Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
File: JY8HU8Azwa8JGGbQlCZFEmlspos.mft (raw, json)
Hash identifier: sdUd5N8fWcidpcI5iBAa+y4E8gr+V8oqX5rNQ+Z96js=
Subject key identifier: B2:B4:41:3B:65:13:70:83:81:49:0A:83:FE:80:A3:81:CF:9B:79:FD
Authority key identifier: 25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
Certificate issuer: /CN=258f0753c033c1af091866d094264512696ca68b
Certificate serial: 019E1EA388700325428D619C4F1A63214EFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
Manifest number: 0C52
Signing time: Wed 13 May 2026 00:01:34 +0000
Manifest this update: Wed 13 May 2026 00:01:34 +0000
Manifest next update: Thu 14 May 2026 00:01:34 +0000
Files and hashes: 1: Cpe2_Ojc_FZLY2oGHgVbMwJjk9A.roa (hash: QYPBK9tLe2NLf5ToJsGlVRXUrRctKZptQZU1FwtQfmU=)
2: JY8HU8Azwa8JGGbQlCZFEmlspos.crl (hash: fhZAwzMd33AuVQftIT7X6Ka5HuOvjDy+oix0TeQ/tnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:88:70:03:25:42:8d:61:9c:4f:1a:63:21:4e:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258f0753c033c1af091866d094264512696ca68b
Validity
Not Before: May 13 00:01:34 2026 GMT
Not After : May 14 00:01:34 2026 GMT
Subject: CN=b2b4413b6513708381490a83fe80a381cf9b79fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0d:05:51:78:8e:03:38:1d:a7:d0:56:2d:27:
8d:f6:ba:75:5d:00:46:b4:08:da:33:b9:15:1d:16:
bc:9a:65:0a:63:78:7d:7c:19:ac:b7:be:67:32:54:
90:49:a9:88:44:44:65:74:d2:5b:29:26:65:de:24:
01:3f:e9:51:c0:2a:29:f5:aa:a9:d9:60:9b:a8:ec:
6c:ec:8b:41:51:ad:82:55:7b:39:bc:51:27:d4:80:
7f:16:9f:6d:8f:cf:4e:f0:a8:dd:63:af:34:12:a4:
d9:19:8e:84:8c:5a:e5:2c:be:76:83:00:dd:ce:a8:
44:54:74:84:55:2c:25:2b:2d:88:f2:b4:7a:1f:40:
00:72:55:20:89:62:9c:5b:2c:d0:b3:06:98:d4:89:
b0:b5:71:a4:3f:05:11:8a:ed:c5:68:f9:b8:6a:17:
57:dc:18:ab:6c:85:50:4b:58:86:df:fe:b5:f6:2a:
98:1b:83:b4:47:ab:b1:a9:c8:c0:92:c6:f8:41:11:
ca:af:20:d2:48:29:bd:ee:46:08:0a:07:5c:8c:91:
46:36:df:0a:e2:0d:df:e6:d0:19:d1:03:65:69:4f:
3c:d9:90:bd:af:76:a2:b0:05:2d:c7:e1:00:df:bd:
07:63:84:ef:ef:38:40:91:ec:95:01:8a:c9:f1:91:
bc:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:B4:41:3B:65:13:70:83:81:49:0A:83:FE:80:A3:81:CF:9B:79:FD
X509v3 Authority Key Identifier:
keyid:25:8F:07:53:C0:33:C1:AF:09:18:66:D0:94:26:45:12:69:6C:A6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JY8HU8Azwa8JGGbQlCZFEmlspos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/3bae87-82eb-451f-8044-2c2f0d24f936/1/JY8HU8Azwa8JGGbQlCZFEmlspos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:a3:03:06:5b:24:9f:c9:26:d6:7b:45:6b:eb:a6:6f:ce:77:
b1:f7:fe:f9:25:c0:9e:8c:3c:fe:b5:f4:8e:a0:e5:83:f9:6d:
2c:38:62:45:e3:8e:98:cf:a1:21:20:0d:5a:06:0e:54:b7:06:
d8:0a:20:c7:36:be:21:6a:b9:cc:26:ac:b2:65:de:7c:f3:98:
2e:47:10:26:32:0c:60:e1:55:82:f1:ac:70:54:c8:da:8d:0f:
a9:65:51:da:62:90:85:2d:f3:4a:b3:41:7a:00:b1:f8:ab:dd:
14:7a:fe:c4:5b:fd:fa:d7:62:74:07:9c:80:f8:73:81:04:e3:
75:12:b3:d7:81:08:a7:b8:ab:73:21:b3:6b:98:e9:72:b7:e6:
f1:9e:2e:fb:7b:8b:69:13:70:1b:98:e9:c3:e4:6a:70:f2:d5:
fb:30:07:34:79:4d:75:89:f4:c9:6d:9c:26:6f:a9:05:f4:af:
81:3b:17:c8:3c:65:03:ad:03:c7:ce:31:8e:42:84:b9:5b:31:
cf:4b:7f:30:66:56:1f:90:73:7c:d4:ab:11:89:17:65:6c:d2:
c1:db:37:b0:94:00:ea:c0:3f:8e:14:3f:54:53:ba:9b:dd:ff:
f5:9f:00:5e:6a:23:7e:98:33:d8:99:e8:dd:ba:75:f0:3b:e3:
ff:a8:88:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:43:02 2026 by rpki-client