Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
File: YmqokTLSpoTY0qGj9-QPIjRjbzg.mft (raw, json)
Hash identifier: HVF6hrjHcwT1NnSxuJG9XoVTjcqO+JW8Qz7MU0kViBg=
Subject key identifier: 3B:3F:1D:DD:71:79:B8:E8:B2:62:A6:50:57:20:28:6B:C8:E9:CD:47
Authority key identifier: 62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
Certificate issuer: /CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Certificate serial: 019E322A263B5A6B7C710FBCB772336C1720
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
Manifest number: 16ED
Signing time: Sat 16 May 2026 19:01:23 +0000
Manifest this update: Sat 16 May 2026 19:01:23 +0000
Manifest next update: Sun 17 May 2026 19:01:23 +0000
Files and hashes: 1: WCWp0vmGJYt70q-YkfGeiqk74HA.roa (hash: WWuYuPcraJwNveZ8Pjl950Glgpk1p9KqCUVVhSjy+fs=)
2: YmqokTLSpoTY0qGj9-QPIjRjbzg.crl (hash: jtBvOu+csnMH3hwZqLDACbXeUTeDbPvvBwWqffsQzM4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:2a:26:3b:5a:6b:7c:71:0f:bc:b7:72:33:6c:17:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626aa89132d2a684d8d2a1a3f7e40f2234636f38
Validity
Not Before: May 16 19:01:23 2026 GMT
Not After : May 17 19:01:23 2026 GMT
Subject: CN=3b3f1ddd7179b8e8b262a6505720286bc8e9cd47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:05:d6:75:73:dd:2e:21:52:5d:64:5e:79:ab:
fe:81:10:30:32:76:d8:01:29:ca:fa:2f:55:e6:fd:
10:f9:0f:e2:ee:1b:f9:86:ed:f2:ff:28:fe:d1:9a:
ac:3f:09:4c:01:b7:2b:4c:7a:8d:a0:1f:5a:28:39:
e4:eb:b9:ad:bc:c0:db:21:21:7f:ae:15:04:e1:91:
ea:94:fa:5d:20:04:c7:ce:f2:42:44:ba:f6:34:f0:
c4:a0:0f:d2:9b:41:d8:cc:40:c1:61:f0:61:75:3a:
38:9c:4e:cd:72:20:f1:60:40:32:cc:7d:99:cb:32:
b6:7e:39:22:85:f9:05:b0:b7:55:20:39:66:dd:61:
1f:93:28:89:c4:e6:39:ae:d6:c2:6b:44:bc:94:17:
dc:c7:63:91:a3:9d:00:1b:38:6f:fe:fd:ce:99:4c:
27:00:af:c7:9e:2d:34:97:5f:6a:d3:ad:82:cc:8e:
94:f6:f5:7e:45:28:47:5d:1c:33:e7:97:02:10:64:
cb:69:aa:97:ce:e1:c0:05:54:50:63:f5:98:cc:7e:
83:47:e2:30:0c:a1:84:00:f9:46:fa:2c:1d:5a:b5:
b9:50:65:18:9f:e0:b3:e3:af:27:fc:3d:7c:44:8a:
55:5a:8e:37:96:46:c0:ca:36:18:5e:3d:c5:ad:b5:
b5:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3F:1D:DD:71:79:B8:E8:B2:62:A6:50:57:20:28:6B:C8:E9:CD:47
X509v3 Authority Key Identifier:
keyid:62:6A:A8:91:32:D2:A6:84:D8:D2:A1:A3:F7:E4:0F:22:34:63:6F:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YmqokTLSpoTY0qGj9-QPIjRjbzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/4cc0a8-ec44-49dd-a3e2-2926fc5f61b7/1/YmqokTLSpoTY0qGj9-QPIjRjbzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:fa:c5:32:26:77:b3:a0:c5:82:87:05:e5:a9:4f:ec:e9:82:
ef:65:72:78:2a:19:39:a3:fe:41:37:85:8c:f9:de:6b:7c:b8:
f3:f2:c1:a0:8a:c7:c7:e4:be:d5:6c:93:36:73:92:e1:2a:97:
0a:4e:a0:43:0e:99:88:92:94:31:0b:ee:c9:ec:ca:5b:81:72:
67:be:f1:d2:30:32:88:fd:e9:e0:99:59:97:d8:c8:fc:55:3b:
44:fd:e2:83:b9:08:62:f6:7d:ac:7f:98:94:fa:75:93:ec:70:
d8:fa:f3:0b:d0:df:82:c2:83:15:f6:cf:18:1a:39:68:b5:36:
e0:1b:78:ca:a6:bc:b8:53:73:f1:fb:8a:91:2f:90:1e:57:65:
37:a7:30:44:b2:0a:f3:12:50:bf:a1:0e:d6:44:66:34:4b:0c:
9e:23:87:2c:19:f6:11:3a:8f:05:f4:15:d1:a5:7a:2c:81:e1:
d6:d7:8d:6b:ee:33:41:39:95:0c:e0:ab:14:dd:42:44:4f:62:
3d:76:18:a3:28:d3:2b:65:8d:50:14:62:fe:07:a2:33:8e:f2:
67:4d:95:24:a3:dd:da:e9:2a:ba:cc:22:93:c0:cd:f5:50:a7:
e7:11:88:01:ea:9a:40:72:9f:a1:cc:be:4b:23:01:fc:81:1d:
49:be:67:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:13:11 2026 by rpki-client