Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
File: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft (raw, json)
Hash identifier: zE7wRB9PbbNo5Vo4OosAyCti1ORSl4KJTPlb6eOEf+o=
Subject key identifier: ED:B1:20:69:07:8F:8D:71:41:1A:30:E6:4C:5B:C1:E1:5D:1F:F8:DB
Authority key identifier: 63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
Certificate issuer: /CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Certificate serial: 019EB9FD7E67E4DB2BAEE7765B12C5038206
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
Manifest number: 0C8C
Signing time: Fri 12 Jun 2026 04:00:58 +0000
Manifest this update: Fri 12 Jun 2026 04:00:58 +0000
Manifest next update: Sat 13 Jun 2026 04:00:58 +0000
Files and hashes: 1: ORD5CVRl8fHNkrGDCcDgKgiB4nA.roa (hash: SAvELpe3u4u8sy1W4tmIPkF/1bK/o7riGyIeb81WOH8=)
2: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl (hash: Ew+LTfKZGovbtxbZsuH4XZ1wm7q2vAheLv61e4NFcuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 04:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:fd:7e:67:e4:db:2b:ae:e7:76:5b:12:c5:03:82:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Validity
Not Before: Jun 12 04:00:58 2026 GMT
Not After : Jun 13 04:00:58 2026 GMT
Subject: CN=edb12069078f8d71411a30e64c5bc1e15d1ff8db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:66:74:c4:5f:55:2f:cf:ed:b6:2f:f2:b3:57:
8d:fe:c5:bb:ba:48:7b:b8:4a:f0:38:7e:bd:62:4c:
9d:4f:29:6c:79:bf:37:9a:6d:ea:bb:85:6a:2a:50:
bf:c4:25:bb:96:70:ed:e7:fb:c9:20:3d:fc:e4:19:
5e:e2:cf:42:d1:dd:31:ed:c4:5f:cd:0b:f3:ce:81:
37:22:cf:0b:6d:46:80:e1:37:b8:61:fc:32:5e:14:
08:2c:8e:b8:ef:94:5f:b2:d5:86:ea:81:3c:2b:cb:
83:77:03:a3:d8:d2:6c:b4:05:7a:35:d1:3d:be:0b:
52:bf:cd:d4:47:a9:ec:97:fe:bb:f1:19:00:05:2e:
81:01:18:bd:a6:7b:06:6f:46:45:3c:fb:72:97:07:
85:d2:f1:1d:e9:1c:73:59:dd:e1:31:fc:c0:a6:0f:
c2:e0:de:43:28:37:13:9a:74:97:5c:f8:7b:c0:66:
13:24:65:18:4e:11:a0:15:f6:c6:ee:f6:2d:53:8b:
5a:9a:40:eb:e4:e4:66:86:0d:e2:77:57:70:52:c9:
30:d1:be:f6:f1:0d:2d:08:06:72:61:58:e7:87:29:
25:2c:59:b6:3a:52:94:62:33:ca:29:c8:36:3d:2a:
28:24:1a:95:1b:56:97:5f:f1:72:bd:ba:96:3d:2d:
2f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:B1:20:69:07:8F:8D:71:41:1A:30:E6:4C:5B:C1:E1:5D:1F:F8:DB
X509v3 Authority Key Identifier:
keyid:63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:31:ea:0c:8a:7d:36:79:09:87:bc:bd:0d:84:3f:56:6e:e6:
aa:d3:1e:5c:5c:63:98:1a:72:35:6a:a3:38:18:d8:a1:41:c3:
67:be:80:75:3d:64:dd:22:6f:a3:19:c0:4a:e6:d0:1c:73:eb:
f5:ea:0a:1b:39:24:8c:67:51:b8:66:96:37:54:7e:34:63:c0:
e1:c8:b2:78:e6:40:53:cd:2a:3a:3d:fc:d8:33:4f:b6:6a:2d:
0e:68:b6:90:c7:5c:3c:9b:d6:0b:c0:68:3a:a3:4c:57:27:2d:
83:8b:a1:5f:7d:dd:65:0f:ab:16:c0:1d:6a:de:d1:8d:17:47:
e2:36:fe:26:27:79:12:3e:3f:3f:55:88:fe:3c:6f:81:21:82:
4e:0e:c6:d9:d0:e2:60:7a:a0:f3:21:09:af:52:4d:9c:99:1e:
e8:d8:1c:c0:ee:fe:e6:99:f2:02:fb:5c:a0:97:75:12:c0:39:
85:91:4a:fd:a2:8a:d2:1e:99:d3:5b:c9:b0:d0:11:91:b1:25:
62:e1:06:58:be:4f:84:d8:89:f4:bd:59:00:37:6c:84:a0:ae:
fc:ee:51:4e:5b:69:9c:e1:dd:b1:4f:58:1a:e8:15:af:6f:b8:
7b:eb:fd:2a:86:a5:51:f3:2c:9c:e3:df:0c:85:80:9e:b7:46:
3a:0c:9a:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 14:42:58 2026 by rpki-client