Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: XBzLlvrqZJKSwHuYUSapqI7Q/OJGJ5pT/b0eIokf9/8=
Subject key identifier: 4E:B5:BB:A3:19:9A:5C:CE:4A:80:35:12:DA:1A:7E:FF:78:26:2F:4E
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 019E1DC724C3050568A4C152610E4EC45CE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 075E
Signing time: Tue 12 May 2026 20:00:50 +0000
Manifest this update: Tue 12 May 2026 20:00:50 +0000
Manifest next update: Wed 13 May 2026 20:00:50 +0000
Files and hashes: 1: 4okKBfXSNKomjqjfKSyXyfQW8mg.roa (hash: c/G+cvhNW3akdlAhAKvUtf/mU2MrPEwZm3MMXGbYwZo=)
2: jDQ8F_F11yNWOX6kbTNP0Ql0Wi8.asa (hash: a4/BoGxMxUQA6ejTQInWpx7OBve66J6mI7qjuV4Hb5Q=)
3: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: PcEt+kSQrNG+rHUkxJGjjjo4RmwmcNHgPldxmJdH2gI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:24:c3:05:05:68:a4:c1:52:61:0e:4e:c4:5c:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: May 12 20:00:50 2026 GMT
Not After : May 13 20:00:50 2026 GMT
Subject: CN=4eb5bba3199a5cce4a803512da1a7eff78262f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:9d:19:ea:52:c4:40:e8:80:0a:36:16:0c:4c:
f5:ee:e4:05:56:46:ea:58:28:05:b5:fe:79:50:20:
96:94:1a:15:d0:ee:14:db:e4:e2:43:45:db:60:56:
ae:4b:d2:3d:34:b3:1c:e4:30:d4:a4:9f:2c:d5:f0:
f6:88:ee:89:51:0c:c1:cc:10:87:4d:89:bf:ed:b8:
39:d1:4b:fd:d9:bf:9b:bb:72:b7:ca:76:21:d9:cd:
f2:75:ed:78:9c:1e:b1:37:b6:1c:2b:31:80:e8:a3:
ac:8f:99:af:b1:c0:78:81:53:76:1c:b5:43:ca:4f:
c7:79:29:a2:11:84:52:6f:8f:ad:70:4f:c9:fd:93:
69:70:22:15:81:18:77:ac:37:42:4e:ed:6c:3d:3a:
8b:2f:bd:5e:1a:77:fd:c0:2e:91:58:15:ab:07:ed:
94:15:f6:49:d0:7c:be:47:5c:00:25:3f:e0:41:4a:
88:68:ff:38:7f:aa:32:57:ec:2a:86:4d:19:29:40:
55:ef:27:18:7d:cd:12:fb:b3:2c:1c:95:f8:d1:15:
06:50:38:31:bf:7d:2c:24:5a:56:5c:b5:87:4a:cf:
90:85:de:20:45:8d:72:36:09:49:af:c0:63:a5:75:
03:e3:48:90:31:3b:0f:cb:ff:63:3d:b9:50:20:5a:
27:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B5:BB:A3:19:9A:5C:CE:4A:80:35:12:DA:1A:7E:FF:78:26:2F:4E
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:c4:3b:50:fe:49:e8:ac:84:70:dd:80:9c:26:e3:ac:2a:47:
b9:53:10:00:03:c8:0f:e5:94:33:07:1a:46:4c:a4:f5:0b:b8:
2f:00:f0:ce:10:f6:e6:f4:3f:de:09:d5:7e:8a:71:6f:17:3d:
4e:00:c2:f1:d1:14:9e:6d:e1:f6:7d:cb:a0:be:73:3b:10:c4:
77:0a:f8:84:9a:e4:2f:80:6e:c6:d5:7a:8c:71:52:cf:36:ce:
bf:83:b7:e1:40:72:46:15:59:57:e9:8a:18:f2:d3:52:a6:8d:
75:78:1c:37:50:94:4d:04:f3:96:1d:8a:d5:21:02:8e:49:df:
3c:45:8c:ba:fe:ae:46:6d:d4:cb:6c:ae:67:fa:48:a8:19:15:
df:c6:fe:c7:06:0b:89:ae:37:29:36:59:8a:c8:25:e7:7e:7b:
06:21:62:5f:b4:ac:18:63:90:26:d9:b5:57:95:52:1e:c9:70:
41:36:c2:e1:f4:41:a6:a8:cc:34:78:06:49:f6:4d:90:9d:1a:
09:44:1c:15:66:78:d7:c6:12:94:21:e8:e7:d2:00:34:ff:42:
c2:f5:41:65:0d:69:1d:61:54:64:52:2c:eb:e9:cb:97:1a:c0:
e5:4f:95:20:37:d8:90:53:79:96:cd:23:8d:ed:8a:92:1a:eb:
67:ca:98:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:32:51 2026 by rpki-client