Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json)
Hash identifier: 2xa6p6jrM4hW7jiw8Au2/giI6tVvXMxL6QxEiI/uUQE=
Subject key identifier: 77:9F:89:F8:69:33:19:1D:55:CF:23:37:16:53:54:DA:BD:9D:AC:12
Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Certificate serial: 019D2703D9C1137978BD8CED81A3CFDB2A67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
Manifest number: 02AB
Signing time: Wed 25 Mar 2026 22:00:56 +0000
Manifest this update: Wed 25 Mar 2026 22:00:56 +0000
Manifest next update: Thu 26 Mar 2026 22:00:56 +0000
Files and hashes: 1: Bm-yeKhkQAEjp4VlYTX3m2LhnLo.roa (hash: TwqouuCQy7PK4D3jmO1+H6jT8wpU0AIGnYWid1a3dN4=)
2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: 5SMiU163eO9d3YaQcSlT04GQze8N60GyNy/FAhlNxuI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:d9:c1:13:79:78:bd:8c:ed:81:a3:cf:db:2a:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Validity
Not Before: Mar 25 22:00:56 2026 GMT
Not After : Mar 26 22:00:56 2026 GMT
Subject: CN=779f89f86933191d55cf2337165354dabd9dac12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:44:84:d2:21:56:26:07:76:a3:99:f5:fe:31:
91:f7:ab:db:44:5e:ad:27:e6:23:88:15:14:aa:5d:
e7:5d:82:9b:85:00:41:cc:48:07:26:d1:a7:66:9a:
b7:2c:9c:c6:3f:ee:1f:a6:5d:7e:78:cf:e1:5c:4d:
d2:25:a7:cf:bc:8d:7b:cf:00:15:13:82:35:21:39:
48:99:3c:f0:51:9c:08:5a:79:53:31:5e:d6:8e:37:
33:75:bf:25:69:5b:44:0e:e9:08:50:eb:b1:c0:56:
6c:a0:b4:21:55:ad:15:27:e7:50:e0:7b:78:4b:1c:
21:1c:21:e9:40:8a:e5:5e:ee:19:ab:08:95:0a:c5:
89:9f:93:39:40:eb:ef:3e:c5:12:cd:b4:1b:30:1f:
bf:8d:64:33:cf:67:d0:3b:ab:59:82:c7:44:59:5b:
00:55:18:c7:8a:b6:91:76:9f:1f:13:ea:17:d0:c6:
61:88:e7:d8:24:3b:ed:3d:dd:73:e4:4d:88:47:b8:
0c:71:34:b5:aa:d5:81:41:70:5d:8f:99:16:c7:e5:
f2:13:9d:2d:1d:e3:2b:90:4e:12:a4:12:a6:3a:08:
c8:86:72:92:0d:3a:2e:06:50:74:21:5a:1e:0f:25:
ae:49:fc:ee:9f:e8:a0:82:48:8d:2e:46:11:d2:df:
c8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:9F:89:F8:69:33:19:1D:55:CF:23:37:16:53:54:DA:BD:9D:AC:12
X509v3 Authority Key Identifier:
keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:98:5d:dd:b4:4f:5b:10:69:a3:a0:c8:38:64:04:33:86:71:
6e:fb:14:09:f0:1c:ca:f1:81:70:86:d9:69:71:6a:82:15:c3:
dc:12:65:fd:b4:cc:3d:23:a4:5f:49:9d:84:c9:a4:7b:3c:ec:
ff:53:88:3a:2c:4b:e1:75:37:4b:44:99:63:85:e0:33:83:97:
d2:b3:30:b5:88:e9:df:55:fc:35:c6:dc:90:93:ca:cd:fd:5e:
f1:99:50:b0:e8:23:8f:ab:0b:0f:46:d7:cb:b0:d5:85:e3:f2:
b1:08:25:b8:ce:32:24:d0:b5:53:9b:62:c0:95:75:60:67:c9:
9d:a7:e2:f7:4d:50:3e:8e:55:94:ea:52:04:65:0f:cc:14:76:
a2:b9:17:5c:92:7a:cf:e7:83:5d:65:c5:0f:b4:3a:cc:10:2b:
05:c2:29:06:f4:03:08:4a:6c:78:e9:fa:79:47:0b:ba:92:03:
4d:12:6e:98:91:db:9c:a0:e3:cb:c0:4d:75:ba:75:9f:2c:b2:
5b:7c:9c:bb:35:e5:ae:be:8a:8b:5a:6a:8c:63:d6:9a:32:8c:
fb:a4:37:3c:38:9a:56:dd:b9:a9:26:a0:c8:c7:d5:d5:27:86:
51:11:1f:10:08:2c:73:f4:6b:d9:37:33:15:c2:7a:09:62:3f:
e5:c9:52:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:14:25 2026 by rpki-client