Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
File: tYUi2sa83oxIEzNZkTKhYgDmpb4.mft (raw, json)
Hash identifier: NpzK7N5o8FfG4amPxGJYeGxYzYYrXJlryNXVZawuQfU=
Subject key identifier: 5D:52:77:84:D5:9A:8F:39:DD:AF:16:7E:82:D5:B9:BF:AE:96:A6:B4
Authority key identifier: B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
Certificate issuer: /CN=b58522dac6bcde8c481333599132a16200e6a5be
Certificate serial: 019E322A5370E69647E6340333BEE583D58D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
Manifest number: 0C6B
Signing time: Sat 16 May 2026 19:01:35 +0000
Manifest this update: Sat 16 May 2026 19:01:35 +0000
Manifest next update: Sun 17 May 2026 19:01:35 +0000
Files and hashes: 1: 18A7L44_0ILwZodGFUSDQ2eubuc.roa (hash: TWAVfWQBRDutGoFMNTBpWa6veuSEAlw+UuaoPc+ikg4=)
2: 2BnXbJN0-tuiSw2yPhv5M-hIP_g.roa (hash: 7StJAAew0duMZOz948e0I6qxBTgJCwCzq3+RHVzjmKc=)
3: tYUi2sa83oxIEzNZkTKhYgDmpb4.crl (hash: DnTVSmqLM4uqwipsrqAk8bwu6Ja67MMzC+kUbeLwPzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:2a:53:70:e6:96:47:e6:34:03:33:be:e5:83:d5:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58522dac6bcde8c481333599132a16200e6a5be
Validity
Not Before: May 16 19:01:35 2026 GMT
Not After : May 17 19:01:35 2026 GMT
Subject: CN=5d527784d59a8f39ddaf167e82d5b9bfae96a6b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:11:e2:fb:3c:d1:a0:9a:0c:df:c9:e0:e6:3d:
cf:a5:fc:8b:cd:81:f6:7e:1d:a8:2e:82:e0:9b:2d:
6e:00:f1:42:45:0f:14:0a:95:41:8e:4f:cc:b7:58:
37:46:57:46:39:a9:24:ed:6b:72:1f:ba:2d:d7:db:
50:40:9b:30:52:69:a2:d6:ee:c9:37:b2:f5:13:2e:
4c:26:2f:57:40:51:98:71:c4:d4:16:38:58:4e:71:
c2:99:a3:92:60:a4:7f:71:44:1d:e3:e1:96:97:a2:
d1:c5:f9:de:12:f3:2c:ba:95:08:20:ce:10:8f:27:
e5:7d:94:0f:75:4e:ac:96:c5:7c:05:bf:99:ad:b0:
76:b0:7d:5b:e5:a2:b7:6d:7c:43:34:36:2f:aa:1c:
42:fd:2f:03:bd:2b:0d:22:fb:91:98:91:66:02:14:
23:67:09:f3:73:1d:f4:8a:f5:2e:ee:ec:26:bd:36:
a4:ed:9a:42:28:49:88:e9:16:cf:72:00:bf:05:38:
eb:2a:b9:80:98:81:1a:2a:63:72:50:69:55:21:fa:
f2:8c:20:36:fb:b5:fc:e6:12:11:c1:b9:df:da:5f:
76:df:06:b9:ed:08:d1:79:66:de:e5:72:3a:ff:cd:
f2:1a:60:ad:9f:c0:a7:ff:ba:73:b4:0f:40:81:da:
dd:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:52:77:84:D5:9A:8F:39:DD:AF:16:7E:82:D5:B9:BF:AE:96:A6:B4
X509v3 Authority Key Identifier:
keyid:B5:85:22:DA:C6:BC:DE:8C:48:13:33:59:91:32:A1:62:00:E6:A5:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYUi2sa83oxIEzNZkTKhYgDmpb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/8b5d2a-4bc4-406f-97d5-ba3947c9b22b/1/tYUi2sa83oxIEzNZkTKhYgDmpb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:db:13:52:51:ca:f5:4c:bc:91:3c:85:db:cb:db:7a:41:83:
7c:30:0a:64:1c:ec:08:ae:60:48:48:aa:bb:c5:40:b2:31:9b:
06:82:48:9c:61:43:06:42:22:20:44:eb:e1:62:fa:8e:15:10:
16:62:7b:09:50:f0:5a:e7:97:93:0d:ce:88:c2:26:c5:25:d7:
fc:25:3e:63:dc:2b:07:c1:eb:2e:26:68:50:38:db:4b:84:92:
b9:76:71:9c:45:07:70:e2:ec:d9:1b:a6:65:6c:6b:19:53:af:
96:b6:65:25:ea:12:f5:b0:ac:eb:a6:6a:d6:88:b8:24:07:0b:
9f:7d:11:85:ad:ec:a9:a4:70:ae:21:1f:1c:30:8c:de:f6:f6:
e0:7a:9d:8f:3c:73:fa:01:7b:62:71:a8:d1:9c:83:35:8a:d5:
5d:89:9b:6f:18:85:33:4d:e9:51:de:cc:7f:5c:54:90:f4:f8:
8d:a6:db:61:24:bb:27:62:4c:58:2b:fc:60:1f:de:11:6b:90:
ba:dd:4f:db:df:7c:3a:5e:92:92:63:69:b3:9a:e8:b4:fa:40:
ba:da:34:56:c2:b8:8c:a9:30:b9:e1:71:91:d1:bc:e7:f1:a3:
aa:a0:53:d3:a2:f4:59:e7:8e:48:2a:38:12:08:f2:d8:c4:8c:
82:bf:b6:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:41:34 2026 by rpki-client