Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: uMTUjDHk0Y+GTUalpCYNX7h1R12sVAK2UxXpPT/12uo=
Subject key identifier: 1C:B5:76:91:DF:D1:A6:FD:76:8D:4D:9F:94:06:F6:99:A6:89:6B:94
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 019D269664FA6F3A1242B77DC2FBF757F9E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 06DE
Signing time: Wed 25 Mar 2026 20:01:23 +0000
Manifest this update: Wed 25 Mar 2026 20:01:23 +0000
Manifest next update: Thu 26 Mar 2026 20:01:23 +0000
Files and hashes: 1: 4okKBfXSNKomjqjfKSyXyfQW8mg.roa (hash: c/G+cvhNW3akdlAhAKvUtf/mU2MrPEwZm3MMXGbYwZo=)
2: jDQ8F_F11yNWOX6kbTNP0Ql0Wi8.asa (hash: a4/BoGxMxUQA6ejTQInWpx7OBve66J6mI7qjuV4Hb5Q=)
3: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: zo9AGU/b5A4QfFT6FfYZChMpcBFumFOLBhtNesEeGBg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:64:fa:6f:3a:12:42:b7:7d:c2:fb:f7:57:f9:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: Mar 25 20:01:23 2026 GMT
Not After : Mar 26 20:01:23 2026 GMT
Subject: CN=1cb57691dfd1a6fd768d4d9f9406f699a6896b94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a7:a7:7d:79:5a:ea:0c:65:94:30:37:dd:67:
7a:12:78:77:42:bc:bb:b4:3f:db:83:0f:d4:b6:6b:
04:46:c2:9f:6e:92:c4:c9:b9:fd:22:7c:7f:91:e0:
41:d5:54:d2:d6:da:2e:cb:05:ac:63:c4:73:9f:a2:
14:99:a6:33:85:1c:4b:3a:41:02:47:f3:06:41:db:
5f:05:88:8b:45:a8:76:a5:94:e4:b7:56:52:f0:58:
b1:03:ed:1f:61:d5:a0:36:f5:e6:e9:2d:c0:89:1b:
0b:ea:7f:b2:15:e4:94:d5:ba:77:ff:0f:cd:24:4e:
00:ad:96:7f:c5:37:ec:55:d9:23:2a:35:15:1a:6e:
b9:b3:da:f6:f6:9f:76:96:f0:d6:7a:48:8a:5a:74:
fc:c9:59:e8:6c:89:25:75:0a:1b:12:79:5a:cc:ac:
84:4c:ee:14:0f:a5:11:d5:d9:ff:06:ed:ca:e0:38:
6e:9e:c2:7e:80:a3:56:08:ef:e3:71:e1:af:50:3a:
10:81:12:c5:e6:39:ba:59:f1:82:bf:fa:b0:f8:1d:
f6:88:34:52:4d:2f:f3:af:96:f1:aa:8e:65:15:fb:
d0:c9:01:fb:81:38:81:85:c9:b2:e2:5b:1b:fa:e3:
c7:b2:39:9e:59:75:93:5a:b3:d3:76:4c:03:8b:7d:
5b:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B5:76:91:DF:D1:A6:FD:76:8D:4D:9F:94:06:F6:99:A6:89:6B:94
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:32:23:c3:eb:bd:34:31:44:88:64:e4:81:26:b6:2d:65:d4:
f0:85:30:4a:d6:59:64:5c:2e:2a:1d:b6:b1:de:2a:d5:56:07:
f9:2a:93:e6:02:52:27:3d:59:2b:a6:ff:6a:0e:6f:b4:6d:71:
a4:a4:67:65:5f:ea:d8:c6:f9:2e:a0:7c:d6:2c:a5:25:81:a1:
98:33:86:05:e2:62:dc:ff:41:88:5f:2f:de:e0:f8:48:a2:a4:
84:5b:95:07:de:f6:f0:67:de:ff:2d:05:ad:9b:bd:25:b8:a9:
a1:9b:f1:81:41:0b:28:f2:08:ea:cb:3a:63:ef:6d:22:af:02:
86:20:dc:a6:56:08:a4:1f:5a:04:cc:f9:95:d8:77:c1:1c:4f:
da:21:04:19:54:e1:d0:9a:c0:a6:f2:2b:af:63:6e:82:ce:62:
63:5f:48:f3:d8:50:0c:22:ca:bd:da:b6:9f:91:e9:7e:ab:01:
f6:86:f4:c7:24:ab:06:86:50:6f:66:d4:18:c4:b0:03:09:6f:
35:5d:12:4a:d0:67:d1:7a:3c:39:26:44:47:64:df:03:f1:65:
81:de:b8:20:82:2b:f3:e6:74:41:ca:5c:17:08:51:f9:83:15:
fc:3a:78:b7:7c:26:e4:6b:df:2f:a0:0e:77:9e:ff:4e:41:ff:
50:5e:b1:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:15:07 2026 by rpki-client