Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
File: yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft (raw, json)
Hash identifier: STGhYVWJiwLXCR5wbT9Fu96xwaBVTuK8FkIffGvnxbU=
Subject key identifier: 24:E3:DD:72:99:44:3E:22:D6:4F:50:EA:41:DF:05:1B:50:CB:F8:82
Authority key identifier: CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
Certificate issuer: /CN=cb36180ab4542d6eee66d9f99030df71236ce264
Certificate serial: 019EC17FBB6DAE5661DB22A10DA71FD50571
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
Manifest number: 17A2
Signing time: Sat 13 Jun 2026 15:00:34 +0000
Manifest this update: Sat 13 Jun 2026 15:00:34 +0000
Manifest next update: Sun 14 Jun 2026 15:00:34 +0000
Files and hashes: 1: HNYjnMa8XonNqZQ0AY5BlHwMzX8.roa (hash: 93bbzx6/nbiayVdplAT1nOdB7pkJO7+NMwUpbbLpb2Y=)
2: yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl (hash: eQmkoUnbKVnO+rvzgfeiFzuW5th6aB9Um4exijfeTdc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 15:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:7f:bb:6d:ae:56:61:db:22:a1:0d:a7:1f:d5:05:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb36180ab4542d6eee66d9f99030df71236ce264
Validity
Not Before: Jun 13 15:00:34 2026 GMT
Not After : Jun 14 15:00:34 2026 GMT
Subject: CN=24e3dd7299443e22d64f50ea41df051b50cbf882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1c:83:c7:56:54:2a:30:05:c3:78:46:50:ce:
cf:2d:f0:5b:b0:9b:70:49:4e:57:b0:8a:fb:18:2f:
22:19:e1:81:97:e2:6d:b3:05:96:3a:49:ea:55:08:
ca:1a:67:e0:dc:b7:b0:b1:b8:2b:11:c0:32:e6:90:
86:4d:c4:98:84:e3:d5:1f:9a:3b:af:94:b3:da:57:
62:17:e1:d3:d4:80:33:e1:a4:8d:5f:93:77:50:f5:
17:25:55:5b:d5:0a:26:8c:cb:25:93:0f:02:e2:26:
76:6f:20:53:88:df:b2:58:3d:4d:2b:11:c9:6b:ec:
62:fc:71:51:2b:e7:3f:17:5a:93:2d:c1:e1:4b:05:
09:0a:50:70:36:3d:55:a8:c2:3e:98:57:07:b9:77:
6b:42:9e:19:d9:f1:8e:b4:86:d8:9b:22:2f:cb:a1:
d8:3b:95:8c:f7:b9:8f:06:e8:77:23:fc:f1:31:52:
f6:8f:7d:03:a7:06:f9:09:42:89:ed:0d:f1:18:54:
02:d0:45:ba:73:c4:28:d6:4a:91:aa:86:9f:de:10:
e0:f7:85:14:86:44:c9:2b:d9:2e:5b:f4:63:4e:30:
66:47:b8:8b:0e:ba:ba:42:45:7f:e8:56:2b:9a:42:
89:b0:a6:68:c2:c6:c0:98:bb:60:d7:4e:29:7c:44:
dc:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:E3:DD:72:99:44:3E:22:D6:4F:50:EA:41:DF:05:1B:50:CB:F8:82
X509v3 Authority Key Identifier:
keyid:CB:36:18:0A:B4:54:2D:6E:EE:66:D9:F9:90:30:DF:71:23:6C:E2:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yzYYCrRULW7uZtn5kDDfcSNs4mQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/0797d4-8b2c-40ac-9cab-667db1dc1b86/1/yzYYCrRULW7uZtn5kDDfcSNs4mQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:3f:59:bd:ff:e1:b0:20:29:f0:f7:77:7a:2b:07:e6:47:41:
dd:fb:75:9b:54:5c:04:1a:0f:9c:74:41:b6:b4:e4:15:fd:26:
2a:9c:6e:e1:c0:a5:f2:b5:07:69:c4:07:84:1a:79:35:39:4a:
7b:38:73:97:3f:47:89:29:d1:b7:c2:40:93:f8:9a:cd:3c:54:
dd:b0:cd:54:8b:5a:8f:a8:50:45:a7:fc:03:af:d4:31:37:db:
ad:52:3a:61:19:42:67:06:6c:35:a4:93:55:ba:65:15:d6:be:
c3:79:ff:9b:cf:d2:39:f7:83:1e:67:ce:0b:32:fb:10:91:ec:
ea:1f:57:03:41:a8:36:77:d2:65:78:65:d2:2b:55:c6:a7:98:
8e:e3:1d:20:da:cd:2e:8f:de:a3:8e:f8:13:bb:6a:d9:02:b8:
94:70:74:93:c7:3e:a7:f6:d3:b4:2a:e4:c4:fb:bd:3d:a6:f5:
45:7e:fd:73:23:53:d9:60:0f:57:59:ea:47:6e:94:55:0a:35:
94:2a:a0:15:fe:eb:a4:f5:cb:fe:9a:0d:c7:15:b2:61:1c:26:
4b:46:06:fc:39:84:79:56:b8:43:cc:63:22:20:a9:fb:1b:ae:
a2:94:f2:66:6d:f4:ca:f2:52:14:bd:24:af:77:f5:40:88:3b:
c6:c8:14:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:26:00 2026 by rpki-client