Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
File: Ym0k1r81OWP-WvolsKWWZxUqhtA.mft (raw, json)
Hash identifier: 7vU1T9AkkiDHHfSExdx7JyfrySplPEG1buaJBN8bKfs=
Subject key identifier: 6D:4A:5E:96:A5:5C:77:D6:20:77:B4:D0:16:75:13:A7:E6:7F:A7:FC
Authority key identifier: 62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0
Certificate issuer: /CN=626d24d6bf353963fe5afa25b0a59667152a86d0
Certificate serial: 019E92826F891C109F1DFAB4649233ECCA59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
Manifest number: 10D2
Signing time: Thu 04 Jun 2026 12:01:22 +0000
Manifest this update: Thu 04 Jun 2026 12:01:22 +0000
Manifest next update: Fri 05 Jun 2026 12:01:22 +0000
Files and hashes: 1: BOEi7NrSCNnbOJagz6PacwPyCow.roa (hash: gcJkZ8tsvtRiMSl8JsUfBFpQEizMhx1qFKi60dWgXD0=)
2: Ym0k1r81OWP-WvolsKWWZxUqhtA.crl (hash: BvydAIMAzMaAGLcjoKZG7eRR+OBsRzar2kpM4QJPt2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:92:82:6f:89:1c:10:9f:1d:fa:b4:64:92:33:ec:ca:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626d24d6bf353963fe5afa25b0a59667152a86d0
Validity
Not Before: Jun 4 12:01:22 2026 GMT
Not After : Jun 5 12:01:22 2026 GMT
Subject: CN=6d4a5e96a55c77d62077b4d0167513a7e67fa7fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:5c:f1:30:3e:07:b3:4c:85:a7:41:3c:0c:b4:
10:a3:d8:01:2f:75:55:e5:fe:77:aa:a9:d6:a4:2e:
ed:d6:40:81:31:f4:d8:ca:7b:15:df:cd:59:2c:fe:
b7:ab:24:af:fc:27:62:26:f6:19:4e:1e:b4:65:fc:
fb:db:60:2c:52:6f:7b:1e:79:50:44:31:20:50:28:
be:da:0b:c9:47:19:52:2e:9c:e2:a9:d0:21:00:18:
bd:43:bd:97:b4:b9:5f:98:89:c4:c4:ee:14:a3:02:
f5:dd:ae:1c:97:05:5b:c9:f7:b6:1e:54:a9:93:5a:
44:1e:01:77:0e:f6:0a:49:8e:63:1c:61:31:72:8b:
26:b2:3b:04:c3:de:11:11:b5:96:a8:d3:a0:3c:8f:
20:63:e4:d8:78:43:42:8e:39:33:e0:b0:53:0e:c8:
b2:04:15:5a:fb:a7:15:13:d9:b1:17:a4:92:d8:3b:
c1:05:08:13:34:5b:78:d7:4b:9a:57:a4:f2:39:10:
4b:e0:6c:9c:85:82:ce:74:82:2e:4f:03:7a:6d:0a:
9a:83:b6:7a:88:9f:17:43:bc:80:29:6f:81:9e:b1:
0c:c2:3f:b3:90:77:c4:9e:3d:72:a9:f6:68:18:c4:
4b:d5:79:4e:f6:01:6e:df:9f:90:2d:2a:bb:6d:d6:
c3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:4A:5E:96:A5:5C:77:D6:20:77:B4:D0:16:75:13:A7:E6:7F:A7:FC
X509v3 Authority Key Identifier:
keyid:62:6D:24:D6:BF:35:39:63:FE:5A:FA:25:B0:A5:96:67:15:2A:86:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ym0k1r81OWP-WvolsKWWZxUqhtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/63432a-e5d9-46e2-9c01-ac809bbae737/1/Ym0k1r81OWP-WvolsKWWZxUqhtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:77:91:cf:82:e4:a9:db:b1:fc:3f:80:43:16:1a:36:07:91:
17:9c:68:e6:9f:00:fa:b9:3f:c7:9e:b6:80:35:ec:3c:42:c1:
2d:53:2a:2c:bb:4b:69:ce:14:34:57:7e:48:f4:99:6a:2c:0f:
ca:12:9b:5b:6e:2f:2d:39:09:2d:c6:c9:ab:6c:91:6d:e8:c9:
49:f9:06:68:d4:b0:6f:a8:e1:35:52:d1:5f:66:aa:df:09:93:
c0:2c:28:1f:0c:e1:63:c0:28:99:20:d6:20:0f:04:ba:02:85:
78:62:21:cf:99:40:ec:70:64:d7:59:1e:b6:ea:1a:49:71:a9:
bb:81:45:ec:50:b0:8e:8f:a4:c1:3d:03:8e:ce:52:ac:78:d9:
f1:1e:4e:dc:63:14:f3:9f:08:a0:6c:42:3b:70:e2:0b:45:3a:
0b:21:1a:5a:a4:e1:68:8b:c7:f9:46:4a:15:04:ac:44:15:4c:
a9:63:f5:d0:7b:52:d0:9c:54:aa:f9:6f:13:c3:84:02:22:da:
f8:b8:f8:1a:19:94:b6:27:04:3d:67:52:b4:d0:63:8a:d6:55:
1e:47:98:67:aa:5d:ed:f3:da:3d:26:8e:b5:51:73:81:49:2b:
cf:82:17:c9:16:76:94:1c:42:d4:05:fe:4a:9e:a1:0b:1f:28:
14:98:b8:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 16:01:05 2026 by rpki-client