Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
File: yikNsvcpBfDbYmsAW6zwiHjRe6w.mft (raw, json)
Hash identifier: qqrHQZ+rD7YNQ2Ctc0ttlLCAtl8PfjxFSg6GjTJTl9A=
Subject key identifier: F0:91:F2:5D:F7:B1:7D:93:AC:C2:78:1E:7F:84:AE:FF:FB:17:70:2A
Authority key identifier: CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
Certificate issuer: /CN=ca290db2f72905f0db626b005bacf08878d17bac
Certificate serial: 019E30E028980007265E77EACFB8B29B8D50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
Manifest number: 0D3A
Signing time: Sat 16 May 2026 13:00:57 +0000
Manifest this update: Sat 16 May 2026 13:00:57 +0000
Manifest next update: Sun 17 May 2026 13:00:57 +0000
Files and hashes: 1: CitEHd6r_CsQSgbionGA1eBcMLU.roa (hash: 1rANra1AzVxMgl8VcJaThBHrC2EUS4bUsTwEZ+EKh0w=)
2: GcvVWNFfgF0wu0Nfjs_BudGQw9Y.roa (hash: KB0pqrvO6Erz4/rIYGhqqlfhiTfb86tI38IPNb7s0Ow=)
3: WubjxHCSaP4QHue8QiWJLn9wu24.roa (hash: gOCleJwqwii3IPAc/S3k490GMZ5rkPiOH6rY9OCeZlc=)
4: cP554_mw0i_-2i5ondqs4ybL7Sk.roa (hash: 2BFM3dBYEA6Al1rq89/1sEyXAEFO0eUAmQaufDFqA9A=)
5: ktjIcji8JZjmvPNVbyNsDh1AaNI.roa (hash: OhINTejQ3OUauCVxjnxjYQBZeRf8l4Bc1ZHLwTdPGVQ=)
6: mYlVHFIkWhjce6SZlz3waAY66A8.roa (hash: 4EmaIQp2LaV/4WUzCFLlD6HjVOOnifTa9SWdZEfSqzY=)
7: yikNsvcpBfDbYmsAW6zwiHjRe6w.crl (hash: kCb4wuUAY1TS2FssT1gnKXJc1WKDpXeiBsbaP17jLtk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 13:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:28:98:00:07:26:5e:77:ea:cf:b8:b2:9b:8d:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca290db2f72905f0db626b005bacf08878d17bac
Validity
Not Before: May 16 13:00:57 2026 GMT
Not After : May 17 13:00:57 2026 GMT
Subject: CN=f091f25df7b17d93acc2781e7f84aefffb17702a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:c2:21:01:7c:57:4b:e9:6f:06:31:c8:96:b6:
05:c1:c2:98:55:da:4e:87:ab:e2:13:a7:10:94:07:
4a:5c:c1:f4:68:04:76:bf:b8:d8:af:8e:32:84:06:
2c:3c:fc:f3:a3:28:5c:14:9e:98:fa:90:99:53:30:
57:eb:2f:13:f4:b5:c6:53:a8:a7:2b:40:01:f9:06:
6c:df:5a:25:0c:f9:54:55:ba:ff:96:db:4b:d4:f4:
8e:e0:55:2f:98:71:d5:b5:3f:ab:67:26:2c:66:e8:
1e:df:f0:de:1d:26:cc:1e:fc:d5:6f:f2:1f:4a:61:
d9:17:33:26:a3:ef:f9:ec:ac:b2:e7:ef:06:48:f1:
b6:e7:01:ba:d7:09:a6:64:5c:33:f5:8c:db:69:78:
3e:fc:c2:0a:4a:0d:66:9b:12:b9:d5:48:90:ce:a7:
87:b3:ce:02:e9:77:47:d1:51:7c:77:c0:b9:4b:14:
5f:c4:17:5d:a2:71:ed:1a:97:71:31:93:b0:8f:04:
a8:14:57:a0:7f:cc:58:98:f3:9a:94:70:71:9c:c2:
41:1b:9c:1f:b3:31:66:74:d6:15:44:98:dd:27:86:
92:21:c8:f1:af:2f:c3:72:6e:8b:33:88:68:bb:6d:
08:c9:96:b4:f7:c5:b4:05:66:99:cc:41:9a:ef:c4:
3d:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:91:F2:5D:F7:B1:7D:93:AC:C2:78:1E:7F:84:AE:FF:FB:17:70:2A
X509v3 Authority Key Identifier:
keyid:CA:29:0D:B2:F7:29:05:F0:DB:62:6B:00:5B:AC:F0:88:78:D1:7B:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yikNsvcpBfDbYmsAW6zwiHjRe6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/216973-516f-4501-9164-7f435bf5501c/1/yikNsvcpBfDbYmsAW6zwiHjRe6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:2b:7b:d9:dc:27:06:b6:23:7f:ab:42:3a:41:e1:aa:1f:7d:
cc:af:be:1a:63:da:4d:e3:90:67:c4:74:03:db:2c:92:6c:3d:
c2:80:a9:35:d7:14:6d:b5:aa:69:d2:e8:dc:af:4d:06:1e:6e:
ee:77:ed:6c:24:09:87:21:4e:4e:37:11:5e:59:f6:12:e0:fb:
8a:7d:f9:42:73:16:7e:d6:22:c6:53:86:6d:66:7f:ba:ef:85:
c2:a2:14:74:cb:1d:22:14:d3:8e:a4:44:3f:24:33:09:fd:5e:
5d:32:d0:71:88:da:d9:e5:e2:3f:4f:86:fc:2d:c9:e4:84:8d:
42:09:51:43:f3:58:d8:9e:7c:eb:42:66:75:e0:53:a9:12:2f:
d1:8d:78:e6:3b:67:97:41:a1:2d:cc:dd:e9:9c:3a:99:1b:70:
31:67:c9:ae:53:bf:01:6f:d8:53:16:85:c0:43:32:dd:68:f7:
59:a5:ba:92:82:07:d7:1b:ef:cd:9c:3f:75:f8:93:3b:f4:38:
33:ae:c7:ef:ee:53:f6:f2:95:0b:00:9c:16:03:51:fb:c0:9c:
05:2b:1c:a4:90:65:cc:d6:f7:ba:7b:65:ec:36:3e:bf:46:f0:
d8:5a:90:3c:fc:10:c1:d0:4a:03:d8:5c:5e:b6:23:23:f0:f1:
fb:ba:01:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:41:10 2026 by rpki-client