Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: U4CVjguR0V6yi0D/3LebDwpuu6pWpowUMl9IKXoXoDU=
Subject key identifier: 6B:29:67:96:E3:06:45:19:AD:C4:4D:70:33:CA:79:E7:50:86:1E:4D
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019D28F245619B39FAA86EA0125382C13030
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 13EF
Signing time: Thu 26 Mar 2026 07:00:59 +0000
Manifest this update: Thu 26 Mar 2026 07:00:59 +0000
Manifest next update: Fri 27 Mar 2026 07:00:59 +0000
Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: UDjMT+qJzbL+ExZjz1/XZ9ARc0UF/QtHpoHLOKIk+74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:45:61:9b:39:fa:a8:6e:a0:12:53:82:c1:30:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Mar 26 07:00:59 2026 GMT
Not After : Mar 27 07:00:59 2026 GMT
Subject: CN=6b296796e3064519adc44d7033ca79e750861e4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:5d:3d:d0:4a:56:b6:01:e7:a1:cb:f0:a0:f4:
94:4f:c4:d5:75:02:e3:2a:4d:47:75:88:97:8e:57:
f3:64:a1:08:df:de:c0:c1:41:09:89:a1:33:c7:16:
8f:e5:ab:95:12:36:ad:7c:81:6a:81:2b:ba:60:58:
e1:63:65:0b:af:8a:7b:e2:7c:55:dd:58:3e:43:e1:
c7:51:9e:70:4a:25:9d:15:c5:5c:59:d5:cb:93:5e:
7a:82:f0:14:d7:20:0f:66:1f:03:4e:1c:28:5a:46:
95:c1:87:da:43:84:14:8e:ad:0a:d8:eb:5a:b8:98:
ba:08:50:3a:2b:c5:a3:a0:48:a1:be:b0:60:3b:3e:
f7:39:d0:a7:a2:16:06:33:68:be:da:55:73:53:1a:
95:16:ce:97:ff:ad:2d:3d:12:04:4f:31:bc:18:59:
54:c2:c2:61:da:33:67:c4:2a:43:13:b8:e4:fd:56:
03:94:53:08:f4:66:06:27:fa:c8:bc:22:6d:5f:09:
f0:cb:4e:68:90:e7:62:fa:5f:a1:e8:e3:af:2a:65:
8d:54:fa:8f:52:92:16:23:d1:19:dd:e5:c2:6d:1c:
ad:da:7e:38:98:10:7b:87:39:a2:ca:c6:01:39:d1:
f7:28:16:8f:b7:8a:39:75:1b:ed:f8:fe:8d:ee:a5:
a9:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:29:67:96:E3:06:45:19:AD:C4:4D:70:33:CA:79:E7:50:86:1E:4D
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:78:19:5c:38:02:e4:82:67:cc:05:d9:4a:ca:c9:52:4c:60:
41:91:23:96:60:3e:71:91:cf:df:c9:dd:39:57:e3:96:34:93:
48:29:57:cf:05:f2:15:ba:33:72:25:0b:35:c7:b0:4c:10:77:
c0:70:f3:8f:72:64:ae:0e:7b:0a:ec:12:df:eb:96:8b:9a:d1:
02:69:8f:df:a0:72:fc:99:93:0b:e7:af:f7:1a:41:d1:8b:5b:
f7:92:24:46:51:cd:99:32:13:8a:3e:08:52:83:1d:c9:06:da:
b4:0f:1a:ac:9c:e9:6a:f6:a9:4a:ed:e8:53:1b:e1:b6:46:3c:
02:e1:1c:fc:4c:16:b3:fe:bf:7b:3c:30:ce:9b:4f:1e:10:b6:
cd:ad:51:30:5f:f2:5d:0e:85:c5:2c:b3:0b:54:8c:f3:b0:50:
19:f5:5e:7f:e6:30:ce:5e:67:65:0b:31:3a:92:dd:3b:d6:ea:
8e:d4:dd:75:ad:0f:64:46:d3:63:6f:6e:7c:ad:f0:52:c8:16:
66:20:a4:47:55:80:ce:d8:cf:24:26:5c:75:c5:cf:f2:01:ec:
f6:8a:c6:89:86:f0:2b:c0:73:03:b2:60:cf:3e:32:49:47:31:
c9:bc:ea:ad:05:3d:d8:2c:25:b1:fb:f3:b8:70:02:87:95:41:
7f:60:79:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:59:08 2026 by rpki-client