Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: 3fVzkhTTj+hJg12hiyF935dG7OeFmqrRrJEL/qnXnvQ=
Subject key identifier: E4:A2:29:83:1F:54:0F:A6:29:B5:4F:EC:7E:A7:ED:5E:14:3D:2A:C7
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019CAA5907FE8DE41D95B463AA776B6B315E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 17:01:27 +0000
Manifest this update: Sun 01 Mar 2026 17:01:27 +0000
Manifest next update: Mon 02 Mar 2026 17:01:27 +0000
Files and hashes: 1: NkhNpoa7Mava_QXc8cJpKFD-6x0.roa (hash: NHb2sZxdiKyxH3v4fGC8EWYo7uPMfDDnkonpIAR9yAY=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: O/o0fKlYYHc+B534v9COT2ZxUDFN/HW6qKBseTH+SpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:59:07:fe:8d:e4:1d:95:b4:63:aa:77:6b:6b:31:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Mar 1 17:01:27 2026 GMT
Not After : Mar 2 17:01:27 2026 GMT
Subject: CN=e4a229831f540fa629b54fec7ea7ed5e143d2ac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d1:ce:87:a0:6d:ee:20:93:e3:98:09:e2:77:
69:2b:55:15:48:73:ea:59:b8:9a:cf:6f:8a:4f:a7:
83:62:5b:5e:c5:34:83:21:c9:c6:d8:44:85:07:9a:
f1:71:b0:84:b3:41:1d:59:52:0d:0d:53:18:03:a1:
61:3d:98:9f:3d:25:eb:1f:90:f4:40:12:77:1b:de:
77:2c:ac:27:7f:cf:8d:4f:e3:d5:7a:c1:39:dc:0e:
7f:ce:a9:67:ba:65:cc:49:b2:2d:81:64:f9:a9:7f:
50:b7:c2:68:99:20:25:61:d6:09:aa:e8:9f:f4:2f:
ba:25:fc:f8:20:dd:3d:ea:7c:4f:78:e1:c9:7d:0e:
7d:c5:92:ad:35:da:bd:5c:e2:b6:aa:a5:cc:e8:2c:
39:aa:ea:f4:14:4a:0e:32:7d:a5:df:d2:cd:98:b3:
6e:00:09:8f:c5:15:ce:5c:d8:e4:ac:60:b5:d1:95:
90:11:28:40:95:bc:e8:3a:84:d9:a6:bb:f2:61:0b:
2c:d3:76:22:27:fe:42:76:27:a2:16:92:9e:da:9f:
49:3e:12:2a:78:c6:ce:e7:75:08:a1:a8:6e:61:f4:
72:6d:8f:91:d0:56:da:c3:e1:52:d4:a5:b4:53:48:
52:92:5d:cd:17:78:f2:04:e4:b7:80:b0:65:df:58:
b5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:A2:29:83:1F:54:0F:A6:29:B5:4F:EC:7E:A7:ED:5E:14:3D:2A:C7
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:b4:90:de:3b:c9:38:db:03:66:9d:13:20:11:15:bf:db:67:
7a:88:d5:bb:75:57:86:29:0f:eb:8b:ac:74:fb:52:ba:40:8f:
35:d6:38:e0:9c:c9:ff:d7:9d:07:39:6d:2c:9b:1c:f0:00:ec:
09:49:39:db:13:9c:31:07:31:27:77:42:26:ad:d1:55:eb:f2:
22:8e:97:3b:6a:ef:fb:ea:f0:52:de:8f:f1:37:7f:19:b4:a6:
68:ae:37:b6:c0:aa:98:43:53:ba:17:bf:1a:b3:e4:5d:b0:77:
3d:dc:5c:59:00:d4:cb:37:f2:60:c8:7e:62:02:ad:18:b3:dd:
eb:f8:8f:0d:fb:53:d5:e3:47:ac:79:a9:5d:00:23:35:88:fa:
71:d0:0d:d3:f7:a7:4e:fa:9b:bc:21:7a:67:b0:c8:19:c7:d6:
13:a8:9a:cd:21:44:3b:a7:b1:c2:8e:c2:d3:16:7b:33:45:6c:
5b:5e:cb:e2:02:e7:a7:39:b3:ea:29:c1:85:4a:51:cc:9c:3d:
13:68:54:53:75:88:a0:b0:6c:30:0a:40:7e:fd:f6:d1:46:7d:
2a:86:6a:0a:65:79:32:48:28:44:31:4d:35:76:45:38:bf:bf:
d5:15:5c:c9:e2:6a:f0:42:32:5d:35:ff:dc:69:23:10:35:81:
6c:05:fc:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:52:17 2026 by rpki-client