Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
File: _YmzSchPx7NBKlLWX_Jg0swomrk.mft (raw, json)
Hash identifier: 6Wr/9Sm7WCYW1yd+onMb5GULDtzjwkTLxDG+3WTJ7eU=
Subject key identifier: 90:36:BB:3A:65:B5:B6:11:03:1A:DC:17:17:71:A0:92:D0:F7:C0:DC
Authority key identifier: FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
Certificate issuer: /CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Certificate serial: 019E1F47E4AE6A0A8102440F356C7301E1E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
Manifest number: 0F97
Signing time: Wed 13 May 2026 03:01:05 +0000
Manifest this update: Wed 13 May 2026 03:01:05 +0000
Manifest next update: Thu 14 May 2026 03:01:05 +0000
Files and hashes: 1: 7B9W0clLzsK4p1pr53bEH61EQBg.roa (hash: g9Qq+800T4dGI74x3Nt1LLvxWvY9mzvmzZ74GSFdjw0=)
2: _YmzSchPx7NBKlLWX_Jg0swomrk.crl (hash: U/7myQ3u0PdhtqyVQxrLP4Mv7A20KbnenE55vfyy120=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:e4:ae:6a:0a:81:02:44:0f:35:6c:73:01:e1:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd89b349c84fc7b3412a52d65ff260d2cc289ab9
Validity
Not Before: May 13 03:01:05 2026 GMT
Not After : May 14 03:01:05 2026 GMT
Subject: CN=9036bb3a65b5b611031adc171771a092d0f7c0dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:0a:c3:bb:b0:84:b2:56:93:a1:b2:14:8d:fc:
cb:c8:3a:4a:14:fb:20:9e:4c:70:04:c3:24:4b:3b:
83:13:63:5c:8f:01:39:f9:51:66:85:84:00:1c:b4:
cf:2b:52:f9:58:b1:62:71:22:fa:85:00:53:60:df:
16:e4:86:17:ab:ed:f2:a4:76:25:7f:34:94:73:48:
03:e9:6f:f5:da:6f:c3:e0:21:94:d5:32:2c:40:c4:
31:19:42:b6:89:ad:8c:bf:ea:76:90:a0:71:e4:1c:
4f:26:6a:27:93:b3:8e:11:35:08:11:43:d1:79:3a:
b1:32:46:fe:da:c2:ea:3c:ef:d2:ea:b4:62:59:9f:
37:b8:d7:c9:20:82:6c:7e:6f:ab:b9:ba:46:49:a1:
2f:80:64:ab:ca:90:9c:ce:05:d2:06:a5:5c:e7:61:
26:b1:ab:05:73:75:04:27:9b:34:2b:16:bb:3e:e2:
da:5e:a3:d5:4d:7e:ad:c7:a2:cf:70:79:6d:b9:55:
67:75:b0:a7:f1:1f:a6:18:6b:ed:58:4b:6f:6d:58:
73:00:d3:31:6f:5e:62:a2:30:f8:df:b4:b8:58:db:
05:8e:20:d3:22:c8:e4:2d:eb:76:93:40:b7:ef:f3:
c6:e2:e0:c9:dc:1c:4f:8a:ea:88:1b:8f:e4:b9:4f:
77:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:36:BB:3A:65:B5:B6:11:03:1A:DC:17:17:71:A0:92:D0:F7:C0:DC
X509v3 Authority Key Identifier:
keyid:FD:89:B3:49:C8:4F:C7:B3:41:2A:52:D6:5F:F2:60:D2:CC:28:9A:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_YmzSchPx7NBKlLWX_Jg0swomrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/ee714a-21ac-4386-82f5-e8176102c5ff/1/_YmzSchPx7NBKlLWX_Jg0swomrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:e3:16:f6:6a:f8:6c:7e:9d:26:25:e3:29:78:99:20:1a:2f:
7e:a0:ab:79:4b:10:bb:ce:f3:11:c7:07:bd:56:af:3a:0c:12:
ed:f2:24:12:f2:a0:05:c1:a3:7e:5c:6a:97:9e:01:7a:8d:2e:
c1:9d:2b:e7:c6:6a:b8:b8:bd:45:98:e9:cf:b7:18:f5:0f:e4:
e2:b2:a4:69:d0:f8:5f:68:40:8b:bf:7c:f2:8f:74:00:b3:ca:
df:d8:c9:53:a4:d6:1c:5a:a2:f9:f3:30:12:4f:17:f2:d1:97:
dd:cc:cb:a3:77:72:41:ec:26:2d:0f:b2:59:61:74:43:f5:c7:
c5:46:04:cd:7a:aa:51:29:68:93:46:0d:db:dd:4d:e4:4f:09:
71:50:b9:2a:7d:91:30:13:b2:b0:52:ec:5d:48:64:d1:8c:35:
11:3c:24:43:e4:a0:a5:f3:72:15:31:22:1c:f5:bd:32:c5:c6:
2a:c4:78:7f:eb:88:34:c9:ea:2e:ec:30:ff:e9:6a:fe:cd:e3:
bd:b4:89:0b:83:62:64:60:cc:53:8f:2b:9d:57:c5:5b:68:3d:
9e:31:8c:74:22:02:47:ea:f8:a1:26:63:11:2c:bb:31:0d:76:
3a:dd:fd:89:62:cf:16:61:39:45:29:15:bd:19:28:9d:5c:33:
ae:93:a0:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:43:40 2026 by rpki-client