Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
File: yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft (raw, json)
Hash identifier: 90KlmELIL0CwHsUIbfMo+qjgzvubqd1nHNDlm/9khSc=
Subject key identifier: 0C:63:20:B1:56:BC:13:E5:DA:A1:10:19:B9:B1:74:E0:5F:01:04:7F
Authority key identifier: C8:E5:0C:A1:71:34:83:7A:50:D3:06:3D:43:D4:43:38:5A:BE:6F:49
Certificate issuer: /CN=c8e50ca17134837a50d3063d43d443385abe6f49
Certificate serial: 019E694F8C450461195550CE019AD55CD327
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
Manifest number: 18A2
Signing time: Wed 27 May 2026 12:01:21 +0000
Manifest this update: Wed 27 May 2026 12:01:21 +0000
Manifest next update: Thu 28 May 2026 12:01:21 +0000
Files and hashes: 1: KruYfdwnUNYxfXkcEK0pRrgHkqg.roa (hash: UrG6tcE8plAV8A8NaRxXB6Nz6rhzF4jRdCMcfNiMj5Q=)
2: yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl (hash: bpfDWgVVr2Cc4s2oaIXcBHMx5bAjoH1aQUrHOx2nMTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 May 2026 12:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:69:4f:8c:45:04:61:19:55:50:ce:01:9a:d5:5c:d3:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8e50ca17134837a50d3063d43d443385abe6f49
Validity
Not Before: May 27 12:01:21 2026 GMT
Not After : May 28 12:01:21 2026 GMT
Subject: CN=0c6320b156bc13e5daa11019b9b174e05f01047f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:7e:d9:92:dd:06:35:bc:b9:98:7d:f7:9c:4d:
63:b9:dc:22:1b:a3:d0:4a:12:22:74:0e:bf:03:47:
cf:dc:35:62:75:99:97:5b:19:cc:30:a7:19:33:f9:
50:02:c3:17:47:7e:55:82:cd:37:96:fb:41:4c:72:
41:fd:81:d7:53:9e:18:0b:55:db:c6:41:80:6c:dc:
fb:85:73:4c:0a:23:08:ed:72:f4:2e:f6:9e:07:cb:
c4:14:4b:21:e5:34:45:a0:e2:5d:45:75:c2:b8:1b:
5e:c4:c1:a5:10:bf:34:ec:0b:3a:25:15:d7:4e:0d:
dd:12:b2:58:9b:98:f9:fd:aa:99:52:cc:9e:3a:03:
14:af:08:fe:27:93:36:da:ba:02:6b:67:01:51:1f:
e5:cf:be:62:d7:ea:86:1e:f8:e9:36:9c:28:21:47:
fe:5b:12:b1:89:4f:0b:7d:82:10:1f:63:02:50:c2:
c3:b7:20:a6:51:76:50:58:03:10:f8:1e:06:69:e5:
2c:41:d6:48:8b:1c:f9:b1:8b:10:2f:d8:26:9a:41:
c0:54:77:e6:56:75:b3:6d:e6:0e:0a:8f:05:ca:66:
b7:5f:f8:b9:99:e3:75:2b:31:9b:7d:5a:8e:43:95:
78:62:ca:1d:b3:1a:91:da:db:5c:76:97:32:bb:21:
8f:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:63:20:B1:56:BC:13:E5:DA:A1:10:19:B9:B1:74:E0:5F:01:04:7F
X509v3 Authority Key Identifier:
keyid:C8:E5:0C:A1:71:34:83:7A:50:D3:06:3D:43:D4:43:38:5A:BE:6F:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/b130b5-5fcc-4196-9075-5eff73e89fbb/1/yOUMoXE0g3pQ0wY9Q9RDOFq-b0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:3d:16:e6:ab:d8:70:45:1e:fb:98:aa:49:a3:2e:37:24:07:
b4:c5:ff:e5:d5:16:1d:34:8d:8d:63:90:93:24:cd:ed:90:c1:
df:15:bc:53:cd:e4:ad:e4:24:2d:4c:f4:c0:c2:3a:63:32:53:
e0:6c:a2:87:93:b6:c9:bb:31:a8:02:a3:c3:fe:c6:f4:66:74:
44:56:49:82:d4:79:ae:3f:fa:ad:10:e2:0d:63:66:51:7a:80:
24:2c:8d:79:88:18:c1:4b:b7:2a:c0:bb:aa:c0:ea:a7:30:4f:
37:2c:a5:e2:f8:ec:76:12:11:8b:99:8f:4e:37:e3:34:59:29:
0d:97:79:67:96:54:fe:a4:f5:47:b2:2d:2b:17:98:b7:67:58:
ee:7f:84:a5:b3:82:3f:06:b7:1d:32:13:5d:47:ed:e4:dd:93:
8e:85:67:f7:02:63:93:a9:d8:0a:28:1e:b6:90:08:6a:bb:1c:
3a:9d:1c:92:6e:09:bf:a8:87:31:72:a5:16:1a:52:1e:29:25:
82:31:7c:cd:51:a7:e0:b4:ec:6c:13:21:11:08:6f:a4:a8:0e:
ca:b0:c2:1a:32:c0:3b:b3:46:42:d7:fb:fb:43:b4:d6:68:d6:
7e:38:f9:02:75:a3:4a:f3:8a:64:3d:99:2e:93:90:c2:9d:3e:
51:94:bc:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 27 17:41:28 2026 by rpki-client