Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft
File: yalITKcIq3cesduQuvyKEUwsPXk.mft (raw, json)
Hash identifier: kbt5KwVozURvj9Te4vdje+nLjR8iHlfJi0jc532yZpo=
Subject key identifier: 27:AC:90:56:BE:5E:E7:87:00:22:5F:CE:43:C0:4B:87:56:78:7C:3D
Authority key identifier: C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79
Certificate issuer: /CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79
Certificate serial: 019ED50826101BDDBEE45A9BBE004E96C7A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft
Manifest number: 1966
Signing time: Wed 17 Jun 2026 10:02:21 +0000
Manifest this update: Wed 17 Jun 2026 10:02:21 +0000
Manifest next update: Thu 18 Jun 2026 10:02:21 +0000
Files and hashes: 1: 3eahbNs7sLSlMwMQAPIK4WlF5S0.roa (hash: iShcDJZ7gmNtw4FSGePEabrCqu38c4kHe0CrQJ2Q7ow=)
2: MuKPEjpSeKLvjqZfVopVa-G44-Y.roa (hash: gXY94gXYWU1Pqibv85vvI+18JY770F42380MRYt28Gc=)
3: yalITKcIq3cesduQuvyKEUwsPXk.crl (hash: LIjo0ds84/WfEhduEtspgXNc/OyB1aw6xEnx814YAMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft
rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d5:08:26:10:1b:dd:be:e4:5a:9b:be:00:4e:96:c7:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9a9484ca708ab771eb1db90bafc8a114c2c3d79
Validity
Not Before: Jun 17 10:02:21 2026 GMT
Not After : Jun 18 10:02:21 2026 GMT
Subject: CN=27ac9056be5ee78700225fce43c04b8756787c3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1a:0f:cf:27:44:dc:fe:c9:fe:24:1e:cd:16:
e9:ae:b7:40:8a:b0:82:01:8f:91:6c:e9:b7:2a:c3:
66:77:37:03:2c:a1:aa:68:68:28:52:81:e1:95:8d:
27:d9:87:c2:49:43:a9:a9:26:49:b0:8f:ec:d1:8f:
e6:b5:d0:8a:ef:af:d4:c8:7e:e2:4f:36:d8:3a:c0:
1f:c2:d4:a5:e6:dd:80:4e:7c:7d:02:d4:ab:2c:eb:
f2:06:82:b1:b4:0e:f9:c6:79:2a:00:61:57:33:fe:
84:70:26:2e:72:6e:21:1c:05:5a:f6:85:2f:8b:19:
9d:c9:43:aa:ac:b0:33:0e:45:12:67:c4:65:96:02:
42:4e:d0:6f:dd:6a:af:b7:52:90:6c:6a:ff:45:33:
38:7e:49:95:01:90:cd:44:9a:53:10:8d:b9:d6:b5:
2c:1d:c1:de:34:7a:45:22:ab:c7:6b:c7:81:6b:9a:
ee:35:47:f9:5e:2f:72:99:9e:7b:10:c9:9a:2b:06:
12:51:d3:82:21:70:d2:10:60:14:56:be:9e:07:6e:
94:64:e5:20:17:6d:f9:d1:11:31:34:06:63:f7:44:
6e:45:17:5c:dd:a0:73:fe:f6:78:72:56:91:23:30:
15:3d:7b:1f:6a:10:6a:0b:ae:f3:10:a8:f9:86:54:
7b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:AC:90:56:BE:5E:E7:87:00:22:5F:CE:43:C0:4B:87:56:78:7C:3D
X509v3 Authority Key Identifier:
keyid:C9:A9:48:4C:A7:08:AB:77:1E:B1:DB:90:BA:FC:8A:11:4C:2C:3D:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yalITKcIq3cesduQuvyKEUwsPXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/25e660-4056-42cc-a8b0-d0517db26dad/1/yalITKcIq3cesduQuvyKEUwsPXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:fb:7e:aa:3c:3e:1e:25:a4:0b:a4:be:3f:3c:b7:ef:57:ff:
88:c0:97:f0:45:b5:1d:66:5c:60:db:eb:8f:df:06:11:8f:04:
31:74:88:e4:8b:0d:c5:08:57:4b:c6:36:10:e8:be:6c:f7:1a:
a8:a0:32:c1:eb:62:4c:d2:47:5b:0a:04:53:e8:ca:3e:3c:60:
89:23:5f:38:f7:59:04:ab:b5:80:da:24:d7:b5:16:05:b6:a5:
32:18:4d:bd:57:90:f2:0c:fc:3c:08:8a:97:42:fd:46:89:dd:
62:d5:17:81:d6:bc:de:22:12:af:75:6c:5e:ba:03:34:7d:80:
8b:9e:44:d3:a4:7e:0a:df:d5:9b:d0:91:ed:d5:d1:37:ce:29:
54:21:e6:c5:c5:11:e2:e3:01:27:3b:a7:81:10:bf:99:64:5c:
58:35:c0:90:03:8d:4b:10:32:75:b0:3a:f9:f5:fa:8f:ee:b9:
b9:e1:c9:c0:25:a8:b3:0e:8c:ac:e0:c5:5d:05:cc:1b:76:39:
ff:86:90:15:de:aa:90:b1:8d:23:7c:c3:75:ea:5e:d4:8f:48:
c7:ca:3e:3a:75:b7:b1:e3:33:65:76:e9:2d:a6:58:1d:72:b6:
16:7b:3a:c2:6b:5a:2b:47:73:7d:5d:25:a2:79:26:83:5b:9d:
91:4d:95:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 12:27:22 2026 by rpki-client