Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
File: YAluN0CSzDAL0LsGxBZAky7Pi0k.mft (raw, json)
Hash identifier: /GSNqLMCzYE/Lm2UWjHQ+qk+O0dHx6Leg1V16a42c1k=
Subject key identifier: 44:29:E8:25:FA:1D:82:B3:BA:4B:A6:6E:94:5F:98:61:94:0C:AB:15
Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49
Certificate serial: 019E32CED675A4AAC523AE5B9B3A5EEA4749
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
Manifest number: 18A3
Signing time: Sat 16 May 2026 22:01:16 +0000
Manifest this update: Sat 16 May 2026 22:01:16 +0000
Manifest next update: Sun 17 May 2026 22:01:16 +0000
Files and hashes: 1: 09iLJ-Mwt-oGGlQePzLwscf0h0A.roa (hash: q4J6TqoqIEXUXDGYbj1FaACI7n8SQOOCFeV3Q5IYWCQ=)
2: YAluN0CSzDAL0LsGxBZAky7Pi0k.crl (hash: TBi/speYUIE5xXX8o89hX8kpLvCTA1I0hzIQgWQrwvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:ce:d6:75:a4:aa:c5:23:ae:5b:9b:3a:5e:ea:47:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49
Validity
Not Before: May 16 22:01:16 2026 GMT
Not After : May 17 22:01:16 2026 GMT
Subject: CN=4429e825fa1d82b3ba4ba66e945f9861940cab15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:05:09:9c:d5:6b:28:3e:72:b7:51:34:ed:73:
59:1e:89:ab:f7:bd:6d:7d:5e:82:18:71:1f:ad:81:
4a:ac:8f:af:c8:86:13:ff:af:03:3e:43:d0:89:13:
de:00:63:21:25:3a:3f:5f:91:2d:d4:76:2e:a0:06:
92:87:5a:50:6f:d8:a2:79:5e:0d:3a:45:d3:02:05:
6e:e6:68:4d:15:c2:4c:da:5e:0f:b2:47:8e:40:26:
a2:c7:cf:d9:aa:af:f7:c1:03:4e:9a:b8:62:a4:57:
a9:a8:c1:fa:90:18:11:7e:d8:57:3a:a5:d9:85:a3:
5c:d3:05:6e:4a:20:d9:06:be:89:17:2b:af:06:24:
19:8b:1d:48:4d:ac:d3:d4:a0:ab:e9:eb:d2:46:3d:
0e:27:2a:08:22:53:f5:89:c7:3e:37:c2:83:8e:5a:
3c:2c:1a:2e:7d:b6:d1:62:67:7e:c0:19:37:1a:13:
a7:23:c2:50:84:6e:bf:92:4f:67:1b:d1:0e:ea:c9:
18:7b:a2:3f:c1:4e:f8:15:cd:2f:76:7c:3a:ea:12:
87:73:9f:62:4c:10:e4:8b:f2:cc:26:c0:86:a4:98:
12:3c:cd:32:c4:56:73:4b:fb:25:24:9a:0e:98:bc:
5a:11:1c:be:df:fb:12:49:e2:38:75:90:e6:24:97:
36:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:29:E8:25:FA:1D:82:B3:BA:4B:A6:6E:94:5F:98:61:94:0C:AB:15
X509v3 Authority Key Identifier:
keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:43:32:d9:d4:d8:bf:4f:12:64:6f:70:08:e4:6e:42:14:13:
85:4e:c2:bf:92:f6:7c:d2:56:0b:4c:6b:a2:58:87:ed:d2:73:
c8:0f:b6:3e:8b:08:87:78:c6:45:b5:54:db:47:08:fe:76:d6:
66:56:7f:a5:cf:32:a8:78:49:70:f6:dc:58:8d:ed:e9:48:78:
79:13:e5:1c:43:8b:07:32:a8:75:c1:89:91:7d:83:d0:64:d6:
c1:bc:6d:9b:39:9a:a4:68:96:6c:4d:a0:ba:01:dc:fc:12:f1:
dc:da:ef:66:30:9e:d2:16:12:77:fd:69:5f:55:f4:a8:29:e9:
f6:28:02:7d:a5:5f:33:55:85:79:f6:dd:af:37:69:6c:f4:03:
5d:82:a6:cb:31:40:92:3d:1d:bd:2f:a5:a9:df:75:1c:d4:e4:
75:2c:50:5d:94:f0:50:a2:81:f4:78:c7:77:3c:fa:4c:cf:f7:
4a:c4:86:33:1d:44:51:34:31:ff:c8:10:ff:0b:bc:1f:30:75:
ee:39:e0:5c:c9:51:53:6e:68:4f:29:57:4d:bb:45:58:60:b3:
dc:6d:e4:6d:99:e3:c0:0b:c8:03:c7:d4:7a:2f:aa:ce:84:ee:
23:b1:87:fa:47:35:38:28:c6:48:93:71:f4:b8:64:bb:bb:e9:
3d:2c:4d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 00:26:56 2026 by rpki-client