Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json)
Hash identifier: pFoJWa0lCEqmSC/XC+ltusIaBWTRfBGUgFq7ldNqqVM=
Subject key identifier: E4:6F:42:29:90:14:0C:EC:13:F6:1D:D5:25:66:0B:CE:00:B5:8B:44
Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Certificate serial: 019E31F32F96735E4895CF59C2D15680B2F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
Manifest number: 18B4
Signing time: Sat 16 May 2026 18:01:21 +0000
Manifest this update: Sat 16 May 2026 18:01:21 +0000
Manifest next update: Sun 17 May 2026 18:01:21 +0000
Files and hashes: 1: FoH9ps9NIlN7HCCsr_L_q5RnpT8.roa (hash: V8yDvWYjZgT2Vk6m8UQDxVTsGXUYqta3GtOUd408vp8=)
2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: hbVlxzy5K4JpzETiFYdhNn0FEMJggmpcPNo24ZCOE4c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f3:2f:96:73:5e:48:95:cf:59:c2:d1:56:80:b2:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Validity
Not Before: May 16 18:01:21 2026 GMT
Not After : May 17 18:01:21 2026 GMT
Subject: CN=e46f422990140cec13f61dd525660bce00b58b44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:96:af:2f:b2:55:50:56:b9:d5:2f:2b:c5:68:
38:06:46:f2:ab:63:f5:17:94:1f:8e:bc:4f:2c:19:
e9:20:01:ab:b9:00:e3:9d:db:0f:45:93:d1:dc:bd:
d6:e0:41:c9:e7:e7:3e:4a:9b:58:7b:86:52:24:36:
82:7e:66:e1:f6:86:0d:a0:09:5a:c5:2d:cc:a3:70:
d6:8b:97:56:cd:e4:df:ee:47:aa:bb:ee:b0:e4:a0:
fa:a2:13:02:20:13:1f:a3:45:36:7a:2e:a5:51:2d:
52:57:1a:d2:5f:86:e3:d1:bd:89:95:5d:96:79:a6:
47:ba:b8:ec:c9:52:2f:59:0f:8c:f5:1e:29:ce:72:
ef:2f:cf:87:1a:88:8b:f3:26:a4:5e:0a:ca:a5:07:
e3:67:5e:7c:57:45:23:d8:39:5a:29:49:79:0c:59:
81:cd:ca:82:f1:b4:ae:7c:2c:00:94:46:0c:e9:61:
ad:8a:4c:79:e2:96:48:bd:6e:28:75:87:ef:20:36:
e2:84:6c:94:48:0c:ec:32:d2:ff:f5:5b:2f:ff:f3:
8c:55:d5:3a:80:62:38:e2:8e:02:15:6c:a6:32:1d:
21:bf:cd:1e:4b:b5:ee:15:2f:18:2b:51:30:99:d8:
5c:6a:8a:e6:5b:a1:a3:8d:ed:71:4e:ce:f0:db:4e:
6b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:6F:42:29:90:14:0C:EC:13:F6:1D:D5:25:66:0B:CE:00:B5:8B:44
X509v3 Authority Key Identifier:
keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:6f:5a:14:21:ac:43:ea:26:48:11:ef:14:a5:c6:b9:4c:50:
c6:5c:3a:44:e3:cc:7e:19:f4:ed:19:ed:e8:14:6b:ff:4b:2a:
f6:03:8a:d9:63:2e:0d:a8:69:c6:c5:08:2e:bf:24:8a:8b:29:
cd:73:09:d7:75:2b:03:51:2e:d2:4a:1e:7e:2e:ac:ab:c4:7f:
69:41:67:02:8b:36:da:c8:77:aa:e5:9f:f1:73:74:da:29:e2:
27:fb:17:b9:4e:df:c3:86:68:8f:07:8e:2f:e7:df:37:30:3f:
bf:13:d2:9f:17:07:99:be:97:99:4d:b0:e7:d5:fe:15:63:bd:
7b:25:99:0e:d3:d3:43:99:48:9d:21:b3:a9:e4:a0:45:cd:44:
89:dc:47:9a:f7:64:1f:32:09:82:38:09:98:c6:9c:36:7e:57:
7a:57:66:ef:54:71:ae:b4:57:a7:6f:ef:fd:ab:31:2a:4a:27:
8c:0b:cd:7f:7b:05:c0:2d:ee:e7:27:af:be:11:e7:84:0d:18:
0e:80:be:9e:8b:14:03:76:21:43:08:5f:9e:16:bd:ab:f1:20:
5a:62:aa:ea:2a:c2:05:e5:7f:02:eb:94:bc:83:75:f7:4a:39:
0b:6c:49:a3:09:49:cf:1b:33:b9:91:cd:c6:aa:28:c3:c2:9d:
4b:95:ef:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:01:59 2026 by rpki-client