Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
File: riYajfUykscw4q4d_PxP4_92sdA.mft (raw, json)
Hash identifier: e3D2yNLPJeo29bbdLzSeZaHF9Mlv06Kia0DOSPXtaRA=
Subject key identifier: 5C:2C:F2:05:3D:2F:60:DE:97:89:16:FC:49:33:BF:B2:4B:A9:0C:E3
Authority key identifier: AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
Certificate issuer: /CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Certificate serial: 019E2A029306839DCAAD509B111710901B1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
Manifest number: 194A
Signing time: Fri 15 May 2026 05:01:12 +0000
Manifest this update: Fri 15 May 2026 05:01:12 +0000
Manifest next update: Sat 16 May 2026 05:01:12 +0000
Files and hashes: 1: Br8jDqLYrkaBjiJL6wr8w6b0avs.roa (hash: W7Sv+CJ6euSWOJRS/NssioWUOsmXYLBpEHMl3h7F400=)
2: DOQ8AlxWLE2vY7KBlqArp_D5uNk.roa (hash: v0cgDIGN25wK3dPZkNRB0dnbjCCauMeW+83WdAY4Puo=)
3: X4D9lHTk8PnxZTblZAtVaE1dNQQ.roa (hash: 6uloBsTlbb42wmCR8mdc3PElXKD6suKGJ+NWpe9F6Hc=)
4: khJQh_gOJAhdH_kny7OeYEA7vpE.roa (hash: APga9Ti26SSiaeHSYmmvz0zsM85wvjZCduJHpw3sCos=)
5: mzjq_E9j-9cKk2TKoQGkLBC5u4Q.roa (hash: 2CE2j2LCoSSQcA7NTRzO1EXIEEufcX6KVxq3KWqXbTI=)
6: qoAheOHH9UlqCoE7XA-QfCZLxZw.roa (hash: VVjSLN2hXu/mswe8VPF+IlHQVMhQLF+wIH35GZEPXZ0=)
7: riYajfUykscw4q4d_PxP4_92sdA.crl (hash: JJUtpfB2ZjuISfP1d5NUkc69A4Ji/RrQF30WX2Iw8uA=)
8: xJ55egTi-SOwIls63DtlY0C_yhc.roa (hash: kC3zkfZ5rMjuoKk4EnSBPzpT5cCfNNDGdDzD8ejaa+g=)
9: yh54kqFVQkBUGD2L64gmg0WiwgQ.roa (hash: fbRZrlQ7uDmusRMcXTaTF8xAN1V4wdzB4QikocdzyJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:93:06:83:9d:ca:ad:50:9b:11:17:10:90:1b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae261a8df53292c730e2ae1dfcfc4fe3ff76b1d0
Validity
Not Before: May 15 05:01:12 2026 GMT
Not After : May 16 05:01:12 2026 GMT
Subject: CN=5c2cf2053d2f60de978916fc4933bfb24ba90ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:33:00:d9:f1:36:a1:a0:de:c1:bc:9e:bd:81:
dd:c3:d3:79:61:ae:4c:a2:08:64:b4:f2:df:01:93:
25:1d:b2:44:b8:49:1f:56:3d:94:f5:2e:74:ba:ce:
2a:fb:56:56:c0:30:11:64:10:75:72:7c:3b:ce:9d:
e4:a2:f9:fc:f8:28:6e:3a:bc:14:b2:c5:73:89:90:
79:64:93:b6:9e:63:4a:11:11:e8:e0:82:07:8d:8b:
83:f6:82:a9:c8:33:f6:d0:04:47:40:ca:22:59:a9:
0e:c0:02:9f:7d:d0:24:68:87:22:a5:a4:4f:7f:19:
78:96:fb:60:f5:a3:d7:0e:95:6b:f0:bc:f0:d4:5e:
85:82:c8:bb:0e:39:ca:47:64:ee:c9:e9:70:a2:f2:
42:b6:e1:e1:3a:86:48:26:ac:7b:07:6d:a7:c9:a6:
e2:64:23:14:fa:99:5e:93:bc:cb:3b:96:45:49:8a:
11:2f:42:44:ee:58:a9:0f:30:b9:5a:01:a2:e9:cf:
2e:8a:c9:1a:4a:df:c4:da:fa:13:b5:a5:95:98:6f:
2e:e2:8a:5b:e2:7f:22:5c:43:3d:14:bb:3e:71:b1:
59:73:76:cd:ca:ee:92:27:05:17:60:83:eb:0c:70:
78:fb:ac:b9:09:44:56:ae:77:10:b5:2b:1f:24:29:
b4:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2C:F2:05:3D:2F:60:DE:97:89:16:FC:49:33:BF:B2:4B:A9:0C:E3
X509v3 Authority Key Identifier:
keyid:AE:26:1A:8D:F5:32:92:C7:30:E2:AE:1D:FC:FC:4F:E3:FF:76:B1:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/riYajfUykscw4q4d_PxP4_92sdA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/1a849e-861c-4c4d-bcf4-5695d89d7b36/1/riYajfUykscw4q4d_PxP4_92sdA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:6b:83:a1:b7:b9:29:50:50:b0:8f:33:f1:8c:97:9d:69:46:
a6:90:60:b2:46:b3:97:33:a5:d9:b3:25:2c:c2:52:c4:36:8b:
c7:b4:ba:c0:e7:b0:df:b0:f2:9f:74:1e:39:10:bd:78:11:c1:
54:40:90:2f:da:8a:de:c5:45:6c:36:4d:3e:a3:17:d9:c3:be:
4c:5c:33:f7:8b:92:bf:92:11:d0:b5:41:2a:a0:73:e1:d7:15:
66:81:6f:26:e1:aa:a6:7c:af:a2:b1:7d:0b:9e:bf:ab:27:57:
76:5e:6e:41:03:8b:c3:22:96:df:a4:23:5c:1d:72:91:e7:8c:
32:0a:0f:dd:c3:44:ab:72:80:6b:27:34:24:15:39:b9:23:ec:
30:b4:90:81:31:57:7c:de:2f:fa:5d:d9:d2:28:d0:6f:3c:60:
c0:d3:c5:80:7a:66:14:dc:7e:01:f4:5d:c1:72:e0:e1:e8:93:
33:af:af:6b:5b:ce:6b:4c:30:3e:85:bc:71:c1:c4:50:56:86:
d0:97:87:82:ac:ec:e5:bf:ca:9e:99:eb:77:8b:7e:00:1a:16:
b5:0e:c1:07:73:7b:83:bd:4d:29:2d:8d:32:d2:40:90:a9:52:
ee:3b:8f:96:03:1d:71:69:5f:f9:73:90:30:d4:5f:38:c1:cf:
9b:3b:c0:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 11:15:38 2026 by rpki-client