Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: +Chc0j8XnwvCmkgqhax7wABIvsbdp0OQELPma8QsvPA=
Subject key identifier: 6E:3C:50:13:8E:48:CB:7B:A2:21:F8:EF:FF:70:13:A9:DC:E1:18:71
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019EC06D7E9BBDBAB53D255CE896C4CE7A25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 14C2
Signing time: Sat 13 Jun 2026 10:01:01 +0000
Manifest this update: Sat 13 Jun 2026 10:01:01 +0000
Manifest next update: Sun 14 Jun 2026 10:01:01 +0000
Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: sVDfSNIdCuK3ggvuG7wwbhnUJDgMxrgms2RU6yAtl7o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:7e:9b:bd:ba:b5:3d:25:5c:e8:96:c4:ce:7a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Jun 13 10:01:01 2026 GMT
Not After : Jun 14 10:01:01 2026 GMT
Subject: CN=6e3c50138e48cb7ba221f8efff7013a9dce11871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:20:50:7f:af:c3:e2:cf:ec:70:9a:91:77:73:
8d:02:47:be:94:cc:96:62:36:e2:af:ba:fb:42:60:
89:68:d5:3f:6d:59:8a:d2:fc:a7:8b:ed:55:fc:63:
87:89:9b:50:8d:a5:30:78:94:b1:cc:47:e6:ff:bd:
ad:c4:dc:81:a5:72:9b:80:c0:32:71:df:1f:ca:70:
e1:48:6c:58:57:a6:fb:1d:44:40:3a:ad:b8:17:e1:
c9:b0:db:4c:75:d4:57:2b:fd:c0:31:27:9b:60:fa:
b8:17:4d:91:8b:ff:c3:dd:d8:57:03:a1:9b:7c:df:
d4:8a:ba:f8:e4:f4:b4:80:1d:46:99:db:6d:dc:1f:
bb:90:86:02:3c:d7:7a:92:61:c3:f8:33:51:97:d9:
59:cb:89:01:3f:eb:18:02:38:55:b4:c5:f3:50:c7:
b3:29:b9:b8:8d:69:1d:46:2a:d1:00:04:22:54:3e:
d9:80:15:c9:68:59:0c:b7:30:8b:6a:46:5a:51:38:
c3:78:33:ac:19:ac:5d:b3:57:fe:42:4c:6c:31:5d:
14:4c:f1:bd:fb:fc:ad:3e:5a:73:ab:e0:5e:d0:be:
0f:b9:c5:75:7c:14:ac:87:7b:25:d6:a0:a1:9a:68:
7a:60:91:2e:79:81:8c:c1:fd:e7:62:aa:ff:1c:83:
c6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:3C:50:13:8E:48:CB:7B:A2:21:F8:EF:FF:70:13:A9:DC:E1:18:71
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:53:f9:b8:2b:2b:08:d5:0d:9b:6c:74:f4:c5:71:e4:14:18:
1a:b7:04:5c:72:b2:25:a5:89:00:65:7e:2c:9e:8c:ca:16:0e:
97:b1:ff:07:11:1f:cc:d9:b9:0f:25:53:f7:32:24:05:9e:15:
dc:a1:1a:2b:c8:49:11:ad:12:d1:1f:c5:90:28:df:8c:86:cb:
90:b8:a1:c7:73:2e:d4:b1:ac:8a:02:34:ac:ab:32:17:f6:da:
bc:05:db:7a:20:82:e7:b0:fc:48:3b:9e:5a:94:6d:8c:3a:8b:
54:5a:7d:f0:c2:f5:d6:89:ea:52:f5:94:83:db:2f:59:c9:e8:
94:51:f0:fa:07:75:61:1d:94:ff:a1:3e:48:cb:2c:0b:4b:93:
f6:e2:1a:d8:f8:ac:16:f1:a0:ef:27:6d:00:45:d0:ee:9e:0c:
8e:7d:bf:98:52:e9:3b:5d:c2:03:d6:48:a3:7d:6b:5e:28:ec:
d6:09:64:8d:f5:4f:c3:00:f5:c7:2d:67:39:5a:63:ce:e9:86:
c9:40:58:4b:15:c6:b6:81:74:47:2e:ce:6d:bf:7e:e4:25:83:
4c:9a:29:5b:f9:9c:55:ca:88:00:9e:b1:89:a3:b5:40:05:72:
28:68:69:bb:c0:3a:6e:6b:f0:e3:6c:7f:48:c5:09:3d:67:0e:
90:4c:5e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:32:48 2026 by rpki-client