Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
File: Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft (raw, json)
Hash identifier: p1J4t8CR0YewFKbJJZf6J/6Ydy91wVRZP6/S2iKYoCQ=
Subject key identifier: F3:46:68:88:00:F7:08:56:9D:67:6F:2F:91:C7:86:9C:83:A8:91:49
Authority key identifier: 62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D
Certificate issuer: /CN=625b5cf9e29912448cbbbc86d20561899cdb104d
Certificate serial: 019D2961995E79EED0919FE39EC5BD1E27D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
Manifest number: 1444
Signing time: Thu 26 Mar 2026 09:02:35 +0000
Manifest this update: Thu 26 Mar 2026 09:02:35 +0000
Manifest next update: Fri 27 Mar 2026 09:02:35 +0000
Files and hashes: 1: QSgiyH11wyAURvatj9-ZAc4hYVY.roa (hash: clDL8JVxHAo7Ey2O322dbo1WNKZNfLWVEI2vSjSdkIA=)
2: Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl (hash: cB0HASMwDpaoPdcH8aokfegV+s4hgg3m02IvkkBZES4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:99:5e:79:ee:d0:91:9f:e3:9e:c5:bd:1e:27:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=625b5cf9e29912448cbbbc86d20561899cdb104d
Validity
Not Before: Mar 26 09:02:35 2026 GMT
Not After : Mar 27 09:02:35 2026 GMT
Subject: CN=f346688800f708569d676f2f91c7869c83a89149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:02:7d:b8:d6:e3:d3:70:8f:c1:8c:4b:a2:7d:
f6:9b:23:2a:b7:d0:ac:19:73:6d:c1:53:54:d7:08:
48:49:c9:29:0c:4f:bc:65:1e:56:c0:46:93:f3:59:
6b:6f:63:1f:92:4a:7b:93:08:c8:cd:90:5c:fc:4f:
16:5c:c1:e2:26:eb:8f:8e:fc:8c:1d:e6:44:a7:9d:
5e:78:7d:de:9a:d1:77:80:48:2d:21:42:25:cb:a0:
84:18:f8:a3:c0:c1:be:8e:7e:b3:d6:34:91:ab:22:
83:b2:8a:e6:2b:0d:5e:34:e3:57:9b:25:51:55:8e:
7c:60:a1:a3:95:e7:b6:47:56:7a:0e:42:d4:e2:4d:
93:06:63:e1:9f:1d:94:e4:b5:72:da:21:d7:a1:58:
d4:74:ca:f6:e6:7e:28:f8:41:3c:23:b1:c1:43:97:
1f:34:63:46:8b:00:24:a4:52:9c:c7:b0:31:70:f1:
5f:e7:3b:7a:11:6b:fc:3c:10:68:57:c0:4a:cb:3b:
51:bc:fa:0e:da:32:47:a1:c6:b0:0a:86:8a:f9:e9:
1a:88:98:d3:de:9c:09:00:99:e4:c6:d0:c5:ac:d9:
67:ba:22:1a:4e:ad:2c:dc:2a:f8:ac:33:19:7f:cd:
13:59:10:97:c3:31:1e:ca:3d:8e:84:62:72:56:f7:
87:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:46:68:88:00:F7:08:56:9D:67:6F:2F:91:C7:86:9C:83:A8:91:49
X509v3 Authority Key Identifier:
keyid:62:5B:5C:F9:E2:99:12:44:8C:BB:BC:86:D2:05:61:89:9C:DB:10:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yltc-eKZEkSMu7yG0gVhiZzbEE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/97ccab-d0c8-42e8-8725-a586b07add72/1/Yltc-eKZEkSMu7yG0gVhiZzbEE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dd:0c:35:22:51:0e:35:4d:0c:98:b0:c3:85:18:73:cb:36:ba:
88:76:97:20:0f:65:19:06:f5:d3:1b:59:48:27:e8:b0:99:df:
db:e8:ac:e7:29:8b:c0:15:25:f1:5f:dd:46:55:ae:13:21:79:
e3:0f:76:0e:6a:5a:6f:f9:85:18:f4:e6:bc:af:75:48:ad:31:
0c:e9:4b:f0:86:3b:59:f5:52:ad:ad:af:de:0c:68:c9:eb:69:
73:86:7d:56:b1:97:e5:b2:8a:7f:d4:86:b0:eb:bb:d6:8b:4a:
83:56:e6:dc:17:7c:30:e2:ca:c5:43:55:4d:d1:e3:d7:78:8e:
6c:ac:e5:98:5f:ef:f9:57:ac:b4:9a:cc:ec:4b:59:c3:61:0c:
fa:5e:b8:0e:51:30:18:7a:ee:d9:33:1a:11:1f:05:8e:56:e5:
12:53:9c:a4:cd:84:f1:0c:43:9e:33:61:3a:00:bd:ef:4d:e6:
e2:7d:40:bb:69:e9:94:f8:00:fc:21:ab:b0:5e:ab:d5:63:e0:
f7:fd:43:be:09:e0:47:34:2c:b1:a2:ad:33:6c:97:49:3d:f6:
14:b6:97:cb:66:77:d6:0e:28:a9:00:f8:7a:cb:41:21:85:4b:
c9:a2:5c:66:27:59:87:25:15:82:90:4d:2c:00:1d:99:3d:17:
3f:01:c4:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:27:48 2026 by rpki-client