Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json)
Hash identifier: ohnxGhCyy5IXe6JTIu2s3nv0NBzWcT7Lte2UCVboxC8=
Subject key identifier: 34:5A:0C:69:0C:77:44:0F:5A:1D:EC:1B:EA:16:6E:E8:9C:8F:12:04
Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Certificate serial: 019E1DFE81B6133E598C079E7B2958695E08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
Manifest number: 032E
Signing time: Tue 12 May 2026 21:01:18 +0000
Manifest this update: Tue 12 May 2026 21:01:18 +0000
Manifest next update: Wed 13 May 2026 21:01:18 +0000
Files and hashes: 1: 1Fk04mxHWiQyArs1LutFgzh8wJI.roa (hash: fEoTYA52qtwHCVar7eg2OPgHFtSf1SmbEKWBVALe3L0=)
2: 9vsi3nCV1gkad2D_R9PGQ4_aUds.roa (hash: WlJCdNUrXcUzq+V2kFSnXZd+7HPYbq2YI6LmfD3u5nQ=)
3: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: TtM+cx4/TVzKvXvsdeFJmnctUKjWghgVMTUZ0A/gKrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:81:b6:13:3e:59:8c:07:9e:7b:29:58:69:5e:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Validity
Not Before: May 12 21:01:18 2026 GMT
Not After : May 13 21:01:18 2026 GMT
Subject: CN=345a0c690c77440f5a1dec1bea166ee89c8f1204
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fc:59:ae:6f:a5:3a:a1:27:7b:3c:cb:10:93:
00:46:2f:97:a3:57:b4:66:02:87:3d:8c:b0:47:38:
df:cf:6d:b5:50:1a:8e:7c:14:50:2e:ea:55:96:73:
bc:38:a5:67:30:74:0d:38:12:4e:d8:c4:6c:1d:b7:
a2:e2:73:e5:fb:59:15:bb:f1:bc:45:82:9b:85:8c:
c6:15:94:fb:63:33:d6:af:9d:d3:32:8c:49:d6:1b:
5c:ef:e2:6e:ee:e7:c5:20:2e:60:44:a0:70:65:87:
18:4f:a4:93:d2:56:91:fa:df:f4:14:c3:f9:95:32:
d1:70:5f:97:62:f5:0e:69:fd:03:9b:0c:28:2e:36:
0c:3e:ef:f6:01:8f:bc:a9:58:c6:7c:2d:88:37:94:
ed:6c:c6:8c:21:2f:3a:a2:35:92:92:28:b6:c2:74:
15:2e:e8:46:9c:07:7e:2c:45:c5:11:b0:84:47:a1:
39:8b:ca:31:f0:65:53:c5:50:d5:c0:73:ed:81:9c:
d4:12:e0:7c:43:06:a8:7e:ec:10:dc:ae:73:2f:a2:
cf:cd:84:a8:57:8f:17:9b:30:18:d7:c2:7b:f4:83:
7a:90:5c:24:e0:06:33:88:8c:8c:8a:8e:5c:0f:a4:
ca:e9:9f:b4:3c:97:3d:c7:ce:7c:a0:bc:80:b9:7e:
f2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:5A:0C:69:0C:77:44:0F:5A:1D:EC:1B:EA:16:6E:E8:9C:8F:12:04
X509v3 Authority Key Identifier:
keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:27:b1:43:ce:cb:e7:a3:e3:75:92:e3:34:6d:bf:d7:41:55:
ed:df:13:e2:ab:07:58:56:4f:1b:bc:dc:c9:90:0d:fc:ef:07:
34:60:c6:31:9d:66:3c:5b:cd:3f:5d:cb:f6:5b:92:c6:a5:37:
f8:24:d1:8a:62:ac:55:47:0b:d2:de:52:5d:34:bd:0f:bb:74:
57:a2:e5:9f:84:5d:46:3c:23:0a:d1:dd:df:4d:17:07:90:36:
1b:1b:4d:90:db:66:bf:7d:d9:f7:5c:8e:b1:eb:c5:a4:c0:cc:
d4:42:ae:5c:12:14:b6:e1:f7:95:01:c2:a8:de:6a:fb:05:c3:
5c:e8:3a:ed:1d:8f:0f:b8:07:95:aa:ac:8d:19:75:8f:9e:15:
3b:a6:be:02:2f:e4:35:0b:2a:95:cc:f0:61:2f:59:b3:3b:50:
9a:bf:a6:ab:2b:42:fc:bd:28:12:ee:c6:b2:ff:39:0a:fa:d9:
81:c4:71:63:ca:c8:f4:82:c0:29:9e:2c:54:15:14:75:55:8e:
4f:49:8d:c1:c3:35:5b:0f:e6:c1:42:87:3d:82:0d:03:58:30:
2c:0f:c5:9a:cf:ad:9b:b5:7a:56:4a:93:f9:c6:cc:a4:ff:ab:
40:35:6d:e0:01:8e:43:84:4a:41:39:f3:8b:06:0b:e5:87:3b:
d4:87:ef:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:21:58 2026 by rpki-client