Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/868837-2de1-49b3-9af9-0534958759ac/1/ydD7lgitlbS_5q4unxPgAv2raA0.mft
File: ydD7lgitlbS_5q4unxPgAv2raA0.mft (raw, json)
Hash identifier: qy5gmqVHXiK+B5ZxSKPBXtcupS3GmbxYmkyhW24BfGg=
Subject key identifier: 46:8F:79:40:34:53:73:A3:D2:39:29:EF:4A:27:19:98:9A:EF:17:BF
Authority key identifier: C9:D0:FB:96:08:AD:95:B4:BF:E6:AE:2E:9F:13:E0:02:FD:AB:68:0D
Certificate issuer: /CN=c9d0fb9608ad95b4bfe6ae2e9f13e002fdab680d
Certificate serial: 019D9A74FE251E23081A80E996FDADCCC8FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydD7lgitlbS_5q4unxPgAv2raA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/868837-2de1-49b3-9af9-0534958759ac/1/ydD7lgitlbS_5q4unxPgAv2raA0.mft
Manifest number: 075B
Signing time: Fri 17 Apr 2026 08:00:51 +0000
Manifest this update: Fri 17 Apr 2026 08:00:51 +0000
Manifest next update: Sat 18 Apr 2026 08:00:51 +0000
Files and hashes: 1: ydD7lgitlbS_5q4unxPgAv2raA0.crl (hash: Y3Aw4neD7X7PpZFAPo/TeyecYrTepR8mccHGxNgxma4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/868837-2de1-49b3-9af9-0534958759ac/1/ydD7lgitlbS_5q4unxPgAv2raA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/868837-2de1-49b3-9af9-0534958759ac/1/ydD7lgitlbS_5q4unxPgAv2raA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydD7lgitlbS_5q4unxPgAv2raA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:fe:25:1e:23:08:1a:80:e9:96:fd:ad:cc:c8:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d0fb9608ad95b4bfe6ae2e9f13e002fdab680d
Validity
Not Before: Apr 17 08:00:51 2026 GMT
Not After : Apr 18 08:00:51 2026 GMT
Subject: CN=468f7940345373a3d23929ef4a2719989aef17bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:1f:cf:f6:a2:57:c5:5c:66:8d:24:65:cf:93:
5a:b7:fe:c3:b1:d0:75:89:61:5d:d9:be:3d:9b:9d:
c2:ca:2a:43:86:7c:74:2d:5e:07:65:07:43:e7:8f:
51:98:69:a1:f7:89:2d:12:7d:60:32:5f:24:d3:ab:
f5:39:ef:b0:1b:94:2b:06:6e:d3:fa:ef:a4:66:29:
f9:3f:86:04:1c:93:fd:6c:46:bc:e7:46:45:3b:00:
4d:72:d1:88:a9:dd:43:82:d9:a8:8d:10:5d:56:df:
eb:45:07:55:b2:cf:7f:f2:85:d8:7b:68:f9:ae:ee:
2a:fe:04:bf:a0:74:64:95:55:90:e7:e6:9f:88:1b:
54:56:a5:36:dd:b3:32:7c:44:fd:01:28:2b:11:f2:
bb:f0:6d:ee:59:48:64:0f:36:5c:12:43:0c:dc:b3:
3a:34:32:3a:ca:11:aa:a0:12:0a:a7:1e:9f:a7:63:
e4:3d:6f:40:62:7d:91:57:05:96:c5:94:da:d8:33:
e0:5f:e2:9e:73:c6:25:6d:50:76:ce:53:f2:b9:6b:
26:9c:d8:e6:2b:b8:f2:69:69:07:35:57:53:93:9c:
cd:73:f7:f2:e4:c2:b8:76:21:3e:be:71:b1:ee:ad:
b5:47:44:54:13:e1:4a:94:87:82:a0:60:62:a8:17:
02:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:8F:79:40:34:53:73:A3:D2:39:29:EF:4A:27:19:98:9A:EF:17:BF
X509v3 Authority Key Identifier:
keyid:C9:D0:FB:96:08:AD:95:B4:BF:E6:AE:2E:9F:13:E0:02:FD:AB:68:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydD7lgitlbS_5q4unxPgAv2raA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/868837-2de1-49b3-9af9-0534958759ac/1/ydD7lgitlbS_5q4unxPgAv2raA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/868837-2de1-49b3-9af9-0534958759ac/1/ydD7lgitlbS_5q4unxPgAv2raA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:9f:9f:53:4d:8d:d3:7a:c9:8d:64:75:10:34:b5:43:34:91:
60:8d:48:d0:23:b4:ad:c9:07:ae:da:57:42:ab:d3:0b:ad:74:
b7:6f:28:04:22:c3:ba:b7:a8:e9:74:88:71:57:99:9c:1e:f5:
19:cc:c0:eb:86:2b:39:4e:2f:aa:3b:40:10:ba:a7:91:1b:df:
94:98:0e:2c:16:06:87:c2:7e:d1:84:86:d1:c8:f2:8f:c3:d7:
70:fe:ad:14:47:ac:b2:20:79:ce:d0:5d:d0:02:6b:a3:0f:98:
c1:18:04:4f:a2:28:a1:0f:52:ad:cc:e3:3a:82:fc:b5:8b:92:
ef:fb:b1:20:32:fa:53:4c:bb:36:85:a9:6e:c5:ec:71:68:db:
ce:7c:1a:5c:b6:89:85:85:48:28:12:69:45:0f:e6:8b:b0:fb:
6e:3f:a2:41:18:16:21:51:b3:55:41:ee:16:e4:56:0d:d6:ff:
62:a4:94:a1:02:a1:3b:14:e9:a4:15:7e:99:81:3d:bd:03:d9:
09:86:cc:8a:70:15:a6:65:80:02:f7:5d:d2:58:7b:1d:e6:a3:
e7:87:11:6d:91:8d:94:ef:3e:2b:af:c9:57:e6:d2:a5:16:aa:
46:4b:95:1d:12:d4:73:96:de:7f:16:87:14:06:a4:df:6d:48:
59:f7:c6:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:59:36 2026 by rpki-client