Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
File: iyTYS_9MkhfR3vpd0zTIyFMiams.mft (raw, json)
Hash identifier: h4w6uzPEf17TcaCx1smqkeCbkbql2vJIDrstXeOPFHw=
Subject key identifier: F8:34:BE:07:EB:90:3A:1E:DE:08:E1:53:FF:68:45:DB:C2:14:2A:32
Authority key identifier: 8B:24:D8:4B:FF:4C:92:17:D1:DE:FA:5D:D3:34:C8:C8:53:22:6A:6B
Certificate issuer: /CN=8b24d84bff4c9217d1defa5dd334c8c853226a6b
Certificate serial: 019D9DE3944A68E3D70C94EE49947560E1E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iyTYS_9MkhfR3vpd0zTIyFMiams.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
Manifest number: D2
Signing time: Sat 18 Apr 2026 00:00:30 +0000
Manifest this update: Sat 18 Apr 2026 00:00:30 +0000
Manifest next update: Sun 19 Apr 2026 00:00:30 +0000
Files and hashes: 1: iyTYS_9MkhfR3vpd0zTIyFMiams.crl (hash: 5MzYi+ps9ozs/D62lqgy20PQrHh0FIEEJRAxrAG2q+4=)
2: uv1ygUlcXrGSDECbU5SJQezpERk.roa (hash: heh+HmefIR2zFpP0zIec4O9N2L5u5pbDsZ881lNVG4E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
rsync://rpki.ripe.net/repository/DEFAULT/iyTYS_9MkhfR3vpd0zTIyFMiams.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 21:23:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:e3:94:4a:68:e3:d7:0c:94:ee:49:94:75:60:e1:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b24d84bff4c9217d1defa5dd334c8c853226a6b
Validity
Not Before: Apr 18 00:00:30 2026 GMT
Not After : Apr 19 00:00:30 2026 GMT
Subject: CN=f834be07eb903a1ede08e153ff6845dbc2142a32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:df:8c:5e:55:66:2c:77:32:2e:9b:29:f9:6e:
b7:41:fe:ff:bf:5d:46:16:dc:f4:16:49:d8:4d:1e:
d2:38:f1:3c:3c:af:2b:1a:f8:c3:da:a0:fb:a2:21:
69:92:d9:6d:1e:74:01:98:f9:f2:cf:a4:43:99:09:
7b:ec:11:f2:e6:6f:36:f7:14:17:85:32:19:1a:3c:
7f:62:4b:bc:82:01:bf:14:54:1b:10:42:15:47:06:
e1:de:cb:51:1b:ba:34:58:83:07:cf:e6:ec:20:20:
a0:27:bd:fb:ca:6f:8a:35:3d:36:77:2a:0b:ee:c6:
f3:24:98:dd:e6:b6:1a:bd:04:c8:07:ed:43:c4:c7:
e9:74:42:6f:ae:08:e3:ed:f6:ea:44:f7:22:9b:72:
7b:7d:cb:9b:80:be:82:1e:38:e1:7a:f1:bc:c8:5e:
bd:58:4e:9d:02:c7:b8:6c:52:45:46:e9:10:98:cd:
cb:fd:bc:d8:7b:ee:52:47:c8:11:48:7c:30:25:19:
bb:72:90:cd:2c:b7:a6:7f:cb:d3:6a:62:1f:9b:4a:
79:33:61:77:5c:f9:e1:a4:32:c9:af:2a:fa:bf:51:
ca:9e:c7:bf:7a:cf:11:4e:01:43:e6:25:c2:ae:4f:
a9:f7:fd:31:99:1f:11:d1:b3:83:d1:67:48:87:42:
7a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:34:BE:07:EB:90:3A:1E:DE:08:E1:53:FF:68:45:DB:C2:14:2A:32
X509v3 Authority Key Identifier:
keyid:8B:24:D8:4B:FF:4C:92:17:D1:DE:FA:5D:D3:34:C8:C8:53:22:6A:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iyTYS_9MkhfR3vpd0zTIyFMiams.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/b569be-543a-4b59-8ad0-6560ce4ad06d/1/iyTYS_9MkhfR3vpd0zTIyFMiams.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:ed:74:b1:8e:48:d7:cc:47:dc:63:c9:ef:67:58:14:2c:98:
8b:7f:bf:1b:8c:2d:e6:98:69:23:e5:a3:af:71:4c:68:45:82:
3c:1d:24:d2:cd:75:e5:d5:b9:e5:94:94:af:4c:fd:80:d9:a1:
41:66:6f:c0:a0:9a:17:1b:63:1a:de:1a:65:fa:22:10:bc:da:
a8:a0:af:5e:6e:2a:98:4c:e0:4c:71:15:30:b9:cb:78:7a:79:
df:be:57:59:8f:ba:4c:99:53:97:2d:49:c4:6f:f5:84:de:3c:
3b:ae:11:cb:e3:14:06:f9:bd:a7:25:02:2f:31:be:b2:c9:0c:
43:bc:b3:1d:5c:ea:05:38:36:e6:fc:d2:e1:7e:f7:24:b8:db:
03:90:38:27:cd:eb:38:fb:56:5a:75:cc:68:63:83:09:f2:ba:
f9:9c:0b:ec:20:27:ee:54:eb:1b:4c:06:8b:b5:9e:e3:e8:60:
63:62:73:77:19:b3:08:97:82:a1:1a:a9:c5:65:b4:df:20:14:
f0:f6:c1:4c:44:e8:b4:a9:ac:68:9d:f0:71:2c:78:f8:44:1e:
b7:50:47:a4:e3:c7:a0:3a:cb:89:7f:01:82:c8:90:52:50:4f:
5d:a8:f4:c9:a4:99:a7:d3:9d:b0:e3:81:fe:80:df:54:bd:c2:
28:71:f5:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 03:59:32 2026 by rpki-client