Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
File: ydWxKeBvlSRoXnABAoQfctaRXDM.mft (raw, json)
Hash identifier: Cfv/dUXxlJ0eyuHUugjmt7urgyMI3XLuBNkW4ipeF8c=
Subject key identifier: 6D:2B:63:7F:8E:78:C0:1A:A5:D5:9A:93:F6:07:E8:FF:ED:BF:A9:72
Authority key identifier: C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
Certificate issuer: /CN=c9d5b129e06f9524685e700102841f72d6915c33
Certificate serial: 019E10E7B4C38A26543A67C4BCEB1BFBB07B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
Manifest number: 06E3
Signing time: Sun 10 May 2026 08:01:20 +0000
Manifest this update: Sun 10 May 2026 08:01:20 +0000
Manifest next update: Mon 11 May 2026 08:01:20 +0000
Files and hashes: 1: BNMGtjTTYKe2pymUlI-2By8WAuY.roa (hash: RrYXesXXO0Vl2bktuDwSHZFyLC3J01YK9f8as6ZBpiA=)
2: ydWxKeBvlSRoXnABAoQfctaRXDM.crl (hash: kCZj70khM6SGSfUUDb8xNUu2yeP5jA7bGuaD7ua8Arg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 May 2026 08:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:10:e7:b4:c3:8a:26:54:3a:67:c4:bc:eb:1b:fb:b0:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d5b129e06f9524685e700102841f72d6915c33
Validity
Not Before: May 10 08:01:20 2026 GMT
Not After : May 11 08:01:20 2026 GMT
Subject: CN=6d2b637f8e78c01aa5d59a93f607e8ffedbfa972
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7c:39:f0:3a:4f:76:95:12:a4:80:1f:ed:dc:
c0:db:6e:54:0d:5d:1b:2c:8c:cb:38:ab:1f:55:fe:
95:10:4b:07:6a:da:3e:da:87:a1:45:62:a3:b5:fe:
10:4c:71:43:cc:f4:e7:c9:ba:00:5e:03:a5:97:0c:
eb:e9:60:91:a1:96:90:49:bc:f4:c2:50:97:b3:bd:
19:df:d3:50:93:45:4a:05:7e:75:d4:cf:1c:07:08:
0b:a9:ec:40:da:f7:6b:c9:17:a8:35:65:7d:9a:5a:
6f:ea:1f:a5:ee:de:c5:38:ea:5e:4e:02:ee:33:2d:
f8:0f:c7:c0:16:2a:11:24:0c:7e:ea:7d:68:5a:8f:
f9:01:6d:5f:a7:4c:54:41:ae:e6:42:78:56:23:83:
54:80:fc:f8:88:61:cd:ba:12:3e:34:ff:ce:19:23:
72:15:54:d4:f9:8e:57:b6:f1:2f:e2:4c:07:e6:d6:
f0:37:06:f5:ae:e4:51:87:38:21:11:4c:05:22:79:
9a:e6:32:5a:b4:1f:a5:f2:83:07:0a:6c:47:33:2b:
e3:6f:c3:e3:63:94:a0:ce:1b:ca:3d:64:9d:d1:59:
8a:0c:d8:b7:66:69:c0:0c:05:11:42:37:c3:ed:67:
6b:80:46:a0:24:ec:20:6e:5f:19:18:f5:7f:17:ea:
cd:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:2B:63:7F:8E:78:C0:1A:A5:D5:9A:93:F6:07:E8:FF:ED:BF:A9:72
X509v3 Authority Key Identifier:
keyid:C9:D5:B1:29:E0:6F:95:24:68:5E:70:01:02:84:1F:72:D6:91:5C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydWxKeBvlSRoXnABAoQfctaRXDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/19f9d7-4438-4d61-be77-c2eadd5ef3f1/1/ydWxKeBvlSRoXnABAoQfctaRXDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:82:9c:9b:b3:8b:10:d1:de:d7:09:4a:91:6b:b8:6b:39:70:
35:13:51:1d:74:2f:85:66:91:f1:42:e6:58:f9:c4:6e:15:99:
e9:bb:39:b7:bf:81:7c:0f:4c:96:55:f3:f4:6e:a5:12:af:c8:
8c:a9:a5:c2:ca:d5:e9:cf:33:9f:ed:13:1d:8c:b1:5d:f9:a4:
df:35:ca:a8:c7:7d:81:98:f8:64:11:f8:a6:58:bf:fd:f8:03:
87:6e:a3:5d:75:9c:1c:91:29:5e:a9:e9:30:5a:c7:79:62:de:
6b:43:bd:05:5c:6b:75:b9:88:55:26:4e:a9:a2:3b:c2:5b:36:
08:b0:b8:8c:c3:80:c8:a6:48:a0:73:3d:f3:b7:fc:d0:30:ba:
54:86:b0:42:67:dc:34:1f:63:b1:4b:09:99:8a:c5:b2:95:54:
63:b5:71:a0:ba:cf:9e:8e:9e:ac:f4:0c:7e:9b:15:ba:92:08:
f5:db:ff:74:cf:b1:4e:46:35:2c:5a:d1:fa:93:ff:72:17:0c:
98:4d:2d:aa:93:fd:95:f8:71:64:f6:97:26:4d:4f:6c:4d:41:
50:53:40:cf:1e:d1:2f:b7:72:a3:2d:a8:06:49:1a:95:63:67:
6b:6e:26:3b:53:a1:ce:8e:e9:3e:86:35:be:66:4c:5b:62:50:
ca:f7:6e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 10 16:49:41 2026 by rpki-client