Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/ybHXw7TuhyMzamWFOapzRvI9Z3I.mft
File: ybHXw7TuhyMzamWFOapzRvI9Z3I.mft (raw, json)
Hash identifier: y8HhnipngtQi1q6tPxh59TOvdlPhrtwUA6YgGqUafbs=
Subject key identifier: 7E:A2:5C:A8:F0:18:14:A5:A4:D3:A8:26:66:D5:48:C5:02:B2:84:B7
Authority key identifier: C9:B1:D7:C3:B4:EE:87:23:33:6A:65:85:39:AA:73:46:F2:3D:67:72
Certificate issuer: /CN=c9b1d7c3b4ee8723336a658539aa7346f23d6772
Certificate serial: 019E2091177B1F6AB10FF1BBADC704C137A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybHXw7TuhyMzamWFOapzRvI9Z3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/ybHXw7TuhyMzamWFOapzRvI9Z3I.mft
Manifest number: 18AA
Signing time: Wed 13 May 2026 09:00:40 +0000
Manifest this update: Wed 13 May 2026 09:00:40 +0000
Manifest next update: Thu 14 May 2026 09:00:40 +0000
Files and hashes: 1: kW4drk2LDPNcQ18FgzKd9iSfVfo.roa (hash: wnwxedVG+s68D4H1gWYhMG2g4d0oAegzbZPXw3fMM7c=)
2: ybHXw7TuhyMzamWFOapzRvI9Z3I.crl (hash: cMl0WvHyZPoX1bLGDtlTrbb7T4lJXufJ0aLZt7M7AqY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/ybHXw7TuhyMzamWFOapzRvI9Z3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/ybHXw7TuhyMzamWFOapzRvI9Z3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/ybHXw7TuhyMzamWFOapzRvI9Z3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:17:7b:1f:6a:b1:0f:f1:bb:ad:c7:04:c1:37:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b1d7c3b4ee8723336a658539aa7346f23d6772
Validity
Not Before: May 13 09:00:40 2026 GMT
Not After : May 14 09:00:40 2026 GMT
Subject: CN=7ea25ca8f01814a5a4d3a82666d548c502b284b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:90:ca:86:fa:f9:45:72:dd:42:61:e9:fa:20:
f1:f1:20:d7:e5:a5:72:84:3f:f2:f7:56:b9:b7:fe:
6c:7b:e4:ac:ba:a9:9f:9f:e6:30:b2:aa:9c:b0:16:
5e:5b:1a:bd:d7:04:77:f5:02:4c:d4:a5:3d:13:80:
05:db:43:cd:25:da:c8:fc:87:0e:cd:fd:1c:26:96:
9c:7d:89:12:01:a1:26:74:66:2b:a5:b7:60:28:47:
59:cc:14:ba:bf:81:c4:f2:24:87:46:84:b8:d7:d7:
1b:6c:59:e0:fb:8d:0d:f6:96:8b:73:3b:37:e1:c8:
c0:bf:ca:81:e2:20:b5:56:2e:4e:93:01:e8:af:8e:
47:52:81:6e:3a:44:3b:97:4a:02:ed:ad:18:11:9c:
0b:29:c0:87:2b:2a:75:5e:56:85:e6:48:b9:68:2a:
18:ee:41:f1:08:0a:39:45:64:2f:74:29:25:db:e7:
a2:20:37:25:56:16:1a:ca:1d:ea:de:73:e5:78:8a:
57:71:e1:c9:ba:10:0b:8e:d7:ff:79:39:ce:42:9f:
98:13:4f:95:2b:bb:9e:cd:89:d8:55:26:e1:3d:85:
0c:07:51:23:42:dd:96:d6:ce:7b:8c:dd:10:54:03:
2a:81:36:57:92:c8:03:06:4d:f2:b6:f1:77:42:a0:
cb:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A2:5C:A8:F0:18:14:A5:A4:D3:A8:26:66:D5:48:C5:02:B2:84:B7
X509v3 Authority Key Identifier:
keyid:C9:B1:D7:C3:B4:EE:87:23:33:6A:65:85:39:AA:73:46:F2:3D:67:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybHXw7TuhyMzamWFOapzRvI9Z3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/ybHXw7TuhyMzamWFOapzRvI9Z3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e094bd-091c-433b-bf58-164cc6a4ed1e/1/ybHXw7TuhyMzamWFOapzRvI9Z3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:db:d5:cd:17:ba:8b:d5:48:0b:e1:ea:1d:89:d0:0d:6b:73:
18:b8:18:0e:2b:7b:8c:8f:2a:58:4a:aa:93:53:8f:65:c4:55:
0e:7f:24:ba:6e:90:55:82:64:2b:96:a1:c1:d5:92:77:40:bf:
93:39:5b:d0:84:4c:74:cd:d7:d8:b8:d6:5f:dc:13:d7:e5:b4:
89:6b:54:0f:6d:04:2a:c9:9d:35:1b:28:df:5a:3d:e5:25:eb:
37:34:6b:66:3a:63:12:29:7f:31:da:5c:5f:ad:82:e6:1e:a4:
11:40:2c:d8:0b:fd:30:cb:e3:50:2f:74:b2:84:b9:94:d2:4b:
cf:72:9a:eb:d6:8a:41:ee:34:f6:4f:b8:9b:78:91:5f:47:58:
f0:ab:40:f3:99:e0:60:4d:eb:1d:ae:d3:d2:61:30:7e:e6:67:
4d:2e:a5:83:8a:f8:8c:6f:26:5a:fd:00:39:7a:11:b8:cc:65:
0c:3e:68:83:7a:d1:5c:f1:86:5f:4a:72:2c:a0:a1:4d:99:4e:
48:96:9f:6e:99:ab:62:64:dd:b0:df:5a:3d:4f:27:2b:5a:b7:
e5:a1:cc:b4:0a:a6:41:dd:54:6c:f4:f8:48:04:c3:b9:00:a3:
95:d2:2d:88:6d:f3:1e:68:65:d4:d5:2c:d2:77:73:00:0d:33:
75:34:1e:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:39:18 2026 by rpki-client