Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.mft
File: y1eZ2NBfSgIAEdyoAxdivqASJV0.mft (raw, json)
Hash identifier: PCcQSwtazT2Z5WhzeyrUY4HgYuuplFfapEwtqBewlBQ=
Subject key identifier: 5C:2E:1F:EE:E2:D7:EC:EA:DA:2E:FF:61:C9:88:3D:96:38:7B:3F:2E
Authority key identifier: CB:57:99:D8:D0:5F:4A:02:00:11:DC:A8:03:17:62:BE:A0:12:25:5D
Certificate issuer: /CN=cb5799d8d05f4a020011dca8031762bea012255d
Certificate serial: 019D9962F1F2F8BFF90AB372323A41E22D98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1eZ2NBfSgIAEdyoAxdivqASJV0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.mft
Manifest number: 0E35
Signing time: Fri 17 Apr 2026 03:01:31 +0000
Manifest this update: Fri 17 Apr 2026 03:01:31 +0000
Manifest next update: Sat 18 Apr 2026 03:01:31 +0000
Files and hashes: 1: xm2EH0bMS7Lp6R8nocX142XHBiE.roa (hash: Sw8xk1+itLI+I+ws0cUgg1V722l6xa6aNkokvCgQUD4=)
2: y1eZ2NBfSgIAEdyoAxdivqASJV0.crl (hash: hgaH/izgLLRMNw+m6ztQa09XGR/h9iofgLqxYEtYlwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1eZ2NBfSgIAEdyoAxdivqASJV0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:f1:f2:f8:bf:f9:0a:b3:72:32:3a:41:e2:2d:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb5799d8d05f4a020011dca8031762bea012255d
Validity
Not Before: Apr 17 03:01:31 2026 GMT
Not After : Apr 18 03:01:31 2026 GMT
Subject: CN=5c2e1feee2d7eceada2eff61c9883d96387b3f2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:47:d1:83:2a:7b:a8:fb:63:0c:27:cf:c7:30:
e5:e6:b7:4f:07:55:0c:e1:48:90:1e:fd:5b:75:e1:
f9:bf:2d:02:57:38:b5:bf:5c:e5:05:14:c8:8e:76:
60:80:70:df:60:f3:02:47:63:95:88:91:a0:d2:94:
6f:0a:9a:32:d0:40:85:21:fe:41:da:3b:52:ec:a1:
25:e1:59:27:4b:03:b2:65:b9:b0:f0:9e:8d:0f:ce:
3c:2b:c4:b6:e2:ab:4f:f0:53:56:95:5a:db:f9:31:
b1:e2:6d:71:7b:8f:c3:82:89:4c:3d:59:27:07:2f:
65:69:2c:36:16:f4:b8:14:5e:c2:e9:a5:a8:06:1d:
07:c6:45:06:8f:63:1e:04:ab:a1:b2:cd:3b:e4:89:
b2:f9:30:f3:ab:a5:bd:48:c6:0c:f6:5d:26:ae:a8:
b3:90:92:19:00:df:ee:7b:09:50:ca:c1:36:c2:e5:
9d:a0:c0:5c:85:76:23:5c:1a:11:16:f2:fa:31:5f:
c6:55:ed:3f:ee:74:cb:0a:28:ff:72:96:7d:1c:b8:
ec:a0:c6:d7:96:eb:e4:9d:40:57:98:a8:82:c4:e4:
6b:5e:18:93:5c:c5:98:23:5b:12:a7:70:56:fc:bd:
4b:63:4e:88:ea:a2:9d:8b:d5:49:ae:d7:58:56:62:
ea:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:2E:1F:EE:E2:D7:EC:EA:DA:2E:FF:61:C9:88:3D:96:38:7B:3F:2E
X509v3 Authority Key Identifier:
keyid:CB:57:99:D8:D0:5F:4A:02:00:11:DC:A8:03:17:62:BE:A0:12:25:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1eZ2NBfSgIAEdyoAxdivqASJV0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/c78020-fa32-4988-9e14-5c602fde963b/1/y1eZ2NBfSgIAEdyoAxdivqASJV0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:15:40:97:94:66:32:b7:d5:75:82:8d:72:69:d6:94:87:8f:
d0:e7:db:83:0e:47:fb:22:0d:a1:a0:2a:37:b2:31:8d:37:ae:
6b:2c:68:d6:6f:44:1d:c4:5c:78:e1:a8:f4:59:ce:03:b3:c2:
b3:90:27:f3:bd:d8:3f:64:8b:6f:92:df:1f:03:0f:37:58:ed:
be:0f:46:3d:b1:ad:fd:2c:79:03:e9:be:96:6b:21:27:21:96:
19:4c:c1:6d:c1:5f:00:0a:1d:01:37:6d:f2:4b:5b:e4:49:52:
f5:50:ff:2a:a8:01:b6:80:1e:6b:63:b4:ce:0c:2e:69:b6:a8:
90:fa:0e:72:db:76:83:f3:e6:68:95:d3:42:31:ec:97:c1:03:
55:e5:19:05:e6:8b:5d:3c:9a:52:fd:5e:1b:87:2c:a6:25:2f:
81:8a:30:fa:ca:57:16:3a:77:53:7e:5f:b7:7a:9a:89:d5:c6:
6b:f6:e6:cd:c1:24:c2:e1:1e:96:23:8a:9e:ed:e3:34:f9:11:
68:78:6e:60:61:d8:a0:57:ee:ba:ba:2d:93:8a:1f:cc:45:72:
eb:76:6f:9e:9a:4a:f2:35:ee:83:d1:9e:67:36:c4:b0:7a:40:
08:e8:63:06:36:e3:df:8f:23:bb:f5:30:a5:80:84:28:0c:00:
b7:cc:3a:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:41:24 2026 by rpki-client