Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: o9wCARm1bljlH/GczsYXNsY1XUU5h8OBEqaI6iPZ2T0=
Subject key identifier: 2A:30:16:28:34:E7:BA:1E:07:35:0C:66:F5:53:C9:CB:EC:5B:9D:37
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019D2AE067E019274ECB283EDBBCEE81103B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 13F0
Signing time: Thu 26 Mar 2026 16:00:42 +0000
Manifest this update: Thu 26 Mar 2026 16:00:42 +0000
Manifest next update: Fri 27 Mar 2026 16:00:42 +0000
Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: jD/MZe53E9YEYP6yW+1Ygz0jaMMTJQjgx/z9hfediTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e0:67:e0:19:27:4e:cb:28:3e:db:bc:ee:81:10:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Mar 26 16:00:42 2026 GMT
Not After : Mar 27 16:00:42 2026 GMT
Subject: CN=2a30162834e7ba1e07350c66f553c9cbec5b9d37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:43:1c:a7:48:b5:2c:16:91:a4:43:12:15:17:
65:57:54:88:57:ce:e7:d7:5a:6e:fb:b2:78:5f:1a:
6c:45:71:36:bc:5b:fd:d6:d0:4d:b0:81:22:a6:2e:
ae:40:03:9d:60:cd:3c:b8:63:da:fa:4a:75:9f:27:
ee:47:1b:4d:59:d9:09:4f:b8:52:4b:70:62:8c:87:
eb:50:3e:08:e9:98:5f:94:65:e1:64:8f:ad:96:4a:
42:2e:8d:39:34:5d:b4:41:51:66:69:a6:bd:48:c5:
b8:69:dc:95:34:5c:a3:8e:bd:9f:04:28:a3:d6:57:
dd:3d:67:85:0d:04:d9:3e:2a:64:9f:77:a2:08:6a:
c2:34:4c:88:2a:2a:41:c8:0f:51:55:9f:93:db:e1:
be:e6:8f:73:a0:6b:f6:36:fe:ed:29:2d:73:a1:49:
7c:5b:c4:50:be:e8:33:90:b6:93:9f:ed:e8:6d:73:
05:c5:68:dd:f6:1c:4c:f0:4b:41:33:86:77:1b:49:
15:e7:18:52:a8:1a:76:7f:b8:f7:7e:90:25:6a:29:
01:09:a9:88:5b:b2:2d:6f:46:5b:2c:48:2f:d0:0e:
db:6a:db:fa:06:8b:7d:69:05:4b:4f:a2:db:6d:4c:
e4:d2:58:5a:36:9e:0b:a4:84:02:3d:6b:f3:6b:fe:
fd:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:30:16:28:34:E7:BA:1E:07:35:0C:66:F5:53:C9:CB:EC:5B:9D:37
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:2a:de:41:37:06:1d:9c:90:b1:a9:33:02:29:7c:bf:71:50:
ac:66:18:ed:11:30:74:24:0e:b6:22:0d:1c:58:18:68:85:e1:
6f:c0:e6:b8:57:7f:0e:d1:c6:f6:31:5f:86:01:a1:32:de:c1:
fb:96:71:a1:3c:db:2f:5c:0f:fb:0f:6e:28:db:b4:7c:9a:1a:
0a:1c:39:44:30:06:c3:a4:6c:75:53:1e:99:a4:7e:dc:25:41:
f6:eb:72:5a:ca:68:25:0d:89:c1:a5:0e:07:e7:6e:f2:28:28:
c7:ae:1e:8c:a5:0e:e1:e9:19:90:cc:97:d0:53:17:45:03:60:
42:4b:0a:fd:78:93:94:59:75:47:4e:10:fc:ab:a0:24:eb:c3:
d4:43:b5:6d:c4:44:4d:80:4c:d0:26:53:0e:80:e8:6b:28:30:
ec:59:35:50:55:26:a1:9c:3b:48:4f:e9:5f:6b:09:4e:af:99:
3b:c3:38:f0:c5:a9:5f:fc:53:1d:7b:15:5a:b3:df:46:c9:8e:
d7:f7:ee:69:c6:25:74:3d:ed:e2:60:13:c1:8c:15:b0:8d:10:
04:a4:09:e6:e4:3a:bf:80:48:1f:93:2b:58:f0:fb:32:e6:6a:
0e:be:45:e9:9d:e1:30:fe:29:e0:2d:2c:b6:35:9c:7e:4e:e2:
60:b1:c3:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0q4GfgGSdOyyg+27zugRA7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw
NTM3NzAwHhcNMjYwMzI2MTYwMDQyWhcNMjYwMzI3MTYwMDQyWjAzMTEwLwYDVQQD
EygyYTMwMTYyODM0ZTdiYTFlMDczNTBjNjZmNTUzYzljYmVjNWI5ZDM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApkMcp0i1LBaRpEMSFRdlV1SIV87n
11pu+7J4XxpsRXE2vFv91tBNsIEipi6uQAOdYM08uGPa+kp1nyfuRxtNWdkJT7hS
S3BijIfrUD4I6ZhflGXhZI+tlkpCLo05NF20QVFmaaa9SMW4adyVNFyjjr2fBCij
1lfdPWeFDQTZPipkn3eiCGrCNEyIKipByA9RVZ+T2+G+5o9zoGv2Nv7tKS1zoUl8
W8RQvugzkLaTn+3obXMFxWjd9hxM8EtBM4Z3G0kV5xhSqBp2f7j3fpAlaikBCamI
W7Itb0ZbLEgv0A7batv6Bot9aQVLT6LbbUzk0lhaNp4LpIQCPWvza/79MQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCowFig057oeBzUMZvVTycvsW503MB8GA1UdIwQY
MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt
MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz
LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPireQTcG
HZyQsakzAil8v3FQrGYY7REwdCQOtiINHFgYaIXhb8DmuFd/DtHG9jFfhgGhMt7B
+5ZxoTzbL1wP+w9uKNu0fJoaChw5RDAGw6RsdVMemaR+3CVB9utyWspoJQ2JwaUO
B+du8igox64ejKUO4ekZkMyX0FMXRQNgQksK/XiTlFl1R04Q/KugJOvD1EO1bcRE
TYBM0CZTDoDoaygw7Fk1UFUmoZw7SE/pX2sJTq+ZO8M48MWpX/xTHXsVWrPfRsmO
1/fuacYldD3t4mATwYwVsI0QBKQJ5uQ6v4BIH5MrWPD7MuZqDr5F6Z3hMP4p4C0s
tjWcfk7iYLHDoA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 20:22:42 2026 by rpki-client