Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft
File: Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft (raw, json)
Hash identifier: BFu8ZJoXKQqoOg6gFP2QNDdUHet/G5/YkHjYFscUhNM=
Subject key identifier: B3:C9:95:9D:60:B4:C6:39:96:AB:6E:8E:47:37:D7:28:26:92:C1:40
Authority key identifier: 63:53:82:9C:06:1A:8A:F2:6D:E9:46:FC:9E:81:88:5C:74:C1:74:C7
Certificate issuer: /CN=6353829c061a8af26de946fc9e81885c74c174c7
Certificate serial: 019F130A6972CEE5C888FC909EEDA516AA80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y1OCnAYaivJt6Ub8noGIXHTBdMc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft
Manifest number: 0B87
Signing time: Mon 29 Jun 2026 11:01:17 +0000
Manifest this update: Mon 29 Jun 2026 11:01:17 +0000
Manifest next update: Tue 30 Jun 2026 11:01:17 +0000
Files and hashes: 1: Y1OCnAYaivJt6Ub8noGIXHTBdMc.crl (hash: 33DIq7TGPKS7a903riFY0Go2Hw4vs5LOvNeQKVZ1SwQ=)
2: vvXDEA3-oSwvWKl3m20Q9UrS6wI.roa (hash: mQvtqYD2eC+84hVmHavb+1UIl2NHrV+2/J+tCnR9oyI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y1OCnAYaivJt6Ub8noGIXHTBdMc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 10:50:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:0a:69:72:ce:e5:c8:88:fc:90:9e:ed:a5:16:aa:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6353829c061a8af26de946fc9e81885c74c174c7
Validity
Not Before: Jun 29 11:01:17 2026 GMT
Not After : Jun 30 11:01:17 2026 GMT
Subject: CN=b3c9959d60b4c63996ab6e8e4737d7282692c140
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:4a:91:40:5e:03:6f:33:b8:9d:5f:c4:e4:ff:
ef:07:21:c9:9a:8c:49:2b:04:2a:1f:82:33:00:02:
06:cd:f4:aa:4c:80:f1:d2:7a:ec:f7:0e:d2:f8:ed:
9d:58:0e:63:4e:13:40:27:d2:17:9a:20:48:57:48:
55:63:9a:05:6c:ee:29:a0:db:31:d3:7c:69:79:1d:
6b:37:0f:e3:b6:dd:c8:14:69:a0:cc:01:4f:1e:1d:
83:d2:3f:6a:7e:fb:d4:60:ba:e7:ff:de:6e:70:43:
da:25:35:34:17:2e:4f:47:9d:04:38:9a:3b:d4:fc:
b5:cc:5c:9b:ef:70:07:b4:6f:f0:fd:24:70:bf:2a:
31:64:e5:d8:b9:fb:62:40:6c:06:8b:5d:2a:93:c1:
81:25:51:89:bc:81:94:11:25:12:19:84:dd:a6:52:
dd:d2:7b:13:61:18:55:f2:c9:49:c8:a7:22:a5:d6:
89:13:08:1d:b6:72:24:bd:cf:d5:6f:fa:55:f9:d1:
97:3a:73:7f:0c:11:74:6b:bc:a1:9c:b1:51:26:96:
22:93:da:3e:80:7b:23:e8:dc:31:b8:9f:51:48:90:
82:e3:93:c4:93:88:30:ea:91:e8:7f:69:60:5f:6d:
ca:cf:f3:00:c0:4d:af:f9:17:d0:84:6d:38:0b:17:
2b:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:C9:95:9D:60:B4:C6:39:96:AB:6E:8E:47:37:D7:28:26:92:C1:40
X509v3 Authority Key Identifier:
keyid:63:53:82:9C:06:1A:8A:F2:6D:E9:46:FC:9E:81:88:5C:74:C1:74:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y1OCnAYaivJt6Ub8noGIXHTBdMc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/8cf962-074f-41ac-ae2a-816203d21d12/1/Y1OCnAYaivJt6Ub8noGIXHTBdMc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:ae:b0:73:0e:f7:9b:bb:b6:45:94:57:85:a3:16:ba:d9:94:
4a:25:cd:7e:7e:4e:d8:35:b4:ad:4b:a4:72:df:b2:ad:4d:3a:
50:b3:93:79:a9:75:02:ab:ee:49:2c:6c:ec:80:fe:c2:e0:b0:
90:d1:c7:ff:a3:21:43:11:59:4c:cc:75:36:32:4c:0f:84:00:
01:d8:b9:5e:0e:35:54:0e:94:9d:82:b9:42:50:c6:b0:07:78:
dd:55:8d:28:29:00:2c:5a:6d:c9:35:2f:e7:9c:c4:7f:c6:29:
73:35:d2:0b:24:ba:d9:b9:6d:21:ae:93:1f:0d:7e:c1:7e:9d:
47:c5:99:99:48:2e:ba:44:0c:80:5b:ab:aa:14:d8:d1:b5:e1:
b2:50:d4:65:c1:42:8e:02:d0:6c:59:bf:75:07:b4:0a:bf:34:
4a:a5:6b:0f:02:9b:27:c4:54:17:50:3c:8d:9c:cb:12:c3:b4:
c3:25:78:3d:9b:70:2e:b5:e2:db:94:69:36:37:6f:84:52:5a:
1e:a4:4f:50:85:6f:8c:25:2c:34:59:6c:9f:08:5a:5e:06:75:
15:f8:61:99:16:bc:b0:b5:a9:89:6b:e3:e9:00:9c:a5:9a:f7:
70:5f:bb:58:a5:f7:8a:96:a1:aa:c2:cc:c6:1a:f2:da:63:d3:
28:6b:38:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 12:33:23 2026 by rpki-client