Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
File: tYaoZDYz6YdBEai881GKCQXyhgk.mft (raw, json)
Hash identifier: wRRqDLbZqrqLS3HTJEJ16oEJZWKm30s/pmXvzvo2Gu0=
Subject key identifier: B0:98:B6:5F:7C:34:25:73:66:9A:7F:08:15:D3:C7:19:38:C9:87:F2
Authority key identifier: B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
Certificate issuer: /CN=b586a8643633e9874111a8bcf3518a0905f28609
Certificate serial: 019E20C87BD8F51897F13CB72B04159722ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
Manifest number: 14B1
Signing time: Wed 13 May 2026 10:01:10 +0000
Manifest this update: Wed 13 May 2026 10:01:10 +0000
Manifest next update: Thu 14 May 2026 10:01:10 +0000
Files and hashes: 1: R_zL9EhetPG627p64jnL_1AQk_k.roa (hash: /ASm15I9YtFuL/r1IrLrMNiCv/23kZabo3hMsyygvPM=)
2: Zx2Ej29t4Sy3ugAdSAEr8wgh-eI.roa (hash: 6qePl3E6/9bWQI3GzNjE+NBTWrA6JE82fp1zkkf+j8o=)
3: gPytstS2H2DCx0G35K4nAVksneE.roa (hash: I34ZNFgqBn6ft829pIhUL9qJ7ZwAtJssKpKV0YYtJmI=)
4: hL4U-26oJ-d8CY7a6r3Udux4pFM.roa (hash: 8nT0Nid1k0WCSq4dufjGbFyrf1TbKzMQQr3veAEfmRs=)
5: jJ74mpm8B1pyvT1MNhCtSe0cxRk.roa (hash: OKs2X6l4NJ7txPZTz3RUzDrNyB2I3km6f/sNQFkFGUQ=)
6: tYaoZDYz6YdBEai881GKCQXyhgk.crl (hash: 1rbRwb7T48XUCRmo6t1YuhNAtQChvr5JPvQxKntboJk=)
7: v_CzW-gEtbdZtpCnpKHVty7BP7s.roa (hash: FK1HiNTHGuvdh1/S7hYfIVoOC1e1CT6RxRS6KDmNYRQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:7b:d8:f5:18:97:f1:3c:b7:2b:04:15:97:22:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b586a8643633e9874111a8bcf3518a0905f28609
Validity
Not Before: May 13 10:01:10 2026 GMT
Not After : May 14 10:01:10 2026 GMT
Subject: CN=b098b65f7c342573669a7f0815d3c71938c987f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c1:00:a3:43:01:ca:4f:c7:63:6a:1b:e6:50:
67:df:ef:ac:11:ba:3d:c3:04:b9:a8:ab:78:98:a2:
16:b8:64:ac:34:f6:06:10:59:90:d3:b9:0b:fe:11:
6f:49:f8:15:e9:05:10:49:6e:9d:4e:f4:53:01:b3:
da:e7:f2:2a:33:62:26:56:9d:cb:48:0a:5d:67:f6:
9b:b1:44:cd:c7:1f:df:2d:a4:58:d9:79:59:55:5a:
ab:a9:67:91:77:22:a2:0c:4f:3b:f3:93:c9:4b:7e:
dc:f5:50:98:0d:8e:25:60:8f:ff:2d:27:5b:86:a6:
4b:00:21:74:9a:03:a2:49:94:8b:20:86:9c:69:4d:
83:7d:7a:f7:c7:3c:19:15:18:97:f3:15:78:b3:9c:
f5:05:7c:b2:8e:70:5a:2a:bb:b5:74:e3:9f:2c:10:
60:58:ab:85:90:a8:e6:bb:40:dd:55:cf:4a:fb:37:
c8:02:b1:fe:60:0d:89:a6:43:75:41:f7:cb:cb:b0:
60:26:e7:5c:e8:51:78:00:7c:fd:82:43:65:23:32:
03:7f:29:b9:da:14:8f:2f:b5:25:ae:f4:e3:e3:04:
ac:27:1e:78:6e:52:8b:cb:66:ab:70:49:99:81:8f:
cf:ce:97:d9:91:c6:7e:1b:41:2a:c7:84:83:a7:22:
c3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:98:B6:5F:7C:34:25:73:66:9A:7F:08:15:D3:C7:19:38:C9:87:F2
X509v3 Authority Key Identifier:
keyid:B5:86:A8:64:36:33:E9:87:41:11:A8:BC:F3:51:8A:09:05:F2:86:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tYaoZDYz6YdBEai881GKCQXyhgk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/20ccac-33ee-45dc-bc9c-4499e3239f1f/1/tYaoZDYz6YdBEai881GKCQXyhgk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:cb:b4:05:ec:d3:50:fc:e7:e9:ae:92:40:fd:a5:de:cd:c8:
22:aa:fd:f1:13:72:dd:60:cf:63:3f:79:77:d3:9c:a3:86:d2:
a2:d5:3c:a7:9d:e2:6e:0e:ff:7b:9b:53:94:e6:b3:a8:8f:b4:
e2:78:20:3e:ed:25:5d:de:a4:0b:fd:fa:b9:a8:8a:69:50:e5:
cb:9e:da:be:43:e1:6e:89:96:0f:bd:0b:72:be:3b:6a:8d:5d:
7c:cf:7d:9c:41:11:d2:1f:44:9e:37:52:96:e8:66:18:b1:81:
75:4f:79:e5:25:f5:25:ab:44:e8:fb:59:89:06:24:ec:a9:11:
d1:9a:55:0c:d5:cb:9f:93:8b:5e:b8:9b:39:30:60:97:38:c5:
f7:8e:e6:04:d3:86:83:32:19:35:b9:fa:4d:41:bc:c0:07:35:
47:8f:e4:9b:c9:3e:ff:af:af:68:c4:62:3f:db:04:85:3e:3e:
ef:a0:3a:e1:fa:60:5b:d8:93:f6:f6:82:4d:1f:a7:11:46:2e:
55:3a:d3:65:7f:c1:ca:bc:79:5f:cf:f3:d3:25:95:8c:dd:f2:
f0:71:a3:b7:8b:76:fa:2a:bc:32:25:ad:eb:7a:26:a1:d6:b6:
58:79:78:84:c4:75:63:f8:99:67:eb:56:53:0a:4b:a2:f1:ab:
38:62:56:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:16:26 2026 by rpki-client