Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: sDlo5tyKuUVkOUyWQJy1Yxef6KYIZG/vHR6G8PwVfSM=
Subject key identifier: 5B:D5:AB:EC:5D:96:D0:78:CF:DC:2B:98:22:D6:E6:87:F0:17:A3:84
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 019E31BC124F1A31043E33703B6F177B26D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 095F
Signing time: Sat 16 May 2026 17:01:09 +0000
Manifest this update: Sat 16 May 2026 17:01:09 +0000
Manifest next update: Sun 17 May 2026 17:01:09 +0000
Files and hashes: 1: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: OIMIwFyyIOo7TCeEOHougI8cG4xXftikDBYSmH1vkmg=)
2: zyxH_ZayU87vTJX81fgX-DVJmTk.roa (hash: v7IX/ua2uQXhjGalwVPCerFWeIG3hQEbj9ssotgdfjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:bc:12:4f:1a:31:04:3e:33:70:3b:6f:17:7b:26:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: May 16 17:01:09 2026 GMT
Not After : May 17 17:01:09 2026 GMT
Subject: CN=5bd5abec5d96d078cfdc2b9822d6e687f017a384
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:20:51:05:19:a2:09:c9:53:ab:90:9e:e4:4f:
14:5a:02:c9:ea:1d:e4:e1:a8:e4:ff:36:78:07:95:
93:6b:70:8c:be:df:4b:08:11:b4:0b:ff:ef:94:4e:
64:95:b5:26:a4:3c:93:d2:54:9f:0f:6f:06:a9:e1:
14:6a:82:17:98:ac:ed:d2:db:e7:82:aa:18:22:7d:
5e:4f:61:0e:ad:95:ce:fe:97:54:96:d4:89:dd:ba:
83:b4:9d:92:08:e8:97:fd:08:ff:2a:8c:2f:cc:a4:
25:cf:02:d2:e3:2c:92:0b:7f:5e:7d:43:ac:7e:05:
94:f5:f0:51:91:3f:00:06:8d:ff:ed:ab:fc:35:70:
67:e6:d1:53:d2:a6:cd:6b:e1:1d:cb:44:f5:0d:39:
54:af:27:0d:bc:e4:4c:08:3a:3c:c0:6b:b1:42:bd:
b0:b5:c1:02:de:49:5b:ac:5c:d9:6e:bc:40:9d:a1:
97:1c:85:33:5e:d1:6e:65:85:9f:2c:44:23:7b:dc:
ea:73:cb:0d:3b:82:05:bc:de:ab:40:34:09:9b:dd:
b0:5f:3f:d0:dd:fe:b1:60:0f:f3:95:07:df:31:b4:
04:96:18:69:33:e7:f2:bd:7d:63:ba:e3:f8:66:1a:
1d:49:76:1d:64:7c:a0:df:8e:d3:15:c2:73:06:1c:
83:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:D5:AB:EC:5D:96:D0:78:CF:DC:2B:98:22:D6:E6:87:F0:17:A3:84
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:3a:43:c1:42:df:9b:d0:f5:50:44:8d:d8:40:4b:2d:81:29:
80:d7:c0:d8:ce:c0:36:6d:d8:35:e0:d8:1e:55:20:cf:1f:1b:
88:e7:92:62:b9:cb:e6:fc:7c:99:72:c0:c8:bd:77:9e:2d:be:
f1:ae:27:e8:8d:df:c3:58:5a:c2:66:91:4e:b6:bb:48:00:7c:
85:cd:e8:e5:ee:8b:08:3b:db:52:13:28:39:11:c0:0b:8a:77:
2f:3e:08:61:45:58:c7:c1:db:a4:c2:49:3f:cb:4a:8e:2e:ea:
74:a8:2c:45:c6:f6:c9:1b:66:24:df:fe:68:23:b5:ce:78:af:
30:f5:51:e2:1c:c9:c7:1c:0f:6e:00:6e:73:99:59:61:53:e2:
70:ac:5c:38:7b:61:dd:2a:15:ef:26:01:52:08:d3:52:bc:ed:
b5:ba:cb:89:f5:95:e4:b6:ee:8f:85:d6:ff:45:58:39:20:ef:
72:18:4c:8c:46:02:ec:d9:52:be:35:a2:b1:6c:c9:9d:b8:f4:
5c:39:10:9e:38:f8:9e:27:00:97:99:d2:b8:e1:77:ac:5e:e4:
7a:59:e0:74:d7:42:13:90:c8:ec:a5:7c:87:2a:b5:b4:e2:ce:
98:1f:d6:41:53:0c:ce:5e:bd:10:13:65:91:91:66:2c:47:f3:
a9:da:41:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:40:47 2026 by rpki-client