Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: tHrcx7ubzZBxU67iQNDcw4rQYyr7lHVa15SR2Xf7N2M=
Subject key identifier: 07:94:2D:2D:08:FF:6D:E0:8F:AC:BE:B4:05:98:B5:78:FA:74:3D:5D
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019CAF481FFC356787DBF786DE9783AA1F5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 13B0
Signing time: Mon 02 Mar 2026 16:01:05 +0000
Manifest this update: Mon 02 Mar 2026 16:01:05 +0000
Manifest next update: Tue 03 Mar 2026 16:01:05 +0000
Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: ZwL4NWhopVw7vr+ry/uVYrt3ymPiDTEFzf+putWEZ/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:48:1f:fc:35:67:87:db:f7:86:de:97:83:aa:1f:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Mar 2 16:01:05 2026 GMT
Not After : Mar 3 16:01:05 2026 GMT
Subject: CN=07942d2d08ff6de08facbeb40598b578fa743d5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:78:bf:1d:f6:ce:fa:d8:d1:66:d5:1e:df:65:
ac:51:90:7c:dd:52:41:20:33:16:5c:ac:4f:eb:c5:
5f:80:5d:8c:a8:80:60:db:6d:38:5e:92:22:52:35:
67:36:2a:9d:76:19:bb:2e:f7:05:08:73:16:b8:86:
eb:25:12:6d:af:0b:99:f2:1f:45:47:50:b2:63:17:
e5:a0:0f:53:52:8b:93:c6:20:47:8a:cd:f4:d0:19:
4a:dc:e1:4a:3a:4c:16:e5:3c:0a:08:0f:43:39:b8:
34:de:1d:f0:f9:aa:27:4e:53:a1:38:2a:26:25:d2:
01:eb:db:33:76:3e:25:69:93:96:74:6a:8d:9a:55:
11:a3:2d:aa:ce:94:4a:30:50:c5:58:ac:2d:ba:6d:
8c:76:17:a3:ab:20:f3:ea:a3:62:95:84:92:b4:be:
3b:34:c0:5f:1b:1b:dc:4c:43:4a:ce:a0:a4:dd:4f:
f7:39:51:42:fa:04:a1:f1:f4:3d:fe:5a:16:7a:f1:
1c:98:f9:fe:0f:71:99:b2:cd:ac:dd:e8:84:f7:ad:
f9:0d:59:50:da:2a:35:0a:de:07:cb:5e:2c:2f:21:
09:ae:23:cc:91:0c:a7:7c:62:09:63:2b:6f:d2:4d:
cb:85:17:ec:02:36:ae:4e:cb:67:d0:56:ba:85:5a:
cb:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:94:2D:2D:08:FF:6D:E0:8F:AC:BE:B4:05:98:B5:78:FA:74:3D:5D
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:b2:2d:a9:75:42:d1:78:80:3a:c4:5e:8c:d5:5b:cb:ed:65:
af:05:f2:33:e4:fb:8e:cd:7a:ab:a5:e4:df:a9:d2:33:31:5e:
5a:4a:21:5f:f3:4f:50:16:5f:36:39:69:aa:70:e1:44:6f:40:
df:94:3d:a1:22:1c:53:fc:25:a4:7b:3b:6b:36:62:1e:29:3e:
f7:e6:d1:2c:d2:51:c7:cc:e3:79:7b:44:a6:d4:50:be:b6:17:
87:a5:2e:e0:e7:ce:33:a5:ea:89:d1:21:d2:9f:db:0e:01:b1:
4e:0e:0c:93:d2:8c:ae:9a:54:58:45:a2:c9:93:9f:46:9f:8f:
10:19:e4:63:fd:bb:e3:8b:58:aa:58:29:0a:a7:d4:1f:c7:99:
64:57:c8:f9:7e:e9:b9:23:8d:7f:5f:25:42:d2:da:52:9f:8e:
0b:51:57:3f:be:26:ec:d4:61:d1:69:42:f2:2b:2b:6b:39:cf:
5a:38:ad:85:02:c9:fc:02:30:46:d7:99:38:ba:f8:59:3a:52:
a5:54:0b:09:eb:aa:1c:89:b7:6d:45:85:25:c8:d7:ff:64:bf:
8c:f5:e5:8a:ef:54:dc:d4:15:02:c8:54:d4:49:b7:e9:d0:d9:
14:d1:be:1d:e3:60:88:d0:b5:17:06:93:80:d1:87:ab:7a:31:
1a:49:b0:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 23:08:33 2026 by rpki-client