Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
File: ypAPHhHi0l0LIxatbgEmhIOayB4.mft (raw, json)
Hash identifier: 3R97GTTsoLCgqKXw3piKWK5oKGY/fmMzXTZ3pnP2qkw=
Subject key identifier: ED:04:04:56:1F:2C:6C:05:41:2C:C2:FA:90:50:0E:DA:B1:84:C9:55
Authority key identifier: CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
Certificate issuer: /CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Certificate serial: 019E1E6CC9A965A4E88905F64D7DDA3F7C3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
Manifest number: 1907
Signing time: Tue 12 May 2026 23:01:46 +0000
Manifest this update: Tue 12 May 2026 23:01:46 +0000
Manifest next update: Wed 13 May 2026 23:01:46 +0000
Files and hashes: 1: K2muBRhSzEeWwEOKyiaVJYw5K3c.roa (hash: 9FMIKD8yGkaykJTy68XJ8mxhdE87R0V7qtYcMc3oayY=)
2: ypAPHhHi0l0LIxatbgEmhIOayB4.crl (hash: Spw3MH/4y6Nm4WBZvKlqZBmXVAGhYn6xIXAkdiyTzOk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:c9:a9:65:a4:e8:89:05:f6:4d:7d:da:3f:7c:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca900f1e11e2d25d0b2316ad6e012684839ac81e
Validity
Not Before: May 12 23:01:46 2026 GMT
Not After : May 13 23:01:46 2026 GMT
Subject: CN=ed0404561f2c6c05412cc2fa90500edab184c955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6a:42:24:ca:59:55:d0:5e:5b:28:4d:41:3d:
7b:45:a7:93:8f:51:1d:58:9c:95:db:43:1d:81:57:
a3:b3:a0:60:20:cb:a5:40:1b:42:7d:65:10:07:4f:
bd:fd:97:69:fb:4e:14:64:27:66:2c:6b:a7:db:3a:
78:b1:0e:96:62:87:59:58:21:e6:4f:d5:ab:cd:fe:
6a:f4:7d:b5:f6:19:79:b9:20:93:0f:bb:9f:0d:15:
71:6a:d6:bd:a9:db:e2:96:52:d2:22:b5:0c:54:bb:
24:2f:90:52:fd:97:e3:4e:43:c8:f5:68:76:fb:19:
6d:33:54:84:f6:e5:00:78:6b:c8:db:ea:ab:bd:ae:
f8:a0:fb:46:56:7d:30:08:e7:c3:82:c6:8c:0f:04:
71:33:87:02:06:18:a9:34:18:37:f9:ea:09:a4:b4:
3d:0c:a9:1b:3a:6d:88:ed:f7:ab:3b:b3:03:db:41:
1b:6b:4b:bf:d1:03:41:9f:c3:29:23:0d:b7:30:12:
07:36:c2:0f:92:13:9b:30:77:5e:20:7b:04:7e:88:
8e:80:14:f7:85:9a:ed:76:83:f0:8e:aa:17:92:8a:
69:ab:57:81:65:34:14:f6:19:c0:32:10:43:12:dc:
ec:de:2f:ea:05:c3:6a:78:ff:c0:18:19:f0:9a:c1:
1f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:04:04:56:1F:2C:6C:05:41:2C:C2:FA:90:50:0E:DA:B1:84:C9:55
X509v3 Authority Key Identifier:
keyid:CA:90:0F:1E:11:E2:D2:5D:0B:23:16:AD:6E:01:26:84:83:9A:C8:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypAPHhHi0l0LIxatbgEmhIOayB4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/f6969c-3a6e-4bec-9742-ece87c6a0318/1/ypAPHhHi0l0LIxatbgEmhIOayB4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:2d:98:21:bb:05:0f:8e:c2:17:2c:91:25:31:5c:af:a7:ab:
1d:cd:87:3e:3a:25:60:f5:12:d1:a1:f1:0b:bd:6f:6f:f6:54:
b0:f5:51:19:b8:ab:40:f5:4d:b5:c2:0e:cb:50:43:9d:a5:75:
b9:7e:43:e8:fc:ae:7e:0e:b1:f1:5b:50:85:11:6b:3f:0c:6f:
5b:50:37:c7:1d:83:8f:2d:0f:08:13:c7:60:52:73:e3:d8:23:
e2:e7:95:2d:e3:93:57:ab:79:50:07:13:0a:0c:8b:7c:80:47:
94:89:eb:fe:d9:01:5c:93:a4:39:90:b0:14:c1:1f:ab:22:14:
d5:7f:0e:02:9e:6c:08:93:f4:f9:5e:41:18:8c:7b:2c:69:91:
68:a3:5b:4b:30:21:1f:de:ce:d8:13:0c:ad:5b:18:7e:d3:52:
5b:26:d8:93:a2:b4:bf:94:46:1a:39:bf:68:bd:79:75:ac:cf:
71:5b:6c:d7:5b:d3:54:e8:a7:ab:a6:2c:08:51:04:c2:e0:15:
ce:6a:9f:1c:e3:5a:f0:b0:94:e2:fd:3e:02:15:0b:90:a5:24:
36:4a:a8:23:7f:e8:2a:58:9c:23:87:0b:b1:de:dd:9f:26:5f:
dc:a3:02:0e:2c:fc:66:18:ec:c9:05:ad:8c:93:18:8b:2f:7d:
a4:02:9a:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:14:16 2026 by rpki-client