Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
File: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft (raw, json)
Hash identifier: a0r95+dbQ11IA4EGEbs4ij36FZGcAqXQJ/oQSspcdTE=
Subject key identifier: E5:37:16:00:98:C6:FE:B5:19:86:EF:03:B0:77:38:56:DD:89:26:EA
Authority key identifier: CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
Certificate issuer: /CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Certificate serial: 019EE5C440DCD82BF5FA2E92F33813A5DA25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
Manifest number: 0521
Signing time: Sat 20 Jun 2026 16:01:44 +0000
Manifest this update: Sat 20 Jun 2026 16:01:44 +0000
Manifest next update: Sun 21 Jun 2026 16:01:44 +0000
Files and hashes: 1: ILxA1XEGj58DPvCJ70R3V0QUW0o.roa (hash: 2pgTad0+RDSMUqb1cSCzcPHq0QPOVvclokToC+rjLTI=)
2: y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl (hash: 0EahowA+yY+cQGVn3Omel79fpXV+Q+feHIUViX46KRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 16:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e5:c4:40:dc:d8:2b:f5:fa:2e:92:f3:38:13:a5:da:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd7fc13e1836c396cca21789704ab39fd9e5b64
Validity
Not Before: Jun 20 16:01:44 2026 GMT
Not After : Jun 21 16:01:44 2026 GMT
Subject: CN=e537160098c6feb51986ef03b0773856dd8926ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:e7:23:6b:7b:4d:59:99:d9:f1:0d:3c:40:b0:
cd:15:fc:50:96:37:c8:6a:8e:fb:28:a8:69:55:7f:
c8:46:eb:d3:eb:be:69:d3:a9:1b:7a:63:be:72:1c:
a6:a8:cc:80:49:83:42:87:75:34:f1:d6:f2:07:28:
b3:e9:d4:bd:b6:f1:95:43:cc:f8:44:cf:6a:58:ed:
8d:f1:5e:20:65:32:4a:33:dc:10:b6:bd:70:c3:82:
b0:1d:02:8b:44:62:c6:e0:d5:33:7b:38:74:5f:60:
32:70:96:58:0f:5e:7d:79:d9:8e:1a:dc:41:45:26:
17:37:9b:ee:81:67:d3:d7:10:f9:33:ca:ca:6c:31:
72:4e:04:7d:f9:c7:90:85:3b:d8:6e:93:5d:2a:f6:
ce:95:77:38:80:6e:37:7c:64:3d:1d:06:17:f9:ae:
90:00:5a:1b:31:6f:c3:63:20:32:58:bc:b4:a4:57:
0d:8d:f2:b0:b9:f0:b9:05:bb:6f:4b:3d:b6:60:bd:
d9:c4:10:82:c5:76:8f:29:6e:57:c8:77:f5:ca:92:
f0:d9:5c:d1:17:65:f8:5f:6b:17:f7:8d:b6:2f:31:
ff:d1:ee:05:e0:12:fc:9a:e4:b9:e3:2b:a0:a7:6f:
9e:b0:7c:b3:96:02:c1:85:b7:eb:b5:77:e1:2a:19:
4b:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:37:16:00:98:C6:FE:B5:19:86:EF:03:B0:77:38:56:DD:89:26:EA
X509v3 Authority Key Identifier:
keyid:CB:D7:FC:13:E1:83:6C:39:6C:CA:21:78:97:04:AB:39:FD:9E:5B:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/214c9a-0950-40d9-a586-e35db52567f0/1/y9f8E-GDbDlsyiF4lwSrOf2eW2Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:05:88:b4:70:63:05:0d:77:f3:2d:6d:ce:bd:e7:ce:0b:0f:
bb:66:d3:78:98:d1:a8:b7:01:27:15:66:1e:2b:41:af:f6:f7:
2a:63:ac:dd:ba:dc:b3:86:46:c1:c1:84:6e:c8:07:c6:e6:06:
bb:6f:9b:17:9a:d5:49:31:ef:49:29:09:ca:f9:9d:3f:d3:bd:
d5:32:3e:6c:56:61:ab:38:69:98:d6:20:42:03:6f:59:e3:b2:
1e:87:20:89:e0:9b:f7:52:bd:cd:60:0a:20:9e:fd:e7:a7:d5:
3f:82:8e:28:d5:71:0b:ea:f2:ad:06:76:80:8b:33:87:da:ee:
5d:1d:01:03:41:33:16:44:50:8b:29:ac:66:81:b9:e7:2e:c4:
02:87:b6:98:eb:c9:0d:80:80:e3:ad:c5:6e:77:85:d4:a9:c5:
10:fe:76:59:48:62:d3:b5:f6:79:22:39:4c:84:71:17:9d:fe:
28:21:7f:76:76:95:43:9a:7b:dc:d7:c6:0d:44:9b:dc:50:27:
bc:45:2c:35:14:8c:96:04:d7:bb:f5:93:ab:9b:21:f4:12:41:
24:ed:e8:40:f8:ed:67:55:0c:8d:53:dd:e7:ab:db:75:3a:d0:
5b:42:1a:83:7f:12:fd:54:83:1c:49:4b:d7:9c:43:3e:e2:82:
ae:5a:e7:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 00:02:45 2026 by rpki-client