Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
File: YhuOSG7srmEk3hBJT9OROe1KN8s.mft (raw, json)
Hash identifier: JUot82rysyT1YJ08cB4mje6wlehpUFwpFE7hKdXF4FA=
Subject key identifier: 8E:3B:0A:3D:91:87:B5:AA:61:7E:A6:9E:4C:AD:5E:0E:53:52:31:F2
Authority key identifier: 62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
Certificate issuer: /CN=621b8e486eecae6124de10494fd39139ed4a37cb
Certificate serial: 019E1F47F830D1DDAB6F352122C2322DA598
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
Manifest number: 1907
Signing time: Wed 13 May 2026 03:01:10 +0000
Manifest this update: Wed 13 May 2026 03:01:10 +0000
Manifest next update: Thu 14 May 2026 03:01:10 +0000
Files and hashes: 1: BwYYOmhJLJqapgE9lvV3d7BEWAU.roa (hash: ME1eFTl4ynavuH8tL0n87NqGZ4of85as6TbMREzi3Ig=)
2: YhuOSG7srmEk3hBJT9OROe1KN8s.crl (hash: KbB9DUsCu2dALjw7+nss3+GDDHUZgUC0yp9FDCVUNbc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:f8:30:d1:dd:ab:6f:35:21:22:c2:32:2d:a5:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=621b8e486eecae6124de10494fd39139ed4a37cb
Validity
Not Before: May 13 03:01:10 2026 GMT
Not After : May 14 03:01:10 2026 GMT
Subject: CN=8e3b0a3d9187b5aa617ea69e4cad5e0e535231f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:54:f6:6f:33:19:0a:c9:ac:d7:ca:d6:cd:3a:
2f:31:a0:59:05:9e:08:53:0d:c1:75:77:53:a4:d1:
19:04:70:ea:7a:2d:33:1c:38:39:2e:84:dc:b3:6f:
35:bd:fc:ef:f3:80:be:72:99:39:9b:0b:bd:30:16:
1c:42:13:95:6f:3e:6d:db:81:b7:61:03:40:10:00:
fa:c2:cc:3e:d2:0a:a1:00:b7:e0:6c:cc:6c:22:bc:
e1:9b:ac:9a:4b:66:9c:4e:fe:fc:56:8b:61:bf:51:
9a:56:6a:06:db:a9:0e:97:56:11:0c:91:c8:89:2e:
e6:14:a2:d7:f5:4b:75:d2:05:40:eb:48:c9:b0:d3:
8b:8f:95:d3:2a:f1:d3:a9:44:8d:b2:ae:b6:6c:98:
84:74:63:0e:a0:c8:95:ed:df:31:a0:a8:8f:4f:25:
40:d3:27:6b:c4:5c:05:68:da:1e:cc:59:64:9a:52:
c5:4f:29:fd:af:a0:e8:cb:c1:b0:33:0a:23:5b:a5:
ac:88:61:b9:a9:3f:0e:fe:d9:a2:35:1d:1a:90:dd:
db:75:2c:1b:c3:1d:5d:77:fe:15:89:6e:dd:fe:ea:
dc:13:ab:8d:1a:e3:3b:02:de:6b:33:60:29:26:75:
8f:b4:0a:85:58:4f:0d:b6:2a:49:5a:dd:99:61:7f:
b9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:3B:0A:3D:91:87:B5:AA:61:7E:A6:9E:4C:AD:5E:0E:53:52:31:F2
X509v3 Authority Key Identifier:
keyid:62:1B:8E:48:6E:EC:AE:61:24:DE:10:49:4F:D3:91:39:ED:4A:37:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YhuOSG7srmEk3hBJT9OROe1KN8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/54213d-c3ed-4d67-b9bf-7ba136f51ef9/1/YhuOSG7srmEk3hBJT9OROe1KN8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:15:0c:a3:df:c6:df:70:a7:32:7e:23:9e:9d:1c:52:6d:38:
e5:f5:f9:15:fc:6f:af:57:2d:bf:2b:2a:a9:7e:94:5c:e8:24:
df:16:37:1e:46:9e:92:c2:03:50:0e:0e:c0:38:56:79:e9:be:
4d:ea:6c:b2:a3:6d:ab:b0:0e:f8:85:50:95:9a:ba:9c:e1:ac:
8e:09:80:25:9f:9b:e3:af:67:ae:72:5b:80:13:4a:9d:e4:92:
6c:0c:0a:55:7d:d3:92:95:ba:46:90:bd:f7:aa:37:a5:5c:63:
1a:cc:1c:98:31:66:68:07:35:8b:04:48:fa:b0:e1:a2:af:de:
6a:e9:8c:cc:43:27:a7:94:a9:09:22:1f:93:38:bb:3d:6d:6f:
9b:85:5c:f1:a6:59:2e:d2:93:bc:ac:46:78:2f:61:58:c5:80:
ae:a9:2d:5c:33:e5:e4:a9:68:49:cd:22:1c:fb:01:c2:c7:51:
2e:d3:8a:ff:22:cf:85:54:59:75:21:20:e6:d9:69:3d:56:53:
01:12:a3:6f:20:73:04:6e:6d:fc:ec:8e:58:84:48:bf:0f:f8:
97:6a:ed:e3:b0:49:53:67:15:e3:be:7f:4b:14:34:e2:a1:ea:
15:7b:a1:11:22:67:a6:80:54:34:34:8b:28:30:ad:54:1f:68:
c9:17:6d:8d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fR/gw0d2rbzUhIsIyLaWYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYyMWI4ZTQ4NmVlY2FlNjEyNGRlMTA0OTRmZDM5MTM5ZWQ0
YTM3Y2IwHhcNMjYwNTEzMDMwMTEwWhcNMjYwNTE0MDMwMTEwWjAzMTEwLwYDVQQD
Eyg4ZTNiMGEzZDkxODdiNWFhNjE3ZWE2OWU0Y2FkNWUwZTUzNTIzMWYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAslT2bzMZCsms18rWzTovMaBZBZ4I
Uw3BdXdTpNEZBHDqei0zHDg5LoTcs281vfzv84C+cpk5mwu9MBYcQhOVbz5t24G3
YQNAEAD6wsw+0gqhALfgbMxsIrzhm6yaS2acTv78Vothv1GaVmoG26kOl1YRDJHI
iS7mFKLX9Ut10gVA60jJsNOLj5XTKvHTqUSNsq62bJiEdGMOoMiV7d8xoKiPTyVA
0ydrxFwFaNoezFlkmlLFTyn9r6Doy8GwMwojW6WsiGG5qT8O/tmiNR0akN3bdSwb
wx1dd/4ViW7d/urcE6uNGuM7At5rM2ApJnWPtAqFWE8NtipJWt2ZYX+5IwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI47Cj2Rh7WqYX6mnkytXg5TUjHyMB8GA1UdIwQY
MBaAFGIbjkhu7K5hJN4QSU/TkTntSjfLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYt
N2JhMTM2ZjUxZWY5LzEvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC81NDIxM2QtYzNlZC00ZDY3LWI5YmYtN2JhMTM2ZjUxZWY5
LzEvWWh1T1NHN3NybUVrM2hCSlQ5T1JPZTFLTjhzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGBUMo9/G
33CnMn4jnp0cUm045fX5Ffxvr1ctvysqqX6UXOgk3xY3HkaeksIDUA4OwDhWeem+
TepssqNtq7AO+IVQlZq6nOGsjgmAJZ+b469nrnJbgBNKneSSbAwKVX3TkpW6RpC9
96o3pVxjGswcmDFmaAc1iwRI+rDhoq/eaumMzEMnp5SpCSIfkzi7PW1vm4Vc8aZZ
LtKTvKxGeC9hWMWArqktXDPl5KloSc0iHPsBwsdRLtOK/yLPhVRZdSEg5tlpPVZT
ARKjbyBzBG5t/OyOWIRIvw/4l2rt47BJU2cV475/SxQ04qHqFXuhESJnpoBUNDSL
KDCtVB9oyRdtjQ==
-----END CERTIFICATE-----
Generated at Wed May 13 14:32:47 2026 by rpki-client