Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
File: cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft (raw, json)
Hash identifier: UYUkG0iKbbvvim/WmXI3nvLoluYJbZiPDbflR+LIxoA=
Subject key identifier: C2:8E:D0:6E:48:30:F0:68:15:16:E0:55:93:91:B6:7D:27:12:B2:E0
Authority key identifier: 71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
Certificate issuer: /CN=718b138ba935234f11ca1025d667f133f07d55fd
Certificate serial: 019E2023E29BD01B339DFB2F44FD3A9C2955
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 07:01:23 +0000
Manifest this update: Wed 13 May 2026 07:01:23 +0000
Manifest next update: Thu 14 May 2026 07:01:23 +0000
Files and hashes: 1: 9GyPy5VxmA8Grjp6KPGlBXEzQEs.roa (hash: cZRk0f4ULOIcvr4Kq3jJj23UFievd5ZXiHt0/5E2LwY=)
2: cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl (hash: EkHCTWR5ZfxkRG1d9IbkLAUxvKvlc4xhU08wYTTwy0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:e2:9b:d0:1b:33:9d:fb:2f:44:fd:3a:9c:29:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=718b138ba935234f11ca1025d667f133f07d55fd
Validity
Not Before: May 13 07:01:23 2026 GMT
Not After : May 14 07:01:23 2026 GMT
Subject: CN=c28ed06e4830f0681516e0559391b67d2712b2e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fc:52:e3:03:a7:a3:fe:c0:f4:55:42:b0:1b:
3a:46:a2:ef:19:b6:b5:6e:64:63:15:40:63:5f:f5:
8d:5f:42:16:00:06:a1:4d:07:3a:4a:46:8f:43:20:
ab:9b:38:af:4b:c3:d2:2c:13:1e:41:f1:89:20:e8:
40:43:9e:e4:ee:64:8d:bc:81:f9:e7:ab:49:9f:a7:
00:ba:c1:07:e4:23:9d:fa:f7:51:66:30:37:5c:98:
a3:0a:8a:98:fa:e2:4e:57:da:53:91:0c:eb:33:c7:
a4:f9:99:69:c6:ce:86:39:41:61:ff:12:e6:01:5d:
71:c1:bc:53:78:76:13:52:68:74:ad:c4:8e:2c:2d:
37:70:ee:12:f9:49:a8:70:da:4c:ed:d6:7b:85:6c:
0a:81:81:78:78:e6:5f:5c:6a:95:42:35:f7:e2:29:
0c:f4:f4:f1:c2:92:7c:d6:39:b9:3b:e3:8a:3a:f6:
1b:77:4b:66:c3:a5:21:e0:80:e9:96:ac:ca:2c:9e:
a1:96:a0:d8:04:14:8b:bd:bc:d5:6e:68:f7:53:42:
85:77:ff:1a:d9:5d:46:01:c5:36:b9:d2:9f:60:8d:
05:74:47:a2:e3:86:5b:cc:a5:0f:f0:61:5c:3b:e3:
b3:9b:15:b3:f7:13:4d:c5:a3:7c:c0:31:29:d4:a2:
a5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:8E:D0:6E:48:30:F0:68:15:16:E0:55:93:91:B6:7D:27:12:B2:E0
X509v3 Authority Key Identifier:
keyid:71:8B:13:8B:A9:35:23:4F:11:CA:10:25:D6:67:F1:33:F0:7D:55:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cYsTi6k1I08RyhAl1mfxM_B9Vf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/d43085-d94e-469d-9778-3b8ec1a65880/1/cYsTi6k1I08RyhAl1mfxM_B9Vf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:d6:05:a8:5e:d7:50:d2:ea:0f:40:01:03:eb:af:45:be:5e:
7f:50:b0:77:20:d0:03:bf:75:d0:c3:b5:be:65:5c:8c:5c:1c:
e5:cb:f0:cb:a9:bc:0e:eb:fd:da:da:32:57:3c:27:4b:bb:f6:
98:b9:7c:b5:26:db:02:ec:e0:1a:3d:e3:dc:28:54:db:92:06:
ce:7b:a1:4b:c8:90:35:0e:e1:8b:bf:81:65:83:31:9c:8b:66:
41:d3:b7:44:12:01:1c:08:46:6a:3c:7f:69:ae:ee:e3:fb:4e:
2a:cb:ea:69:8f:9f:98:5c:d7:80:94:fa:43:5a:23:21:18:40:
10:16:d1:ec:28:85:a7:ee:5d:ec:14:9a:c7:0b:91:eb:56:f7:
9a:95:a8:91:a9:43:95:e1:3e:b2:ca:69:12:b2:17:1f:62:c0:
66:4a:78:a6:dc:c1:59:dd:a2:cb:3c:22:cb:68:cc:ab:80:37:
aa:4a:33:59:de:88:5d:33:6a:7d:e6:50:0e:9e:3b:8f:d8:f0:
69:6d:cf:ae:a0:39:99:0b:3a:fa:11:65:48:dc:b5:d4:04:4f:
f1:ef:76:13:97:89:99:88:e6:28:fc:39:1a:23:8c:d0:dc:58:
92:e1:e7:08:03:04:ce:7d:e6:7e:70:98:9d:43:f8:47:79:60:
a4:92:0a:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:12:49 2026 by rpki-client