Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: 5UrHLtnlqe/LsZTYRuyA7BbCGDxKblh3XQ66d3Q9Ru4=
Subject key identifier: 6A:33:62:90:E1:A4:EF:D8:54:CB:C5:DC:9F:8D:74:11:2D:D5:98:D4
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 019E31F2E85B4EC5A4082AB191CBBA55C833
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0C5C
Signing time: Sat 16 May 2026 18:01:03 +0000
Manifest this update: Sat 16 May 2026 18:01:03 +0000
Manifest next update: Sun 17 May 2026 18:01:03 +0000
Files and hashes: 1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: VGa7CKe1Rnp5sBxozNa8WEPN71yc/U1qV3N9Vr933mY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f2:e8:5b:4e:c5:a4:08:2a:b1:91:cb:ba:55:c8:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: May 16 18:01:03 2026 GMT
Not After : May 17 18:01:03 2026 GMT
Subject: CN=6a336290e1a4efd854cbc5dc9f8d74112dd598d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:86:47:9f:c6:ef:0a:ea:94:16:20:07:1c:7b:
d7:e7:9f:ef:52:51:5b:68:13:8f:9e:00:ed:a8:5f:
15:08:16:cc:ed:37:3a:16:f5:e3:8f:11:7d:2d:7d:
4e:c5:56:e3:1f:e1:b5:0d:bc:ca:8e:3b:68:33:fa:
3b:82:19:f6:4f:1a:53:d8:8b:68:61:50:5d:48:de:
30:e8:be:18:81:7d:3f:41:1e:2e:3a:97:ef:9c:7d:
fb:64:d7:67:b2:61:69:e1:a5:0d:c0:92:bb:3b:c5:
a6:39:ea:73:2d:66:28:86:99:07:24:1e:8d:22:bf:
10:09:a1:22:12:99:d0:a2:94:5a:68:32:51:88:fa:
cd:de:72:1a:55:77:ec:e7:df:18:a6:23:b7:2e:fa:
84:6c:b8:91:22:77:fa:25:a2:b7:21:b2:0c:0e:52:
5d:d9:0f:e7:32:95:89:64:ee:4a:c6:55:39:b6:0e:
1a:02:8e:dc:70:47:13:c1:3f:24:ec:de:ce:ea:18:
6a:c3:4e:1d:06:9c:bb:7c:23:dd:ab:59:8a:95:5d:
e4:79:f4:a6:9d:38:38:3d:9a:ce:22:9f:c3:46:ea:
5d:e7:20:eb:25:20:d6:69:89:d1:c9:a4:98:32:2b:
ab:9d:e9:fd:a7:34:a4:a1:95:9c:26:c9:a4:a9:bd:
82:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:33:62:90:E1:A4:EF:D8:54:CB:C5:DC:9F:8D:74:11:2D:D5:98:D4
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:28:ab:90:6b:64:01:da:a7:3d:12:9b:75:31:4f:a1:1b:7b:
d4:b8:27:5f:8a:a1:6b:e4:6b:3c:ad:83:85:60:50:0f:c3:5e:
46:d3:2e:20:a5:72:09:5a:ec:1a:fd:5c:fc:34:6f:2a:4d:8b:
d2:59:d0:dd:9a:92:e8:2e:16:bf:f4:7d:c8:1b:0a:4e:66:11:
eb:1f:67:a7:b5:8b:2f:88:4d:7a:49:32:4c:ef:8f:dd:5c:46:
5a:8e:6f:71:42:8e:9e:64:e4:2f:29:9e:dc:eb:91:a7:45:29:
4f:7e:01:05:60:90:77:31:05:11:2b:8d:77:2e:29:61:80:89:
f7:95:71:9f:95:c4:29:78:f6:04:ab:5f:f1:ac:f7:4a:fc:f5:
00:d8:7b:bf:cf:79:24:10:d1:f1:ec:03:37:f0:47:da:1d:9d:
44:5b:dd:83:ab:ae:a6:51:db:0a:60:2e:37:f2:56:48:76:24:
8d:a3:a3:e0:fa:8c:59:8e:2e:fa:94:7e:d6:ee:47:c7:fd:41:
90:ea:be:04:b1:8b:85:63:b1:5f:0f:b9:d4:2b:f3:f9:94:b9:
18:e6:46:74:3b:0a:7c:75:f0:61:19:f4:15:d4:34:54:3d:bf:
27:c9:d9:f8:91:6c:a8:f7:5e:75:f9:4d:90:3b:eb:7e:4e:bd:
ca:9e:12:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:01:10 2026 by rpki-client