Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
File: yRjEAZR0zIHsZh_OZObJOJchlto.mft (raw, json)
Hash identifier: m7A2U6iWfoL3F1z4uVJbKoWo4QFxeQbP45MmoJO1CqM=
Subject key identifier: AF:B5:65:5A:EB:9A:D8:DF:51:FA:86:5B:9E:7F:52:EC:81:18:94:DE
Authority key identifier: C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
Certificate issuer: /CN=c918c4019474cc81ec661fce64e6c938972196da
Certificate serial: 019E202330BFC24B10FD06FD30CD4F88A99B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
Manifest number: 08AA
Signing time: Wed 13 May 2026 07:00:37 +0000
Manifest this update: Wed 13 May 2026 07:00:37 +0000
Manifest next update: Thu 14 May 2026 07:00:37 +0000
Files and hashes: 1: C_wku5jNWsis0PL0WlmaY8cUefc.roa (hash: J88psE63nbYG3X/J1+2VVAZBNf7cffwkkrlJw1ScQ80=)
2: yRjEAZR0zIHsZh_OZObJOJchlto.crl (hash: JvKe5ca+5AFqIZe4tC3zm9TbrjdWDXWykKnL8TsLGV8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:30:bf:c2:4b:10:fd:06:fd:30:cd:4f:88:a9:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c918c4019474cc81ec661fce64e6c938972196da
Validity
Not Before: May 13 07:00:37 2026 GMT
Not After : May 14 07:00:37 2026 GMT
Subject: CN=afb5655aeb9ad8df51fa865b9e7f52ec811894de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:70:66:76:22:04:c8:ef:00:9e:04:81:39:40:
75:eb:07:02:11:ab:c0:77:af:d1:9e:a2:f3:b0:93:
b6:d8:23:76:60:ca:b6:a0:42:e9:2a:99:c5:9c:44:
f7:49:53:98:23:7e:82:fa:fd:91:1d:c9:b5:4b:de:
a4:23:0f:e9:c4:b1:05:79:54:d8:c9:79:03:80:c2:
b2:2e:44:68:5a:1b:63:68:df:7d:dd:ea:35:22:e9:
45:09:a0:c7:b5:0b:2a:5d:1a:b8:dc:d9:c8:1a:e7:
35:fb:17:33:88:90:9e:b2:8a:bd:d1:6c:8c:91:e7:
c0:ae:ca:89:28:3a:7d:fe:b9:45:62:9e:38:7b:e7:
66:c5:17:6d:48:ef:4a:c2:8a:ec:1d:ae:c7:30:06:
0c:c5:6d:72:18:41:83:dd:d5:3b:3b:a7:8c:ad:3b:
9e:9c:fe:94:e4:c1:9b:8e:1d:97:ac:e6:8e:eb:a8:
7a:13:6e:a8:ff:29:e4:b4:97:99:1e:2d:ee:3e:e8:
54:98:fe:96:79:c5:b0:b4:fe:bb:c5:40:7c:de:61:
60:12:3d:ba:c1:81:34:b9:1e:96:77:04:cd:1f:a9:
b1:9e:c5:34:ad:42:ec:98:ef:6a:15:91:f0:fe:91:
a8:94:62:73:67:5b:1f:29:df:a4:f7:e1:85:8a:20:
a6:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:B5:65:5A:EB:9A:D8:DF:51:FA:86:5B:9E:7F:52:EC:81:18:94:DE
X509v3 Authority Key Identifier:
keyid:C9:18:C4:01:94:74:CC:81:EC:66:1F:CE:64:E6:C9:38:97:21:96:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yRjEAZR0zIHsZh_OZObJOJchlto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/296852-a8fd-48e5-8dd6-8abcbb65c621/1/yRjEAZR0zIHsZh_OZObJOJchlto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:3c:90:d9:e3:ce:0a:4e:07:d4:d0:3a:e8:c0:71:0c:b2:6e:
81:1f:fc:13:0a:ff:01:59:41:2e:49:09:f7:20:47:ba:9c:a9:
36:03:48:3e:9d:ed:22:b6:8a:68:85:89:77:3d:77:9d:31:b1:
95:1e:b5:24:09:c2:5f:f2:d5:55:5d:1e:0b:f7:4f:27:84:60:
ec:b1:33:b1:db:35:d0:80:70:06:fd:93:40:3e:76:22:5b:bb:
f4:ba:ef:27:f2:e8:58:48:f4:13:b7:e5:02:a0:af:cc:b8:8b:
cc:8b:72:34:e1:d7:f3:43:4f:53:50:ea:5e:1e:ca:ec:da:c5:
6a:d8:48:e4:4f:4f:35:f0:1d:3e:3e:3c:4a:28:b9:1c:25:f9:
f1:b3:f2:4d:50:63:ef:4f:6e:06:0a:5b:ee:8b:78:0c:4f:a8:
0e:29:6c:e9:b4:13:e5:03:3b:f6:19:50:9e:7a:f8:8f:b4:41:
94:c6:bc:de:68:25:c7:72:e2:d7:87:d5:61:10:b9:5f:27:75:
e8:c4:3b:0c:23:c8:7a:f0:6e:3a:5c:b2:2d:61:15:4e:2b:30:
26:ad:cb:26:ac:d8:a7:63:7b:68:9b:68:e5:eb:1d:78:0e:de:
e6:22:3f:a4:33:3c:8e:44:b8:05:ea:89:f7:9e:6c:e8:3f:04:
d4:bd:50:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:03:39 2026 by rpki-client