Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
File: yDOgOJWSdW5BXN40irvCQxKwLfY.mft (raw, json)
Hash identifier: tBLqI/9u196/BEMQ8ppxas8to/jNyWvOQbspTpHniT4=
Subject key identifier: A2:6C:4D:03:D7:63:01:C1:42:62:B1:C4:28:B1:85:7C:4B:C7:67:5B
Authority key identifier: C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
Certificate issuer: /CN=c833a0389592756e415cde348abbc24312b02df6
Certificate serial: 019E9C60BFF8AC616D129260D16B900B2E2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
Manifest number: 1949
Signing time: Sat 06 Jun 2026 10:00:46 +0000
Manifest this update: Sat 06 Jun 2026 10:00:46 +0000
Manifest next update: Sun 07 Jun 2026 10:00:46 +0000
Files and hashes: 1: 3TtBL0qA5kisjEdyIAiW0RrkR5Y.roa (hash: IIwZ4eNX/TnLbTOdzNJ7spbedu7ExR/vuLghC48r7Rc=)
2: yDOgOJWSdW5BXN40irvCQxKwLfY.crl (hash: g1R+SHMSXLu2XmDCfbkar0Q8afyWl1Cr19Elf6eDuSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:60:bf:f8:ac:61:6d:12:92:60:d1:6b:90:0b:2e:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c833a0389592756e415cde348abbc24312b02df6
Validity
Not Before: Jun 6 10:00:46 2026 GMT
Not After : Jun 7 10:00:46 2026 GMT
Subject: CN=a26c4d03d76301c14262b1c428b1857c4bc7675b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:27:91:18:37:8c:ce:8c:f3:43:74:d7:3d:c1:
bd:08:02:77:3f:9d:d4:c7:7c:e7:4f:2a:02:80:71:
e2:15:4b:1b:7d:cc:02:ef:43:47:32:26:1f:e6:cb:
27:4f:90:ab:5f:02:d5:3f:5c:db:11:c6:6d:4e:51:
cf:02:e2:99:f5:22:93:b5:35:63:08:90:03:58:e0:
58:59:db:6e:4f:d2:f7:4d:7f:e5:ab:df:3f:2a:f2:
31:94:16:c2:51:96:36:69:2c:33:1a:bd:8a:0c:34:
9d:56:9c:30:b8:3e:35:bc:77:fa:a6:81:3d:3b:7c:
69:fb:2d:f9:7d:09:aa:8f:be:2b:8b:93:1d:29:d0:
8c:20:3c:43:9c:89:22:83:22:82:ba:fc:81:b5:94:
d0:35:67:fb:a0:6e:10:8a:af:05:f9:f8:51:dc:09:
77:1d:49:64:92:bb:68:b5:4e:71:58:d8:01:8b:7f:
7d:10:bc:fb:5f:42:de:3c:f3:0b:a1:57:d6:63:45:
68:df:8f:18:d0:d4:06:97:9a:3c:c9:da:35:ad:62:
8b:4b:0b:a1:d8:17:e3:01:40:20:e5:69:23:40:7e:
e5:89:c4:49:30:fc:0f:29:2b:16:11:9b:8d:8d:35:
1f:bd:6a:03:e9:7c:54:e1:c4:52:93:59:14:2a:8c:
34:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:6C:4D:03:D7:63:01:C1:42:62:B1:C4:28:B1:85:7C:4B:C7:67:5B
X509v3 Authority Key Identifier:
keyid:C8:33:A0:38:95:92:75:6E:41:5C:DE:34:8A:BB:C2:43:12:B0:2D:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yDOgOJWSdW5BXN40irvCQxKwLfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cecd3a-e92a-4509-b590-9f307574051e/1/yDOgOJWSdW5BXN40irvCQxKwLfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:e2:8a:bb:33:43:62:db:6c:86:3c:ce:d5:34:3b:63:e3:fb:
5d:b8:a5:99:a5:9b:a8:a0:46:4b:4f:3b:93:80:87:b3:84:46:
c0:66:dc:35:df:11:17:29:5f:3a:a6:88:17:7b:53:e0:d1:7d:
45:5c:9b:40:20:8f:59:b6:b2:0b:94:b8:22:99:d9:c9:cb:71:
bb:d3:90:c9:a4:58:0a:af:81:b5:27:67:e3:1f:8d:7e:4d:af:
91:12:1f:ef:cd:6c:11:33:3b:41:61:a2:56:e6:c9:d4:6a:f5:
b0:36:8b:f3:fc:2c:8d:e9:7f:7d:19:7a:15:cb:a5:05:ea:d7:
5d:7e:9a:be:fb:8e:22:62:58:97:1e:d9:ad:79:6e:ff:a5:fd:
1e:c2:7b:f3:3f:67:5e:3b:30:97:5f:0d:8d:46:b3:d7:61:49:
89:86:22:7a:6e:82:9d:1f:06:87:04:35:c7:f7:c8:c4:b1:4c:
ec:8f:b0:90:7e:d0:6b:05:80:c1:e6:c8:11:09:c3:9d:65:0e:
71:62:ef:c7:3a:c7:4c:0c:b0:3f:21:d8:e5:4d:32:0f:d0:6e:
93:c6:9d:1b:a6:ba:e6:f3:f0:9e:91:00:63:06:5c:4a:e3:40:
40:0c:5a:ea:88:63:e5:b9:a4:d1:2e:f0:96:e3:8e:e6:d2:48:
97:00:00:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:27:35 2026 by rpki-client