Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json)
Hash identifier: sQSNnU50oMGTsn6er48E6+TXaQ0Wx5YYY+9j1+4RZYE=
Subject key identifier: 3B:C6:85:F8:15:B9:21:85:F3:04:24:21:CC:65:1C:E0:3B:F7:CB:C1
Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Certificate serial: 019EC2C996763BB75655DAFBFAE34CA22FAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
Manifest number: 18FF
Signing time: Sat 13 Jun 2026 21:00:51 +0000
Manifest this update: Sat 13 Jun 2026 21:00:51 +0000
Manifest next update: Sun 14 Jun 2026 21:00:51 +0000
Files and hashes: 1: FoH9ps9NIlN7HCCsr_L_q5RnpT8.roa (hash: V8yDvWYjZgT2Vk6m8UQDxVTsGXUYqta3GtOUd408vp8=)
2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: VTrJHqr/SaHLC3bTwgR7MJYTuysoQih/eV8dG88gubU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:96:76:3b:b7:56:55:da:fb:fa:e3:4c:a2:2f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Validity
Not Before: Jun 13 21:00:51 2026 GMT
Not After : Jun 14 21:00:51 2026 GMT
Subject: CN=3bc685f815b92185f3042421cc651ce03bf7cbc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b9:ea:30:1a:c2:98:6e:21:d9:b7:a1:95:46:
89:96:82:6a:ee:c2:92:b4:92:7c:06:0f:1e:96:ef:
79:c8:a2:5c:3c:1d:68:d7:a8:02:b9:8d:e1:0e:66:
d9:57:64:64:ce:a6:db:b4:38:13:17:50:37:cc:37:
ad:b1:71:30:9e:e4:c1:c6:59:6a:30:f8:40:73:08:
8e:20:ee:42:52:54:9c:6e:ce:dc:77:73:ff:eb:28:
f3:fb:86:5e:f3:4d:8f:b9:c8:f5:55:b9:02:f5:e5:
93:a8:10:a7:fe:6f:d6:cd:45:f2:d0:21:fc:3e:6c:
70:17:cb:ac:2c:95:3e:bf:7b:a7:c7:f1:7e:24:fa:
5e:40:ca:a3:49:68:67:d1:a7:dd:7e:01:17:94:e6:
4a:50:cc:2e:f6:0b:7f:5b:f2:06:e9:14:8e:40:8d:
d9:d6:6d:d4:a2:f3:b2:dc:22:ce:ee:d4:23:f0:8e:
eb:3e:fd:19:af:13:65:f6:bf:f8:66:2b:e0:95:9f:
f0:59:e0:b4:bf:6d:f7:0e:b4:89:03:c2:ec:97:4e:
b0:2e:32:39:81:34:37:67:68:8e:c0:12:30:62:2d:
ca:ca:33:6b:24:74:68:33:6f:c5:71:6f:66:f3:7e:
53:2e:eb:ff:96:68:be:c0:c5:4e:78:e0:3e:03:36:
d8:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:C6:85:F8:15:B9:21:85:F3:04:24:21:CC:65:1C:E0:3B:F7:CB:C1
X509v3 Authority Key Identifier:
keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:7b:41:f5:6e:03:91:bf:f3:79:44:3b:f7:0a:20:64:aa:51:
04:16:29:e8:e6:9a:1a:29:c7:81:9f:4a:50:02:78:94:89:19:
48:f2:e0:ff:85:b3:6d:52:7d:11:ce:13:a1:04:b2:78:2b:ab:
31:57:4e:61:93:c4:79:fa:f4:64:4d:41:87:be:f1:92:7f:62:
b7:8f:13:04:b9:00:0d:f7:5f:8e:d3:29:67:c1:f4:54:b7:a6:
13:d4:54:86:fe:c3:8e:4b:fc:c3:6f:19:c0:a1:a7:b6:c0:50:
6a:b3:8a:c2:10:63:30:43:1f:18:21:ad:57:2a:91:62:cc:50:
7e:71:c5:dc:93:73:fe:6e:be:ec:7a:6b:55:97:de:8c:71:51:
28:41:82:2e:29:25:8c:b9:a4:dc:d5:c4:f1:f3:a6:f2:eb:0e:
12:5e:72:6c:c8:d3:76:be:5f:82:ac:a4:26:88:d2:ab:f1:34:
b8:09:c6:e8:14:05:2d:72:54:4a:c7:30:5d:dd:0e:75:c4:d1:
95:08:00:d9:40:2b:0b:82:3c:b6:d3:bd:f0:37:c4:6d:84:03:
29:9b:8b:10:31:19:d2:0b:7b:14:97:16:5c:5b:d4:42:80:bf:
5f:09:b5:3e:94:3f:86:50:2f:bc:e2:71:03:34:bf:cd:9f:c7:
c6:2f:f2:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:51:31 2026 by rpki-client