Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json)
Hash identifier: 6q82NfidlfURUwKAxUjZO+J12rKInPlRel1AVwKIahc=
Subject key identifier: 2E:0C:37:99:13:C3:58:9B:64:4B:19:75:15:42:6E:5A:1D:6B:D6:CA
Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Certificate serial: 019D25F1BAD693BF3CE7802D8A1E99963D58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
Manifest number: 057F
Signing time: Wed 25 Mar 2026 17:01:32 +0000
Manifest this update: Wed 25 Mar 2026 17:01:32 +0000
Manifest next update: Thu 26 Mar 2026 17:01:32 +0000
Files and hashes: 1: stNqzIw6qQRyW22hrj_jya1vgPM.roa (hash: R7iZW3oZGdaZLmvsasGhYvRkXeTvpYwH54Of8otwpTw=)
2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: rA+VVeFgg/XaO+esb3WD66H82SJhAfIx6ChZE5NOJsU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:ba:d6:93:bf:3c:e7:80:2d:8a:1e:99:96:3d:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Validity
Not Before: Mar 25 17:01:32 2026 GMT
Not After : Mar 26 17:01:32 2026 GMT
Subject: CN=2e0c379913c3589b644b197515426e5a1d6bd6ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:44:4d:35:b6:b1:6c:30:4b:b8:c5:ee:bb:c2:
0b:df:4d:0f:4e:29:39:7d:4c:c2:c0:56:81:7f:2e:
ac:c5:d0:1c:e4:82:40:cf:7c:00:34:a8:4d:3c:d2:
9c:62:92:3d:cc:71:4c:55:7c:8a:50:e3:a2:2b:7e:
ba:6c:3d:ff:9f:3d:92:d7:70:28:3e:63:fe:8b:b3:
79:34:78:72:90:00:7a:b8:06:b8:39:86:ae:74:6b:
b0:a6:6e:7b:14:76:dc:a1:21:ea:8f:85:d4:70:20:
74:df:5b:a8:13:2c:99:56:f7:bd:95:b0:30:e9:09:
4d:06:07:4a:a0:d8:74:0a:03:bd:1f:f9:87:40:07:
30:32:22:c7:cb:64:97:de:63:1c:55:06:fe:c5:53:
64:b4:6b:8f:3a:9f:b4:ca:12:77:ed:82:b0:2b:79:
14:b4:25:c2:d3:66:0a:a6:6b:ce:15:27:e3:79:3c:
f5:d7:16:80:89:85:63:04:de:e9:3a:e8:d8:9a:9b:
38:e9:be:11:2f:1c:56:26:51:80:2b:6f:1f:ba:b4:
dd:af:fb:2d:8e:72:1e:1a:a5:d2:1b:32:d5:1c:04:
c6:c3:5b:7e:b2:02:a7:7a:5f:ab:f1:ba:6a:25:0d:
06:72:c1:c0:d3:80:66:21:6c:35:ba:8c:67:4e:fa:
cb:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:0C:37:99:13:C3:58:9B:64:4B:19:75:15:42:6E:5A:1D:6B:D6:CA
X509v3 Authority Key Identifier:
keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:6b:72:64:6e:a4:e6:a3:6b:dd:fd:f1:95:a2:e1:65:61:2e:
d8:49:c0:55:77:47:a0:3b:5f:e7:d6:1c:29:e7:57:e4:28:98:
a9:a8:8e:77:04:fe:87:8e:4f:a6:00:e2:7c:cc:a9:6c:d8:05:
a7:71:09:13:b7:5a:78:80:51:7e:62:1a:cb:3d:86:10:51:2d:
57:5c:61:67:83:50:3b:23:2f:01:12:cc:56:6f:53:85:93:03:
70:dc:b2:0d:68:c6:20:03:15:4f:cb:e0:5f:fb:89:c7:45:c0:
b5:64:44:98:60:65:b7:47:9a:b9:67:4b:eb:93:ee:00:f0:e1:
0f:77:cc:66:b5:92:4b:bd:f9:87:a5:33:6f:ef:b3:d0:c9:44:
4d:1e:5d:c0:56:3c:51:c6:16:64:2a:2b:26:b3:9b:81:84:39:
71:e4:85:3e:b2:66:c1:43:84:ec:c1:f8:27:93:e9:7c:01:aa:
52:d0:06:34:67:77:5d:33:7d:65:89:7b:22:d0:52:f6:49:10:
59:ec:96:56:56:a6:3b:59:e9:e7:33:56:99:a9:3e:5b:0d:cf:
28:9a:d3:e7:76:7e:17:00:58:42:69:a0:35:e7:0a:15:7c:45:
25:a9:9d:32:57:7e:fd:96:d1:f1:0c:9a:dd:32:e6:3c:58:8d:
99:8d:16:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:37:14 2026 by rpki-client