Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
File: y2bnZjRVc9cVnWeU7a7bc5okH48.mft (raw, json)
Hash identifier: ioUNMnHir0dQhSrCyjhDd0408l1SSQhoTzeQ29WuaaY=
Subject key identifier: 95:23:BC:88:5D:91:51:17:D3:E2:3A:48:8A:81:54:38:09:52:9F:36
Authority key identifier: CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
Certificate issuer: /CN=cb66e766345573d7159d6794edaedb739a241f8f
Certificate serial: 019E205A8A7232CEB45CE3CB85570275E8B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
Manifest number: 0956
Signing time: Wed 13 May 2026 08:01:04 +0000
Manifest this update: Wed 13 May 2026 08:01:04 +0000
Manifest next update: Thu 14 May 2026 08:01:04 +0000
Files and hashes: 1: y2bnZjRVc9cVnWeU7a7bc5okH48.crl (hash: 8QBqN0ZYdTTw9jzqn9bl65VI7Sj0bH0z4JmwAG0UHM8=)
2: zyxH_ZayU87vTJX81fgX-DVJmTk.roa (hash: v7IX/ua2uQXhjGalwVPCerFWeIG3hQEbj9ssotgdfjM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:8a:72:32:ce:b4:5c:e3:cb:85:57:02:75:e8:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb66e766345573d7159d6794edaedb739a241f8f
Validity
Not Before: May 13 08:01:04 2026 GMT
Not After : May 14 08:01:04 2026 GMT
Subject: CN=9523bc885d915117d3e23a488a81543809529f36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d2:b1:c4:d5:99:67:42:81:7e:6d:e4:91:23:
28:3b:a6:d4:52:cd:e6:0a:0e:e3:b3:ad:9a:57:c4:
87:03:54:c8:34:b0:a2:ed:94:6d:b8:ed:75:38:fe:
4d:ac:54:d3:62:3f:94:67:d0:f9:07:71:46:46:3e:
84:2d:07:30:f2:e9:88:f9:f5:88:02:9e:32:4c:46:
9e:45:41:2c:7b:26:fe:56:ac:4b:03:1a:f8:e3:ac:
6c:81:c3:85:4b:3b:53:70:57:27:3b:2e:f0:d1:a2:
9f:a9:db:1c:a4:13:33:0c:8e:4a:b6:e1:e5:e9:5f:
91:e9:28:5e:29:95:3c:6c:d4:b0:00:b4:fa:12:59:
e6:d4:56:e2:75:c2:9a:37:4e:b7:0b:aa:04:b5:4f:
fb:a2:8d:1e:80:f1:b5:e9:4d:b8:e8:45:05:ca:c3:
4e:f9:0c:d5:eb:c2:20:9f:d6:9d:19:53:10:96:fe:
3b:2a:4a:1b:9b:b4:13:6c:7b:83:1c:84:07:0e:37:
6f:dc:58:84:31:92:2c:13:25:a1:d8:0e:95:82:d4:
33:fe:c7:9d:5f:32:98:19:06:a2:ef:98:ba:44:99:
4b:09:2c:2e:5b:36:22:5a:4a:d9:4e:89:a3:00:fe:
d3:b0:95:64:ee:45:78:d9:d0:29:77:03:78:28:c2:
d4:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:23:BC:88:5D:91:51:17:D3:E2:3A:48:8A:81:54:38:09:52:9F:36
X509v3 Authority Key Identifier:
keyid:CB:66:E7:66:34:55:73:D7:15:9D:67:94:ED:AE:DB:73:9A:24:1F:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y2bnZjRVc9cVnWeU7a7bc5okH48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/45890e-6f71-4d36-988a-65bf79b0a989/1/y2bnZjRVc9cVnWeU7a7bc5okH48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:e0:07:73:32:39:f0:66:8e:70:d0:11:5c:dd:e3:06:b0:f0:
49:bb:08:d1:69:89:a2:88:51:8f:43:7e:a7:5a:46:58:6b:91:
94:92:2e:7f:90:84:42:3b:a3:1c:14:0c:f4:6b:0d:80:3e:6f:
82:60:67:aa:44:ed:ef:d5:3a:6f:0e:fe:eb:c8:85:30:cb:27:
f0:2b:bd:bb:c4:db:1f:88:7b:ec:9b:3f:c4:e1:8d:99:af:b4:
76:d5:8d:16:de:c5:9c:e9:34:e2:ef:62:64:71:f0:fe:58:2a:
fc:2d:d9:ef:01:db:91:65:09:17:d7:71:75:51:a6:2c:54:11:
bb:80:c1:dc:fe:c2:22:f4:bb:23:05:3c:6f:88:4d:3f:16:f1:
67:99:f5:10:a6:3a:3a:a0:63:ef:28:6d:ab:fe:64:cc:40:b7:
96:84:42:cf:eb:36:c1:11:ca:2d:af:a1:d5:96:80:c0:fe:79:
a9:73:81:66:0e:a4:69:20:d4:46:35:df:05:1d:a1:19:0f:0c:
11:bb:38:2c:6a:31:24:3e:43:39:f0:ae:be:ee:a5:1f:92:7b:
5e:d5:67:2e:73:51:f2:88:c7:e3:a9:44:cd:28:5b:ac:34:1e:
92:45:10:3d:b1:c5:ac:8f:07:6b:8e:ba:18:bc:9b:1c:2a:3b:
e0:94:4f:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:04:00 2026 by rpki-client