Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: lkSfvQcgs2pbFvDWIh49Vi261toC1shJiFGgji5x3k0=
Subject key identifier: AB:9B:14:E1:B1:01:18:DC:55:22:52:51:F0:00:FC:7D:69:A1:E1:CC
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019D98F40E3522E76C074BDD79649823E42F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 1429
Signing time: Fri 17 Apr 2026 01:00:24 +0000
Manifest this update: Fri 17 Apr 2026 01:00:24 +0000
Manifest next update: Sat 18 Apr 2026 01:00:24 +0000
Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: Au1PeyM1YFqiCoseYkT0/C3icpjS5P/Q5QmDAFpVe4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:0e:35:22:e7:6c:07:4b:dd:79:64:98:23:e4:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Apr 17 01:00:24 2026 GMT
Not After : Apr 18 01:00:24 2026 GMT
Subject: CN=ab9b14e1b10118dc55225251f000fc7d69a1e1cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:16:82:ec:c7:ac:92:1c:59:16:ba:f6:17:c3:
19:d7:c9:14:9c:3c:a5:0a:97:72:07:d2:ab:e6:1c:
1e:40:ab:fe:e6:74:37:36:d0:f1:4d:0c:1b:6e:04:
48:ff:7b:c4:8c:59:c3:a0:1a:f4:a5:70:92:27:f6:
60:92:dc:85:9e:bd:ac:81:e1:97:1f:38:01:d3:9e:
68:25:c5:ff:90:88:d0:0a:57:1f:40:59:3d:7b:79:
28:63:64:96:f1:6c:40:5c:85:06:d6:44:51:ad:74:
50:af:b3:df:59:b2:16:8b:c4:29:84:37:01:5d:88:
4b:b7:79:7f:9c:72:df:44:2d:49:5e:bb:ee:9b:cb:
02:46:34:45:96:d4:b3:16:c9:cb:c5:b6:b6:a8:d2:
c7:61:4a:73:c6:07:12:64:d9:a9:3f:3f:14:fd:a3:
f9:24:70:c4:76:55:af:91:af:23:ec:57:37:d3:94:
37:8b:99:85:67:4e:0c:24:b9:28:65:4f:c3:49:f7:
29:c1:e3:da:ee:6a:1d:8e:84:ce:43:18:2d:1d:8b:
43:90:3f:49:b1:d4:9f:e0:78:47:33:dc:18:f7:d4:
7e:11:05:4a:42:51:41:bf:92:9b:47:c7:3e:e3:b9:
1a:b6:7c:ce:a6:75:cb:ea:32:d4:84:00:53:6a:13:
71:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:9B:14:E1:B1:01:18:DC:55:22:52:51:F0:00:FC:7D:69:A1:E1:CC
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:51:e5:ed:f0:b9:03:d7:b4:8e:e4:bc:87:bd:4a:eb:27:b8:
bb:29:24:83:a6:cb:40:7a:70:12:a3:e7:e4:61:c0:85:7f:d0:
be:c4:d2:16:ae:2d:0a:01:91:7e:39:6b:a5:18:49:5e:92:fd:
ef:50:fc:4d:d6:1f:67:7e:56:d4:66:02:d8:05:23:d8:6d:b7:
3f:74:40:ab:68:02:8e:53:7d:95:5c:8a:80:61:ba:93:c0:5a:
30:f6:b2:1a:a6:22:40:b8:f0:ae:de:c0:66:9a:07:c8:d6:02:
18:21:5a:e8:da:dc:64:8d:7f:47:11:8d:c4:ca:c8:f4:a2:b4:
4f:09:74:f5:33:8b:ce:5e:7d:fc:cb:aa:e0:55:50:25:c5:20:
7b:81:fb:65:bc:cd:70:75:15:a3:b0:60:69:ff:fa:07:7f:46:
4b:e8:0d:03:ba:e2:73:ba:8d:fd:2c:a7:a8:50:f1:ec:1f:2c:
00:fc:8b:fd:35:0c:b1:c0:ed:68:cd:68:76:47:27:e0:b2:2a:
aa:b4:aa:2b:2e:8b:f5:68:4b:cc:ef:b4:69:a8:a9:a5:f4:c8:
c9:06:50:0b:2a:98:02:36:23:32:c8:98:2f:10:9a:b2:bc:87:
92:57:a8:df:f7:85:e0:c3:7d:53:e9:ad:72:69:78:eb:01:7f:
0c:7b:63:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9A41IudsB0vdeWSYI+QvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTE3ODlhMjMxMzVhYzIyNjhjMjJhMjg1NjAwYTVmOWIw
NTM3NzAwHhcNMjYwNDE3MDEwMDI0WhcNMjYwNDE4MDEwMDI0WjAzMTEwLwYDVQQD
EyhhYjliMTRlMWIxMDExOGRjNTUyMjUyNTFmMDAwZmM3ZDY5YTFlMWNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBaC7MeskhxZFrr2F8MZ18kUnDyl
CpdyB9Kr5hweQKv+5nQ3NtDxTQwbbgRI/3vEjFnDoBr0pXCSJ/ZgktyFnr2sgeGX
HzgB055oJcX/kIjQClcfQFk9e3koY2SW8WxAXIUG1kRRrXRQr7PfWbIWi8QphDcB
XYhLt3l/nHLfRC1JXrvum8sCRjRFltSzFsnLxba2qNLHYUpzxgcSZNmpPz8U/aP5
JHDEdlWvka8j7Fc305Q3i5mFZ04MJLkoZU/DSfcpwePa7modjoTOQxgtHYtDkD9J
sdSf4HhHM9wY99R+EQVKQlFBv5KbR8c+47katnzOpnXL6jLUhABTahNxyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKubFOGxARjcVSJSUfAA/H1poeHMMB8GA1UdIwQY
MBaAFMpReJojE1rCJowiooVgCl+bBTdwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMt
MWUxOTE2OGY1ZDczLzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9iNGJmNjAtZDU5My00MGQyLTk3ODMtMWUxOTE2OGY1ZDcz
LzEveWxGNG1pTVRXc0ltakNLaWhXQUtYNXNGTjNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAolHl7fC5
A9e0juS8h71K6ye4uykkg6bLQHpwEqPn5GHAhX/QvsTSFq4tCgGRfjlrpRhJXpL9
71D8TdYfZ35W1GYC2AUj2G23P3RAq2gCjlN9lVyKgGG6k8BaMPayGqYiQLjwrt7A
ZpoHyNYCGCFa6NrcZI1/RxGNxMrI9KK0Twl09TOLzl59/Muq4FVQJcUge4H7ZbzN
cHUVo7Bgaf/6B39GS+gNA7ric7qN/SynqFDx7B8sAPyL/TUMscDtaM1odkcn4LIq
qrSqKy6L9WhLzO+0aaippfTIyQZQCyqYAjYjMsiYLxCasryHkleo3/eF4MN9U+mt
cml46wF/DHtjfQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:59:28 2026 by rpki-client