Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
File: y5idLhUgGyDjQIjdHARVslRE-Pw.mft (raw, json)
Hash identifier: M/XJ6Q3luVkEkw8JhiX8WC3hTt6xhuMKje+unUnCJoc=
Subject key identifier: 41:E5:E9:06:16:68:65:1A:66:D9:09:67:11:2C:AD:9B:F0:34:D8:60
Authority key identifier: CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
Certificate issuer: /CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Certificate serial: 019D9B8809629C3B95BB24C602539A04B586
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
Manifest number: 0EFC
Signing time: Fri 17 Apr 2026 13:01:16 +0000
Manifest this update: Fri 17 Apr 2026 13:01:16 +0000
Manifest next update: Sat 18 Apr 2026 13:01:16 +0000
Files and hashes: 1: H7NifDoSU6PPqAYGiGzy4_-XfNw.roa (hash: sk5Lex95/S0IAQQhow818tnsCZwdWLab0EALvw3QhYw=)
2: y5idLhUgGyDjQIjdHARVslRE-Pw.crl (hash: acBcLVfMXXfbaSIHxQIW99g1aTEO2ICChh1IVSHeQys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:88:09:62:9c:3b:95:bb:24:c6:02:53:9a:04:b5:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb989d2e15201b20e34088dd1c0455b25444f8fc
Validity
Not Before: Apr 17 13:01:16 2026 GMT
Not After : Apr 18 13:01:16 2026 GMT
Subject: CN=41e5e9061668651a66d90967112cad9bf034d860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:97:7c:8a:26:09:3a:59:08:95:01:0f:5a:8b:
f8:89:ee:aa:20:4b:82:2e:fd:33:6b:90:fb:12:e1:
e9:f0:be:66:f9:80:c5:08:6a:e9:9a:f3:c5:fa:be:
de:6d:af:5a:f0:86:1c:3e:c8:3e:4f:63:d9:b6:82:
0f:a0:14:00:08:1c:42:1a:59:d1:50:1a:f4:4b:2f:
f5:ce:b0:af:d2:5a:69:ce:a3:c0:48:d5:c2:23:8d:
18:59:e4:05:13:c9:be:ba:e6:e6:6d:79:d5:e9:9d:
30:ae:cd:f3:72:4f:ba:24:47:9e:b2:ce:8a:d5:97:
5e:99:2b:4b:a1:a8:46:fc:92:c1:d2:48:ef:b1:60:
dd:98:4b:89:20:05:2c:93:86:02:88:e1:16:e6:40:
52:bf:f2:54:2e:90:3c:57:ff:c9:f4:9e:e3:38:99:
95:5b:b4:72:54:4d:83:72:91:e4:50:11:e3:67:56:
b7:af:87:5c:6f:fc:b2:99:c6:6b:ad:eb:00:3f:80:
2f:e3:d2:fc:b0:92:f8:f5:3d:ed:7f:0e:41:c1:6e:
bd:b4:2f:b5:36:db:84:f8:0c:67:85:f4:da:8a:d3:
e7:25:4d:ec:50:76:3b:d1:fd:ca:7d:a7:cf:e0:56:
aa:09:ef:f8:5d:88:ce:ba:76:52:f5:64:1f:38:15:
87:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E5:E9:06:16:68:65:1A:66:D9:09:67:11:2C:AD:9B:F0:34:D8:60
X509v3 Authority Key Identifier:
keyid:CB:98:9D:2E:15:20:1B:20:E3:40:88:DD:1C:04:55:B2:54:44:F8:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y5idLhUgGyDjQIjdHARVslRE-Pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/be56d4-8de6-44a2-9691-369263443025/1/y5idLhUgGyDjQIjdHARVslRE-Pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:3b:ed:2b:57:64:72:78:19:3e:ed:c4:49:74:09:67:d7:a6:
7b:6f:42:78:01:08:0b:66:7e:05:c3:5e:c8:99:60:bb:ac:de:
bd:07:da:83:90:77:fd:de:7b:e5:69:4e:5c:f4:aa:28:37:21:
1c:03:f4:60:cc:2d:b4:89:d5:1f:09:5b:ae:32:06:9b:97:b2:
d5:12:29:8c:44:83:bf:bb:0f:02:01:b8:a8:1e:be:f6:e4:22:
6c:26:c4:94:67:c1:17:55:f5:9f:89:ec:ef:ec:6f:b6:f2:41:
ff:0b:07:97:f9:d6:51:ed:6b:b7:d5:d1:d6:1f:b4:be:de:75:
61:ba:fc:3f:21:ba:7b:0d:ce:a3:b1:67:b3:15:8a:68:93:a0:
ad:3e:f3:2f:62:3a:55:8f:17:35:65:97:36:7a:2d:3e:f2:81:
84:02:4b:e3:27:cf:a3:35:b3:b5:8d:9d:4a:20:b3:93:4b:8e:
11:8a:7a:1d:5c:b7:e7:d2:bd:09:95:b2:f4:b5:e6:ee:49:c9:
3f:c6:8b:f3:fc:5d:d4:cd:dc:8a:7a:c5:1e:bb:e4:d6:c5:21:
0a:ef:79:5e:00:f3:79:4f:3e:c7:31:f9:24:75:ca:3b:12:38:
75:17:89:81:15:5a:96:cc:80:07:99:9c:e0:14:4b:ed:a0:8d:
12:9a:5a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:47:23 2026 by rpki-client