Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: J2+Rj6qJ8ebipMsLohaOthK7DjFGBoPDzrH0mpM6aNY=
Subject key identifier: 64:E5:79:17:BF:9C:15:0F:26:2F:E2:17:9E:6D:07:DE:31:19:66:5F
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019ED4991CA6338C1DBE4E9A6C224240CF35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 1965
Signing time: Wed 17 Jun 2026 08:01:04 +0000
Manifest this update: Wed 17 Jun 2026 08:01:04 +0000
Manifest next update: Thu 18 Jun 2026 08:01:04 +0000
Files and hashes: 1: NkhNpoa7Mava_QXc8cJpKFD-6x0.roa (hash: NHb2sZxdiKyxH3v4fGC8EWYo7uPMfDDnkonpIAR9yAY=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: Ckiu2z9obQnk8QCRCWDdQAOziRnRprV+uFf0rWZghZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d4:99:1c:a6:33:8c:1d:be:4e:9a:6c:22:42:40:cf:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Jun 17 08:01:04 2026 GMT
Not After : Jun 18 08:01:04 2026 GMT
Subject: CN=64e57917bf9c150f262fe2179e6d07de3119665f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d9:ce:46:a6:47:aa:eb:15:34:1f:62:e0:4d:
d9:0d:22:35:19:a3:4a:e5:17:95:c2:59:87:8d:8a:
56:1a:8e:ad:80:af:8f:f4:f9:ca:fc:81:84:ad:50:
0c:a6:24:81:fa:34:04:14:e1:55:1c:73:7f:bc:1f:
16:1a:1a:73:ea:ad:0d:57:b4:9e:c3:7a:55:c4:8c:
21:19:a5:2b:49:7f:1b:f9:42:39:ec:58:1f:4d:89:
48:a7:8c:e1:b4:84:4a:87:93:c2:ae:9e:0d:56:c5:
b0:5d:d8:f9:42:e9:74:81:4f:42:22:99:a9:c9:7e:
6a:14:06:7f:2e:a7:19:67:b3:2c:ce:15:ea:57:31:
1e:89:34:d9:bb:46:77:2a:aa:a9:c4:52:98:9c:f6:
27:b9:bb:83:08:11:1b:3c:61:25:23:5e:b2:1a:21:
ef:da:03:69:62:a7:2c:3b:dc:13:03:b4:87:0c:5f:
d2:b9:2c:08:83:be:ea:46:11:2c:dd:76:6d:5f:ba:
9c:ae:6b:f6:63:a1:3f:ae:e5:6a:4d:1a:6d:81:cc:
22:8b:54:2a:b0:e7:8a:89:0f:39:3a:5f:23:68:79:
d5:51:e4:02:70:d9:df:c8:7e:21:6d:b8:fa:a0:53:
3e:46:87:09:25:97:0a:b8:6a:33:a2:3d:ba:93:74:
2a:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E5:79:17:BF:9C:15:0F:26:2F:E2:17:9E:6D:07:DE:31:19:66:5F
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:45:0b:59:cc:94:38:56:26:a5:d3:fd:c8:67:97:a8:03:dc:
e4:55:4e:71:da:46:bc:fd:b1:4c:56:e8:c5:d1:26:f1:0c:45:
43:f8:63:db:bb:d6:31:8b:bd:63:d7:88:19:64:04:6a:c4:a1:
6d:e8:1c:1b:25:79:39:a9:fd:30:8f:2d:e8:a3:43:74:66:51:
f3:8c:95:10:09:e4:68:dc:4e:d7:dc:bd:11:10:8c:5a:a5:cd:
44:cb:de:05:70:a8:6e:e0:b3:75:5f:90:3d:4d:5c:77:9e:77:
08:42:39:64:8c:7c:74:64:e0:d7:56:6c:99:20:81:09:5f:9e:
6e:38:f7:4d:d7:4b:28:cc:4b:11:1f:b6:27:d7:df:00:94:a5:
1a:f6:65:fa:30:13:54:b0:9b:5b:c6:54:76:bf:38:54:85:76:
18:84:71:34:50:a1:8a:c8:6f:97:aa:ef:e1:78:c8:d2:65:f6:
4d:b7:38:08:d5:7a:b8:fb:67:4f:b4:d7:98:83:58:72:60:05:
a4:2c:e7:66:9f:12:0f:d0:b9:4e:bf:74:77:fd:c9:6c:43:99:
0c:44:16:ef:5b:74:74:e6:83:d9:da:8a:ab:3f:6a:2e:1d:00:
a3:68:25:24:38:3a:8e:ff:31:b4:39:c7:58:24:7f:db:ce:13:
5b:91:59:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7UmRymM4wdvk6abCJCQM81MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNjRkYWJkOWJjNDY0ODVmNmE5MTYzNmVkZTc1M2RhMzhj
OGYzNjQwHhcNMjYwNjE3MDgwMTA0WhcNMjYwNjE4MDgwMTA0WjAzMTEwLwYDVQQD
Eyg2NGU1NzkxN2JmOWMxNTBmMjYyZmUyMTc5ZTZkMDdkZTMxMTk2NjVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9nORqZHqusVNB9i4E3ZDSI1GaNK
5ReVwlmHjYpWGo6tgK+P9PnK/IGErVAMpiSB+jQEFOFVHHN/vB8WGhpz6q0NV7Se
w3pVxIwhGaUrSX8b+UI57FgfTYlIp4zhtIRKh5PCrp4NVsWwXdj5Qul0gU9CIpmp
yX5qFAZ/LqcZZ7MszhXqVzEeiTTZu0Z3KqqpxFKYnPYnubuDCBEbPGElI16yGiHv
2gNpYqcsO9wTA7SHDF/SuSwIg77qRhEs3XZtX7qcrmv2Y6E/ruVqTRptgcwii1Qq
sOeKiQ85Ol8jaHnVUeQCcNnfyH4hbbj6oFM+RocJJZcKuGozoj26k3QqqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGTleRe/nBUPJi/iF55tB94xGWZfMB8GA1UdIwQY
MBaAFMpk2r2bxGSF9qkWNu3nU9o4yPNkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveW1UYXZadkVaSVgycVJZMjdlZFQyampJODJRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC8yNDE4ODItYTQzNy00YWIzLWIzOGUt
NTAyOGMyNTliMjY3LzEveW1UYXZadkVaSVgycVJZMjdlZFQyampJODJRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC8yNDE4ODItYTQzNy00YWIzLWIzOGUtNTAyOGMyNTliMjY3
LzEveW1UYXZadkVaSVgycVJZMjdlZFQyampJODJRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgkULWcyU
OFYmpdP9yGeXqAPc5FVOcdpGvP2xTFboxdEm8QxFQ/hj27vWMYu9Y9eIGWQEasSh
begcGyV5Oan9MI8t6KNDdGZR84yVEAnkaNxO19y9ERCMWqXNRMveBXCobuCzdV+Q
PU1cd553CEI5ZIx8dGTg11ZsmSCBCV+ebjj3TddLKMxLER+2J9ffAJSlGvZl+jAT
VLCbW8ZUdr84VIV2GIRxNFChishvl6rv4XjI0mX2Tbc4CNV6uPtnT7TXmINYcmAF
pCznZp8SD9C5Tr90d/3JbEOZDEQW71t0dOaD2dqKqz9qLh0Ao2glJDg6jv8xtDnH
WCR/284TW5FZQg==
-----END CERTIFICATE-----
Generated at Wed Jun 17 16:33:16 2026 by rpki-client