Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
File: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft (raw, json)
Hash identifier: HCDbrusfjOFPhXT+aW28g/6yZ/hHliO8FeWWAb5MhQs=
Subject key identifier: E3:6E:08:96:E9:1E:AB:78:B9:DC:85:8F:12:E4:C3:73:F0:AD:43:64
Authority key identifier: 63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
Certificate issuer: /CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Certificate serial: 019E314DCD36AC17D99066ECAD9894BC3D4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
Manifest number: 0EF3
Signing time: Sat 16 May 2026 15:00:42 +0000
Manifest this update: Sat 16 May 2026 15:00:42 +0000
Manifest next update: Sun 17 May 2026 15:00:42 +0000
Files and hashes: 1: Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl (hash: htH965L5gH34FJRRTIL1jxtejtm5ssldngddxaJu5io=)
2: aRuatR-K8nQ9ZXL9FpjwSLceO4A.roa (hash: Vt5YWGyW9wbAPKP7kNgM97gFfWqXrRoxA2e6gMj6LNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4d:cd:36:ac:17:d9:90:66:ec:ad:98:94:bc:3d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=638c83f9a3a3d2160a0178ca19ccb43a0d2f1890
Validity
Not Before: May 16 15:00:42 2026 GMT
Not After : May 17 15:00:42 2026 GMT
Subject: CN=e36e0896e91eab78b9dc858f12e4c373f0ad4364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3d:fa:32:05:1d:b2:e1:cd:2f:7e:e3:66:fc:
b3:20:0b:a6:b8:63:e6:57:84:f6:99:b1:b7:ff:9e:
38:33:3f:33:8c:07:f5:10:1f:77:73:6e:7b:86:ba:
27:62:54:4b:db:7c:75:95:7f:9f:ca:e0:68:d5:41:
82:19:af:20:01:0c:69:0b:ad:ef:7a:aa:c5:79:0e:
09:46:01:79:f2:1d:2d:a5:a3:77:51:42:07:1d:34:
af:b5:aa:72:89:b9:78:63:44:86:e1:2b:fa:e9:32:
98:d2:22:f5:0f:3e:45:ae:fe:3c:62:b3:83:21:a6:
26:ee:d1:d5:ca:96:84:a6:95:da:a0:4d:b9:aa:19:
ac:2c:e7:20:25:9b:e2:12:2f:c9:5f:0f:a7:e3:35:
b8:79:c4:8d:d5:78:c3:b5:e1:06:9b:9d:67:37:1f:
eb:56:9d:52:25:37:da:25:93:de:4a:c6:42:70:5c:
5c:e4:21:a8:a5:59:c1:1c:3f:f4:8a:94:1a:4e:a3:
2c:d8:75:42:2b:e5:9a:d9:7f:ab:b2:40:8b:a8:5c:
cd:43:1f:1e:eb:84:33:24:df:22:e7:e7:68:93:a7:
93:f3:88:99:53:8f:1c:95:e1:42:42:f0:34:b6:da:
65:d0:fc:c7:c9:07:a4:30:17:78:d2:dc:2d:2d:8d:
e3:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:6E:08:96:E9:1E:AB:78:B9:DC:85:8F:12:E4:C3:73:F0:AD:43:64
X509v3 Authority Key Identifier:
keyid:63:8C:83:F9:A3:A3:D2:16:0A:01:78:CA:19:CC:B4:3A:0D:2F:18:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/cc3c28-7b13-4343-af37-25550ba29127/1/Y4yD-aOj0hYKAXjKGcy0Og0vGJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:11:cb:05:d9:5d:91:96:58:6f:7c:3a:66:2c:f9:31:87:cd:
f1:6c:91:43:9c:b8:7c:c5:dd:d7:69:db:b7:7a:d8:89:5b:a4:
b9:11:07:72:17:7d:4b:ef:45:e4:68:9b:c6:2b:8a:10:8e:a7:
49:6e:6d:8b:20:f2:b8:50:8a:4c:ad:3b:47:dd:bf:db:60:83:
ca:f4:bb:9a:31:20:f9:a1:25:9b:f1:64:42:08:7e:0f:22:57:
98:5a:e7:bf:a4:db:43:9f:1e:b2:8b:4f:03:a5:02:a2:e6:cd:
eb:3d:d7:bd:cb:69:0c:20:f9:07:06:e1:80:54:07:68:97:ed:
76:d6:a8:43:68:db:57:04:3b:13:c4:53:8a:29:12:93:7b:e7:
84:3e:b9:8c:7b:4d:a4:1d:d2:b6:7d:a5:21:a8:80:0c:52:a6:
57:d9:2d:66:de:d6:83:03:20:fa:cf:d7:03:73:a6:2d:c7:59:
75:11:a6:2b:d0:be:3b:27:a5:02:e5:b1:1e:45:7a:53:99:38:
90:fe:19:5b:4d:8e:5d:34:df:e7:37:a8:a9:ef:44:b1:76:15:
64:cb:d4:37:db:37:6a:42:49:f1:8e:dd:0f:47:e8:8e:a4:88:
41:80:a5:66:a1:ba:98:7e:9a:92:12:3e:09:68:37:22:3d:d9:
cb:f5:94:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 23:31:41 2026 by rpki-client