Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: AEI083bh+1l/Cjm3/R8BmuenvuWrHurUys+h9mio5h4=
Subject key identifier: 43:33:8B:1C:51:93:D8:58:96:D0:1E:10:64:19:37:F7:1C:BD:FA:14
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 019E209245A9AEB1FC9A28ADDDC0B59F9927
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 0829
Signing time: Wed 13 May 2026 09:01:57 +0000
Manifest this update: Wed 13 May 2026 09:01:57 +0000
Manifest next update: Thu 14 May 2026 09:01:57 +0000
Files and hashes: 1: h1IcZRGY_rRXRhpZWTLbtpzh9tM.roa (hash: L8O1+G2QnBwVNFEY7LCl7zf6sGt3HNSfVfaE38wa8Uo=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: oRbRwr2z/m4kQku8YMlDpIihhgTerhXL2q2Y2ibjQng=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:92:45:a9:ae:b1:fc:9a:28:ad:dd:c0:b5:9f:99:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: May 13 09:01:57 2026 GMT
Not After : May 14 09:01:57 2026 GMT
Subject: CN=43338b1c5193d85896d01e10641937f71cbdfa14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6e:37:e0:5b:11:ff:3f:2f:e8:e2:cc:fb:4f:
59:1f:a9:45:45:4e:59:29:6c:27:72:04:61:14:9d:
74:44:38:fd:46:7a:75:de:86:10:ba:9c:b1:a0:f0:
df:cd:37:b1:17:ab:0b:1c:c1:e8:ea:0e:1f:f7:58:
17:7b:1c:43:75:77:cf:73:9b:2e:11:1c:94:35:d1:
93:8b:b4:52:80:5d:2e:3b:c8:1e:8a:7e:4e:c3:a2:
ca:b1:3c:b5:36:3a:0c:5e:7a:ec:e6:f8:98:bd:85:
fc:ca:13:10:36:07:77:3f:85:d0:4e:8b:aa:d6:1c:
d4:1e:43:df:dc:65:10:52:fb:ba:ce:71:c6:a8:45:
34:8d:fd:1a:cb:a6:36:b8:36:78:7c:05:eb:16:3a:
e4:74:2a:82:74:92:fb:57:19:c9:ca:aa:11:f2:c9:
1b:5a:86:ec:4a:c4:e8:55:4d:64:a9:18:8d:6c:4e:
a2:49:ac:65:b1:82:c5:5e:90:86:8e:bb:38:82:1d:
be:73:9d:95:b2:a2:c5:53:98:46:40:7d:ab:2d:3e:
db:63:4e:39:75:b2:1b:84:1c:13:93:c6:71:71:27:
29:7e:d1:09:d7:0f:68:0e:72:79:d6:0e:84:4b:51:
1c:78:ae:f0:44:65:67:d6:ed:2c:ab:35:1c:14:3d:
4c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:33:8B:1C:51:93:D8:58:96:D0:1E:10:64:19:37:F7:1C:BD:FA:14
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:2f:c9:65:aa:a9:af:3a:5e:68:fa:69:cf:4a:cd:e4:50:38:
5d:3f:d7:c8:3e:a1:94:33:9f:9c:64:08:ad:22:04:e1:49:de:
f3:2e:d4:af:a2:f4:ea:19:42:ac:8d:fd:73:2f:2e:8c:71:42:
48:47:8f:e1:a2:0d:49:71:4e:bb:f4:1b:f9:fb:a8:53:e8:45:
2a:e0:0e:2d:7d:a7:88:80:3a:de:ff:d8:6c:31:9c:29:38:23:
85:18:ad:68:69:50:ab:40:6d:fd:2c:d5:c9:4b:21:a1:e5:c5:
47:29:b3:5a:8e:ca:de:65:de:c6:cf:82:83:35:54:92:dc:96:
fe:84:7f:0a:be:4d:ef:5c:0a:48:4a:7f:0e:7e:d1:e0:bd:c1:
d9:4b:71:19:dd:fb:b4:8b:4c:34:a7:db:1d:8f:b4:51:64:b6:
b0:b2:99:7f:84:c9:05:ab:55:46:3a:8d:c8:a5:b2:9d:86:63:
f2:a6:fd:52:dc:f9:b5:50:1b:ab:b1:9b:07:38:a9:81:72:87:
df:c5:2a:df:d4:4e:d5:ad:2f:fe:4f:b9:b6:89:b2:b5:ca:2f:
be:ee:12:4a:ba:8c:c3:0e:7c:82:23:2a:cc:9b:e1:57:65:80:
06:e5:34:e7:2d:9d:94:a8:42:fa:ac:f0:d9:78:bb:cc:b8:b2:
ef:26:76:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:19:00 2026 by rpki-client