Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: wCb35kS+cUFjuzf0J2zGQCCkBLzpgEMEuTR9TZLSyVs=
Subject key identifier: 20:9D:A0:12:D9:19:95:2F:BA:E2:C4:6D:BA:B1:03:FF:B4:FB:1D:F7
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019E1E36177DFB1BA685837154976DB5F9B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 146E
Signing time: Tue 12 May 2026 22:02:01 +0000
Manifest this update: Tue 12 May 2026 22:02:01 +0000
Manifest next update: Wed 13 May 2026 22:02:01 +0000
Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: DvBhVJrSDBsOg/U3AG7oX4ieUMe0y+v510KxS7Rf+iw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:36:17:7d:fb:1b:a6:85:83:71:54:97:6d:b5:f9:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: May 12 22:02:01 2026 GMT
Not After : May 13 22:02:01 2026 GMT
Subject: CN=209da012d919952fbae2c46dbab103ffb4fb1df7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8b:63:6b:f0:4e:ec:7b:21:1c:35:25:b9:ec:
05:05:15:05:4c:bb:ff:2b:53:58:bc:45:9c:23:9b:
65:5b:a5:c8:88:49:ed:f8:dc:10:86:f0:fc:5b:32:
80:f0:7c:81:77:7a:1d:72:11:5a:9c:2e:21:3b:05:
61:cb:0c:e1:9f:ab:b3:59:fe:35:9a:29:f9:0d:b3:
7b:46:2d:47:89:c4:c0:f2:18:3a:20:dd:33:3c:11:
bd:da:0a:bb:d4:af:14:5c:95:54:d2:04:98:96:43:
20:c6:7c:07:5e:1d:53:73:d7:d9:65:07:6c:75:90:
c1:c2:9b:88:8c:3d:65:1f:95:b6:80:b7:2b:28:1a:
25:03:c2:61:79:a4:de:00:22:3c:ce:b9:1f:9d:44:
55:54:b1:16:72:a0:64:03:de:18:15:92:14:62:cf:
ab:43:31:1f:6d:50:f8:7f:35:9d:1c:e9:bb:36:30:
6d:a3:8c:6c:ed:19:50:ed:09:5c:0b:89:7d:d3:63:
2c:c0:08:e4:83:8a:25:f0:c0:69:b6:4e:a3:53:c7:
8d:b9:e6:11:b2:7c:60:48:ea:ad:27:da:ba:86:ec:
40:ef:9e:c9:a5:19:86:dc:31:32:b2:a9:32:df:f6:
06:9d:bf:2f:9b:4c:ba:42:f2:6a:57:58:6c:c8:5d:
1e:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:9D:A0:12:D9:19:95:2F:BA:E2:C4:6D:BA:B1:03:FF:B4:FB:1D:F7
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:40:30:00:8c:b6:c1:8e:b0:c9:e0:82:9e:4f:f7:bf:89:b1:
35:8e:53:c9:7a:2d:ae:18:3d:09:6a:66:68:46:3e:45:cf:7d:
ec:dd:b7:8a:f3:b2:94:16:72:2c:d1:62:26:af:cd:41:22:38:
25:eb:0a:a5:4c:b0:7a:5f:5e:a0:18:80:ca:6a:b3:a0:3c:7b:
7a:a9:2a:00:21:ad:bf:db:54:c9:61:c5:12:ef:ee:19:07:15:
f7:22:d5:38:77:b3:63:59:fb:2a:f5:f0:5a:8d:a4:0b:96:76:
a0:44:7b:d1:ff:4d:2d:9f:75:4d:1f:c1:41:4d:87:16:9c:31:
08:a7:ce:b2:58:24:09:43:cf:59:0f:5b:53:68:92:42:d0:0d:
c4:18:42:0a:3b:ee:b0:66:7b:2e:73:22:3c:ff:4a:c1:d2:0f:
1c:d2:3d:68:d5:b5:7d:01:d7:4b:84:13:33:51:e9:b4:83:4d:
98:5d:87:7a:4b:83:eb:21:32:6d:3a:2d:48:1f:bc:9b:bf:0b:
0c:a2:de:13:23:4c:9e:9d:6b:2b:3c:ab:48:9e:50:93:c6:ed:
ab:c1:ed:b8:c2:90:4b:db:2b:89:54:4b:2a:55:95:21:64:b0:
62:4a:5e:1b:4e:0b:37:d5:13:6a:c2:7e:18:42:19:4a:8e:1c:
f8:06:2b:c5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNhd9+xumhYNxVJdttfm4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw
NTM3NzAwHhcNMjYwNTEyMjIwMjAxWhcNMjYwNTEzMjIwMjAxWjAzMTEwLwYDVQQD
EygyMDlkYTAxMmQ5MTk5NTJmYmFlMmM0NmRiYWIxMDNmZmI0ZmIxZGY3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnItja/BO7HshHDUluewFBRUFTLv/
K1NYvEWcI5tlW6XIiEnt+NwQhvD8WzKA8HyBd3odchFanC4hOwVhywzhn6uzWf41
min5DbN7Ri1HicTA8hg6IN0zPBG92gq71K8UXJVU0gSYlkMgxnwHXh1Tc9fZZQds
dZDBwpuIjD1lH5W2gLcrKBolA8JheaTeACI8zrkfnURVVLEWcqBkA94YFZIUYs+r
QzEfbVD4fzWdHOm7NjBto4xs7RlQ7QlcC4l902MswAjkg4ol8MBptk6jU8eNueYR
snxgSOqtJ9q6huxA757JpRmG3DEysqky3/YGnb8vm0y6QvJqV1hsyF0eKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCCdoBLZGZUvuuLEbbqxA/+0+x33MB8GA1UdIwQY
MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt
MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz
LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS0AwAIy2
wY6wyeCCnk/3v4mxNY5TyXotrhg9CWpmaEY+Rc997N23ivOylBZyLNFiJq/NQSI4
JesKpUywel9eoBiAymqzoDx7eqkqACGtv9tUyWHFEu/uGQcV9yLVOHezY1n7KvXw
Wo2kC5Z2oER70f9NLZ91TR/BQU2HFpwxCKfOslgkCUPPWQ9bU2iSQtANxBhCCjvu
sGZ7LnMiPP9KwdIPHNI9aNW1fQHXS4QTM1HptINNmF2HekuD6yEybTotSB+8m78L
DKLeEyNMnp1rKzyrSJ5Qk8btq8HtuMKQS9sriVRLKlWVIWSwYkpeG04LN9UTasJ+
GEIZSo4c+AYrxQ==
-----END CERTIFICATE-----
Generated at Wed May 13 06:29:49 2026 by rpki-client