Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
File: ylIg5T5PgcoljM_qGHKAKA9fYho.mft (raw, json)
Hash identifier: hoRcP8Ecy0S1GwY0ii4sXmHc0bzQYFiSGUpvpA3uBso=
Subject key identifier: 3C:7A:B1:1D:8D:12:9F:B5:E0:6F:3A:30:92:6E:52:F3:C2:59:4D:B7
Authority key identifier: CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
Certificate issuer: /CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Certificate serial: 019EC2926527314B9D0A2009DC00C8554228
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
Manifest number: 1959
Signing time: Sat 13 Jun 2026 20:00:34 +0000
Manifest this update: Sat 13 Jun 2026 20:00:34 +0000
Manifest next update: Sun 14 Jun 2026 20:00:34 +0000
Files and hashes: 1: DTnex-UlwV0zKy6UASXDNP6H64M.roa (hash: OS8JKI81uoNsyPVMBJm7f0QmGbnDk6BbHN/7FVmcoHg=)
2: q0Xg32RLpaZ2ftlLqcFE1HiFMHM.roa (hash: veVsiD7OXuZtD0ZpV5SiKVt3Azw07hmLxG5Vpo3m3dM=)
3: ylIg5T5PgcoljM_qGHKAKA9fYho.crl (hash: MNmVSndojdUDg+OFR8hbB3kh+x2eaZ9RNChWqWaWhG0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:65:27:31:4b:9d:0a:20:09:dc:00:c8:55:42:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5220e53e4f81ca258ccfea187280280f5f621a
Validity
Not Before: Jun 13 20:00:34 2026 GMT
Not After : Jun 14 20:00:34 2026 GMT
Subject: CN=3c7ab11d8d129fb5e06f3a30926e52f3c2594db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:04:6e:e8:45:a7:0c:7f:20:88:03:90:40:62:
f5:52:58:a1:a8:e4:4b:6f:d7:a9:54:2e:97:b8:42:
19:dd:8f:33:4c:90:f4:2a:bb:00:8c:fc:98:86:18:
5b:d9:3e:55:e4:43:84:f3:d3:6f:c3:25:27:d3:ad:
59:6e:74:fa:88:af:67:d6:f0:92:c1:7e:d8:d7:43:
0b:bb:af:68:aa:ad:d6:56:cc:a3:a2:3c:63:b0:b8:
88:3c:0b:a0:2a:a7:d7:6d:d3:ab:57:58:ea:ca:b1:
2d:96:e6:7e:9e:e6:34:2c:3f:32:78:6f:de:9f:9b:
4b:13:a1:4a:fa:b2:80:e5:c6:ae:cf:06:5a:c1:0d:
f8:1a:10:f2:aa:19:9b:15:35:36:8a:84:24:5d:81:
b8:86:df:76:76:db:de:67:f5:49:fc:1f:75:1d:f4:
7f:d7:e5:de:8c:a8:32:19:a7:8a:ce:6b:f3:2f:28:
95:52:84:2f:42:6f:5d:a7:41:2a:03:2c:5d:39:35:
a1:71:52:67:db:52:63:a1:67:c0:e5:86:db:0e:5a:
5e:d5:66:92:5a:31:ed:23:73:5a:07:85:72:e4:70:
d8:5a:4f:e2:fe:90:08:5b:c2:75:79:ea:e6:ba:37:
e0:8b:99:51:53:75:6c:d0:67:65:20:ba:4a:8c:ee:
32:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:7A:B1:1D:8D:12:9F:B5:E0:6F:3A:30:92:6E:52:F3:C2:59:4D:B7
X509v3 Authority Key Identifier:
keyid:CA:52:20:E5:3E:4F:81:CA:25:8C:CF:EA:18:72:80:28:0F:5F:62:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylIg5T5PgcoljM_qGHKAKA9fYho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/424947-1c6a-48e9-b289-f23c5a531823/1/ylIg5T5PgcoljM_qGHKAKA9fYho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:5a:15:15:ee:00:eb:f1:ac:23:aa:04:97:53:83:17:db:d0:
91:56:dd:78:b6:bd:1f:55:51:75:e6:bc:0a:a5:79:fc:4c:a5:
40:2a:52:70:a1:87:4d:f7:d2:ce:39:5b:de:9e:aa:0b:6c:48:
5f:29:d9:3a:c0:8f:25:8a:67:bb:84:5b:c4:1a:f0:08:e0:a9:
5f:6f:5e:e3:aa:80:3d:27:8a:9e:8d:ea:e0:b6:6f:32:b7:de:
8e:99:99:8d:32:2f:d7:e3:a6:f2:97:e0:6d:72:2a:d6:08:61:
9d:c8:ce:d7:e1:df:53:ab:a1:18:9e:00:97:d6:95:1d:51:2f:
05:b9:05:80:bd:e5:c8:67:da:56:73:af:9f:c2:dc:e9:63:b7:
c7:e3:37:20:d5:c6:f7:41:79:b4:a3:f4:48:ce:54:6e:2c:35:
e9:dc:f7:e6:0f:b4:8d:0a:f6:37:23:5a:a9:01:36:bb:1a:75:
bb:3e:05:85:e8:92:b0:08:a4:46:a5:58:7c:fc:e2:20:ac:2d:
dc:3c:e1:91:1c:f0:c6:a4:06:89:1d:dd:f4:be:46:7e:dc:02:
b5:de:5a:37:dd:a4:c4:86:ea:5c:af:2c:79:17:24:20:af:f3:
1b:27:e5:d1:91:3c:b8:b7:c4:23:53:47:bf:5a:08:a1:18:0d:
53:6e:9f:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:49:13 2026 by rpki-client