:41:12:86:35:e3:e8:07:0b:d9:cc:00:
52:46:0c:a8:b3:97:48:57:fb:d1:92:9b:11:b9:d6:
64:e9:de:35:e9:16:57:b5:4c:ef:36:2e:15:ed:5b:
6c:dd:85:aa:93:04:cb:11:ff:74:65:8a:59:23:45:
45:cc:9d:2a:a3:ac:d0:79:39:da:d3:ff:e1:c9:4f:
4f:d3:2e:e4:73:f7:16:76:dd:a1:cd:66:e9:b1:49:
ba:7e:2c:0c:ea:d5:a0:32:be:2d:b6:3e:ff:59:30:
b7:ec:d5:a4:fa:11:73:c5:d4:cf:9d:c8:1b:7b:0a:
c4:6e:7c:23:3c:b6:c2:bf:25:cf:7f:f2:94:71:65:
96:38:32:f5:bf:11:44:51:84:b5:d1:2e:07:fa:3a:
88:4b:00:fd:b0:59:ff:35:0b:72:3e:c9:c4:28:aa:
ed:e9:e2:b9:78:35:86:2f:32:7c:2c:c4:d6:45:70:
80:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:7E:82:25:FC:6B:19:EA:0B:BD:C2:96:50:00:34:B0:54:FF:4D:EA
X509v3 Authority Key Identifier:
keyid:CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:49:db:cf:ae:74:4c:19:a1:f7:8f:91:b8:04:06:3e:21:3c:
97:65:0d:ce:10:f4:7d:91:04:f3:85:0b:ae:1b:f9:8f:68:9d:
42:0c:70:48:28:19:25:4d:9e:5d:c6:8d:7c:55:a5:3e:d1:a6:
b5:5c:c4:b3:d8:ce:36:ba:66:1b:0e:1b:8d:be:2b:83:c3:9f:
83:cb:2b:0a:13:d4:bc:13:7d:e7:5d:3a:27:62:ce:b8:0b:38:
ce:b3:d5:9c:48:65:13:94:88:dc:24:72:d2:10:ab:20:85:c2:
96:bd:9b:aa:c0:cf:9f:7d:5d:5e:31:14:fb:6d:81:bb:22:3c:
11:48:6b:42:0c:db:85:18:97:ab:50:7d:c8:07:b9:a7:d1:21:
1b:b7:0e:f9:7c:a2:d4:1f:66:64:34:31:ff:32:76:50:dc:3d:
05:4f:c8:18:b2:9a:60:09:2e:ec:44:54:9d:43:b0:5f:82:43:
87:a1:7a:63:00:ac:b2:88:25:b8:19:b4:eb:ce:e6:3e:23:aa:
3b:5a:c5:aa:1d:19:86:5c:7a:fa:55:c4:a0:e4:86:53:2c:57:
9c:bb:47:2b:98:5c:c4:da:c8:35:97:87:74:26:2d:85:64:f2:
f2:58:2b:90:18:7e:65:f0:c1:33:b2:41:5e:6f:ea:e2:cf:96:
59:7a:12:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:14:46 2026 by rpki-client