Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
File: y6AXGgLV5KdftAY1VFrgBkyMzK0.mft (raw, json)
Hash identifier: SjTVP9qhpNsQfLKFbIX8DlWbT1wtFY9UkuHI47RQZSY=
Subject key identifier: E6:7F:1E:97:5C:2C:7E:60:19:0F:97:A3:19:7F:94:29:A0:2D:DE:FB
Authority key identifier: CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
Certificate issuer: /CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Certificate serial: 019E9BF29B192F5F4576D85C0FB5B2F021CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
Manifest number: 1654
Signing time: Sat 06 Jun 2026 08:00:28 +0000
Manifest this update: Sat 06 Jun 2026 08:00:28 +0000
Manifest next update: Sun 07 Jun 2026 08:00:28 +0000
Files and hashes: 1: UxOjp8XUs-Ky59G3Ao0aGxBbUxk.roa (hash: IG/Uj+pARjcg7xsZwOswZLWfcj4Zeh91EtnXY1KelO4=)
2: y6AXGgLV5KdftAY1VFrgBkyMzK0.crl (hash: zjKs+BcAnqwMxCW4QidtC6mmJxs8V9xWINNYWswNvs4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:f2:9b:19:2f:5f:45:76:d8:5c:0f:b5:b2:f0:21:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cba0171a02d5e4a75fb40635545ae0064c8cccad
Validity
Not Before: Jun 6 08:00:28 2026 GMT
Not After : Jun 7 08:00:28 2026 GMT
Subject: CN=e67f1e975c2c7e60190f97a3197f9429a02ddefb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:70:56:89:3e:9b:82:1f:20:11:c0:80:ef:e1:
1d:01:50:2e:4b:d8:d9:40:51:cd:40:88:e6:16:9f:
5d:e1:00:21:8b:11:e7:78:2b:e5:8f:bb:fe:eb:98:
8c:2c:f3:63:b5:90:a1:99:7c:23:0a:b1:3f:36:ab:
ec:5c:d2:61:54:57:66:dd:00:3a:58:b9:53:bd:0e:
c8:f3:a0:49:07:fe:4e:54:8d:07:8a:d1:66:00:0a:
73:45:fd:e7:ee:03:cc:c8:8f:db:95:f7:3d:15:f1:
1c:34:9b:57:99:9e:0b:da:74:2a:be:97:f6:da:00:
85:13:4b:c6:9a:be:ef:87:95:a4:db:fa:fb:0d:23:
fd:91:e9:02:fe:77:e5:c8:19:24:48:fa:96:a6:50:
40:6f:74:fb:b0:d3:1c:59:41:fc:aa:24:3a:26:44:
bc:22:54:30:c9:f0:9c:cd:54:11:5e:31:e6:e7:da:
d0:c9:43:05:88:67:e2:f5:78:9c:b5:40:53:d9:64:
15:ca:89:62:b3:a6:32:dd:f7:0e:6b:65:d0:b5:0d:
c4:cb:b4:02:17:64:7d:e1:68:15:fd:2e:3f:c0:d7:
b9:93:b9:36:b5:2e:ab:06:8f:a5:87:be:9f:4b:b9:
94:f9:bb:c0:bd:bd:27:e6:03:78:99:19:70:cf:76:
de:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:7F:1E:97:5C:2C:7E:60:19:0F:97:A3:19:7F:94:29:A0:2D:DE:FB
X509v3 Authority Key Identifier:
keyid:CB:A0:17:1A:02:D5:E4:A7:5F:B4:06:35:54:5A:E0:06:4C:8C:CC:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y6AXGgLV5KdftAY1VFrgBkyMzK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/654433-e320-42ae-bb61-570b14833534/1/y6AXGgLV5KdftAY1VFrgBkyMzK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:b0:4b:31:4c:90:37:ce:cf:84:08:5e:19:68:71:95:73:a2:
c7:52:c5:42:b9:43:ab:79:d4:f6:66:fc:55:c0:cd:08:14:39:
62:68:6d:84:f2:f7:75:b1:04:c1:0f:6d:93:c3:30:47:c8:00:
13:1d:a9:6c:e2:b2:e4:0d:a5:f9:42:0c:27:21:c5:ef:79:f5:
51:58:93:af:80:4d:a3:95:1e:29:7b:a0:70:da:a9:70:8b:95:
61:b5:49:f9:54:4d:59:39:af:d9:db:f9:8d:1f:91:57:bc:93:
56:b4:9b:6a:82:04:bb:fa:d1:0b:b3:20:a8:d5:7e:be:eb:82:
5a:9b:8e:65:ae:81:ed:73:92:07:97:29:19:2f:85:1a:1c:9f:
10:e9:d4:cf:fd:33:3c:32:cd:3d:22:9d:98:65:a7:ee:86:cf:
c1:d6:c8:9b:1e:c2:d5:75:1c:05:14:93:16:14:38:54:ac:b1:
7d:24:f5:9f:4f:18:6d:58:4b:ec:b3:a7:fd:80:bd:61:84:3e:
3c:81:32:74:c7:e9:fd:3a:9d:ba:0f:85:f0:3f:60:1c:42:8c:
9c:ca:52:9f:95:d3:e4:f8:3f:56:87:87:06:31:20:a4:f9:e2:
91:bd:3c:5a:a4:c9:76:88:46:39:7e:85:7f:ad:f2:b4:7f:d2:
b5:4a:55:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 12:09:13 2026 by rpki-client