Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
File: ygBGolNBzREDtgzOC5nqN1S6XEE.mft (raw, json)
Hash identifier: IFSevnMWWmkx7tScny2YrTgTGrXMqrAuc8p4s/1JwCc=
Subject key identifier: 7E:24:DD:0D:0C:7D:94:24:4E:DA:0A:BF:49:D9:84:F2:91:A9:BC:41
Authority key identifier: CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
Certificate issuer: /CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Certificate serial: 019CAC4740518C1C525163D3FF8ED34505C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
Manifest number: 0540
Signing time: Mon 02 Mar 2026 02:01:16 +0000
Manifest this update: Mon 02 Mar 2026 02:01:16 +0000
Manifest next update: Tue 03 Mar 2026 02:01:16 +0000
Files and hashes: 1: stNqzIw6qQRyW22hrj_jya1vgPM.roa (hash: R7iZW3oZGdaZLmvsasGhYvRkXeTvpYwH54Of8otwpTw=)
2: ygBGolNBzREDtgzOC5nqN1S6XEE.crl (hash: p2oL1U7hh2uyccqurUPTsEHC11ixzWtFZAJOH7nR3e0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:40:51:8c:1c:52:51:63:d3:ff:8e:d3:45:05:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca0046a25341cd1103b60cce0b99ea3754ba5c41
Validity
Not Before: Mar 2 02:01:16 2026 GMT
Not After : Mar 3 02:01:16 2026 GMT
Subject: CN=7e24dd0d0c7d94244eda0abf49d984f291a9bc41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d3:ca:62:59:9b:99:1c:c3:3e:b9:81:81:ad:
4e:ab:25:12:eb:69:bd:df:56:bb:40:0c:71:15:c2:
5f:15:ad:e1:a5:47:dc:7c:c3:e8:08:36:db:9e:47:
22:53:6e:25:99:47:13:33:4d:05:6d:87:a0:2e:5c:
9d:c4:c3:1d:6d:29:12:98:dd:b5:a0:4a:81:f1:2f:
6b:27:97:45:fc:62:d9:62:a9:d4:77:ab:df:5d:4c:
84:b4:70:55:67:8b:a0:8c:55:cf:34:e1:04:32:8b:
be:79:e6:5f:f7:ce:3d:99:a2:64:c8:ba:88:5b:fd:
cd:e7:fa:6a:80:24:f1:6c:3c:c7:c3:76:c8:33:ce:
15:41:b7:a4:9d:08:d8:26:6e:7b:7b:49:c1:2d:4b:
9f:4d:f8:e8:62:18:30:b0:37:74:70:df:32:90:05:
6e:7b:e1:08:00:2b:24:8a:db:f4:c0:d5:91:8f:1c:
61:41:ae:9e:6b:ee:95:96:2c:af:a3:38:7c:00:12:
54:ae:ae:eb:b9:bc:98:b9:f8:b4:8f:d3:55:29:33:
6b:01:0b:79:9b:1f:24:ac:c3:40:e2:1b:50:70:97:
68:c5:8c:83:34:0f:fa:05:e1:4c:5e:78:de:0a:06:
86:04:b8:75:b4:61:55:f7:93:a4:79:47:e5:63:33:
9d:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:24:DD:0D:0C:7D:94:24:4E:DA:0A:BF:49:D9:84:F2:91:A9:BC:41
X509v3 Authority Key Identifier:
keyid:CA:00:46:A2:53:41:CD:11:03:B6:0C:CE:0B:99:EA:37:54:BA:5C:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygBGolNBzREDtgzOC5nqN1S6XEE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/36bd40-4a48-4c04-9710-5e763d3a4d1d/1/ygBGolNBzREDtgzOC5nqN1S6XEE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:fb:40:55:f1:e7:86:18:62:9c:a4:a5:f5:78:f0:46:fe:b1:
83:5c:64:c7:4d:38:98:21:ad:ed:98:7f:e9:55:c8:a2:1e:72:
db:6b:bf:44:35:9d:e5:60:09:02:09:15:d9:ca:55:2f:c1:55:
29:e9:42:f2:95:21:7b:a8:bd:00:86:a2:20:06:22:c9:0a:90:
d4:7e:29:50:a0:34:cb:96:63:fe:07:61:b0:63:6f:02:3f:10:
50:0d:21:e7:8d:62:c1:4a:cd:b0:aa:97:dc:5d:ea:65:d0:06:
e6:e6:93:be:71:9d:2b:52:53:68:9d:0d:4d:fd:2d:47:63:a1:
86:c0:21:30:1c:53:c3:d4:e9:28:80:21:21:69:1f:70:d8:fb:
1a:1f:b7:98:5c:6f:16:e2:31:4e:e6:7f:2b:80:df:a9:54:9c:
9d:1b:a5:54:f1:21:3c:f7:94:d1:28:37:f9:4a:13:af:50:e6:
97:49:53:b1:7a:e6:80:13:de:69:49:c4:27:1d:83:e2:22:28:
bb:4d:f0:03:35:f0:8c:6f:1d:40:b2:85:d4:b2:1d:ef:34:18:
ba:20:6f:eb:13:50:3a:67:5f:44:f7:33:22:2e:07:e7:a1:dc:
08:d2:5f:59:6b:55:4f:e3:6f:40:79:39:9a:8e:bc:31:3f:b5:
ad:ec:71:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:18 2026 by rpki-client