Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
File: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft (raw, json)
Hash identifier: O8554ZRieUGqUBLHXBWusIuPXmqanulTEl1lUzJdN7Y=
Subject key identifier: 5C:73:07:9A:8C:BE:7D:85:EB:CB:33:47:DD:9A:66:FF:80:84:B4:6D
Authority key identifier: 63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
Certificate issuer: /CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Certificate serial: 019EBBEBB3B0B188C9C733E3597301031384
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
Manifest number: 0C8D
Signing time: Fri 12 Jun 2026 13:00:46 +0000
Manifest this update: Fri 12 Jun 2026 13:00:46 +0000
Manifest next update: Sat 13 Jun 2026 13:00:46 +0000
Files and hashes: 1: ORD5CVRl8fHNkrGDCcDgKgiB4nA.roa (hash: SAvELpe3u4u8sy1W4tmIPkF/1bK/o7riGyIeb81WOH8=)
2: Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl (hash: rQtSyNxa4vpnxKrNOYuNClw6W/ChHzr6az58HnwLEyM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 07:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bb:eb:b3:b0:b1:88:c9:c7:33:e3:59:73:01:03:13:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63fa715c2f4b9008c8f4b60654f7f3c76353ae67
Validity
Not Before: Jun 12 13:00:46 2026 GMT
Not After : Jun 13 13:00:46 2026 GMT
Subject: CN=5c73079a8cbe7d85ebcb3347dd9a66ff8084b46d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:8c:c9:f7:53:2f:b1:3e:5f:4e:44:4d:3d:d3:
1e:60:4a:e1:7c:83:f9:a8:15:ac:c8:30:a3:c8:af:
78:48:9e:1d:cf:49:b9:cf:d1:01:e5:56:ad:86:0d:
10:7c:c6:69:43:84:ac:26:f2:78:53:33:5c:81:73:
9d:5d:7d:1e:09:c5:25:77:5d:6a:b3:77:00:a6:97:
96:24:7d:cd:ca:1d:0a:8e:a5:c6:59:ed:36:73:57:
1b:ac:ba:62:9d:4e:13:e2:da:14:98:21:5f:f6:d7:
c7:e7:8d:b1:e6:21:30:b9:7a:82:56:ff:65:d1:dc:
d4:04:70:59:db:0f:28:b4:33:2d:45:0e:50:9a:00:
bb:5d:34:4c:e2:05:36:61:e9:09:f3:2b:72:fc:46:
da:f9:43:d3:dd:7c:e9:8e:1f:de:8b:21:fc:58:02:
33:32:ee:8b:60:b9:8f:cf:69:0e:e6:6c:6f:ee:db:
fc:13:92:48:64:63:7f:ed:b7:1f:57:a4:32:3a:a0:
c2:14:42:b7:02:5c:98:69:00:81:a7:de:d3:56:8f:
b6:9f:17:57:ea:d1:46:d1:78:b2:ba:5b:a7:5d:47:
9f:91:a9:43:07:d2:bc:cb:57:35:68:e2:54:3d:6e:
37:ab:a3:71:de:fd:f2:3c:a0:13:d3:ab:23:54:e7:
7c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:73:07:9A:8C:BE:7D:85:EB:CB:33:47:DD:9A:66:FF:80:84:B4:6D
X509v3 Authority Key Identifier:
keyid:63:FA:71:5C:2F:4B:90:08:C8:F4:B6:06:54:F7:F3:C7:63:53:AE:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/bf9cdb-6e87-479f-93a1-65a5ef0af0b4/1/Y_pxXC9LkAjI9LYGVPfzx2NTrmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:53:5c:9f:bc:28:05:85:45:fe:f3:f3:83:a5:da:03:1e:0a:
a5:49:ea:5a:bf:ad:56:7e:5e:62:63:81:69:27:a4:83:4a:2d:
8e:b3:6c:76:56:fe:d7:d5:f7:8b:dd:e6:29:d3:84:13:c9:ce:
75:82:da:e1:a8:b3:5a:68:88:2f:2b:d3:37:dc:9a:a7:ee:b5:
4d:67:32:eb:93:7a:4b:7e:da:79:ac:8e:0b:51:f0:ee:06:57:
1b:6a:52:5b:9b:4f:94:a2:b7:10:ea:76:7a:52:74:3f:79:a1:
26:0d:18:fc:db:60:8b:b4:85:fb:a2:d6:1f:1a:96:fe:dc:75:
c9:96:d5:45:90:a8:0e:08:c5:fe:36:02:ee:86:1f:49:62:ef:
e8:8d:e0:48:03:82:98:e2:f5:f0:59:05:d1:d0:48:fa:77:42:
32:9d:e9:05:47:ae:e7:06:7e:e9:11:46:dc:11:70:ab:1a:90:
a7:90:92:db:b1:c5:87:4c:a7:c8:af:48:93:2b:4a:c8:47:a8:
8e:0f:59:87:c5:84:e5:6f:4c:7b:38:e3:66:ae:69:3c:35:dc:
70:b4:95:7a:8a:47:fa:91:7d:e5:c4:a4:98:59:18:6a:1f:c6:
a7:99:91:d6:bb:21:05:d5:12:69:33:8a:f5:89:b5:b0:6b:d1:
0b:2d:e5:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 15:53:19 2026 by rpki-client