Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
File: YdOLN5gKDfrpz5osW1at6X-vUC4.mft (raw, json)
Hash identifier: Orn1CuAS+CoILa3Ahhl+UyFEzexHk6TLhx3N4tj0XMg=
Subject key identifier: 03:4B:21:78:FC:D2:AF:17:68:BC:58:F3:B9:53:8C:20:91:57:3E:4C
Authority key identifier: 61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E
Certificate issuer: /CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e
Certificate serial: 019E314E9A29E1CBD340DF36A7C28C8F4078
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
Manifest number: 0D9B
Signing time: Sat 16 May 2026 15:01:35 +0000
Manifest this update: Sat 16 May 2026 15:01:35 +0000
Manifest next update: Sun 17 May 2026 15:01:35 +0000
Files and hashes: 1: YdOLN5gKDfrpz5osW1at6X-vUC4.crl (hash: pAVaD7iozqjAGPdFRsQlvCJOsgZh+pem7j2vSotE9Y8=)
2: kGLxA9onzrf8JLssDr-KbBw0Iso.roa (hash: iCYCJqbAYcmF46KnTkB1atw07n5B8BjwCirxzmxkzlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4e:9a:29:e1:cb:d3:40:df:36:a7:c2:8c:8f:40:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e
Validity
Not Before: May 16 15:01:35 2026 GMT
Not After : May 17 15:01:35 2026 GMT
Subject: CN=034b2178fcd2af1768bc58f3b9538c2091573e4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3e:ff:2d:4f:eb:70:25:84:79:26:38:7d:5b:
94:dd:e4:5b:1f:d3:3b:8e:8a:6b:8a:e0:1a:c6:2a:
99:2f:df:8c:b1:d3:df:87:dc:00:3b:06:2b:e5:4b:
11:e4:6d:de:80:5e:60:3d:4a:4c:85:66:f7:39:ac:
4a:be:28:73:bf:b4:cc:9a:d6:f7:d3:8e:11:1a:1f:
25:16:ca:24:ee:4b:e5:57:5a:a8:3b:0d:4c:b4:d6:
52:dc:a7:c4:35:7f:ce:d2:5a:db:a2:86:b2:65:8f:
4c:ef:d2:51:4e:cc:31:d4:40:ab:76:fb:3b:d8:ed:
b0:17:84:30:33:66:e5:6f:f9:7e:a3:93:e5:6d:3d:
8a:66:b5:1b:1e:8e:d9:54:70:6d:1e:5b:96:de:74:
52:46:b8:6c:c2:38:d6:05:88:c2:92:68:b9:f5:fa:
7e:8a:36:8e:e0:5f:33:b1:ed:5e:4c:2b:89:1a:89:
c3:1d:b2:fe:7e:f8:d1:11:14:4f:f8:49:68:bf:39:
11:81:f8:b7:6d:3d:4d:92:5f:36:32:8c:98:28:b8:
07:29:f1:82:f8:9f:fd:e4:a0:60:4d:4d:a1:3a:f0:
13:ae:d5:b3:6e:e9:c0:97:22:ec:a7:67:58:5d:b4:
6b:6b:be:4f:45:ec:03:1e:8f:67:51:17:7c:2d:54:
44:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:4B:21:78:FC:D2:AF:17:68:BC:58:F3:B9:53:8C:20:91:57:3E:4C
X509v3 Authority Key Identifier:
keyid:61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:f2:7c:82:38:de:f4:d8:5c:14:2d:5f:0e:ad:4a:44:e0:14:
de:55:1d:f2:3e:e1:58:25:d0:71:08:39:ec:40:8a:23:f9:10:
ba:16:b1:66:2d:55:d0:d7:da:41:f7:ca:bc:f7:d0:df:72:c1:
fa:37:6b:d1:d7:37:2c:4b:65:5c:c2:b1:b5:ac:1c:32:e0:70:
88:68:58:9f:2f:6c:e9:56:1c:19:d3:53:9d:d5:05:9c:56:f8:
03:65:1a:9c:38:71:22:c8:67:58:c2:b8:59:38:73:b2:39:5e:
64:f9:8d:2d:5f:1a:31:38:1f:50:f2:e8:1f:db:ca:ba:ca:27:
79:01:b2:e3:6c:47:de:b0:e3:97:55:2e:74:4a:4d:a3:fb:81:
17:3b:74:03:d0:3d:28:c3:08:a1:fc:fb:1c:d1:66:c2:b4:7e:
3e:5e:39:39:d2:03:d1:f4:8e:39:0b:05:59:a8:a6:4d:18:89:
cd:23:ea:24:ec:a2:4d:c6:b5:21:45:e5:1e:d9:4c:5e:74:52:
e5:61:d7:45:55:f6:8a:9a:ec:d0:e1:d0:34:85:7a:e5:4a:4a:
2b:cd:93:5d:3c:1b:60:30:5e:74:61:ce:c0:c8:5c:4a:a6:b3:
93:55:e4:69:b2:d6:f2:7b:98:40:c1:79:f9:df:d2:58:15:2c:
3c:96:35:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:14:22 2026 by rpki-client