Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json)
Hash identifier: 4vr+zKUezQfT/2k1m863ugB1Pv4e4JNnb34Y96GJsUA=
Subject key identifier: BA:CB:1E:F8:BA:C1:D3:36:12:0E:F3:3D:F5:E7:8C:42:65:D0:61:42
Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Certificate serial: 019CAE6C8750948C3CB9AD61EEFCE83CFBB4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
Manifest number: 026C
Signing time: Mon 02 Mar 2026 12:01:13 +0000
Manifest this update: Mon 02 Mar 2026 12:01:13 +0000
Manifest next update: Tue 03 Mar 2026 12:01:13 +0000
Files and hashes: 1: LtqN1TUJWjtRsIzTnBaO3Vy0_30.roa (hash: moOHHaYDxLgiw4w8eIKhJqNfIhQhI68nRIqz1BJcNe8=)
2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: aWpRGwPbE0nWAzfF7IF8IgVr8SFGBoueKU24OcNPHXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:87:50:94:8c:3c:b9:ad:61:ee:fc:e8:3c:fb:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Validity
Not Before: Mar 2 12:01:13 2026 GMT
Not After : Mar 3 12:01:13 2026 GMT
Subject: CN=bacb1ef8bac1d336120ef33df5e78c4265d06142
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:11:e0:69:3c:af:49:2b:64:cf:30:a4:7c:9d:
3f:63:70:a4:93:6d:a3:21:21:61:6d:5e:45:f9:16:
3e:31:1b:62:cd:9a:02:93:51:30:5a:ed:2d:d1:1b:
c4:9d:18:0b:bf:52:51:12:d2:ab:70:77:13:44:5a:
4c:28:ff:94:c5:6f:04:ee:55:d0:54:43:e9:1c:d5:
5a:c0:2d:b9:ec:de:4a:63:65:03:91:db:69:01:22:
06:02:a6:18:e4:a7:b0:73:25:b1:90:4c:ee:80:c3:
a3:0f:f2:91:fa:0e:b0:37:54:e7:75:84:dc:ab:e3:
02:b6:ca:77:ce:35:93:88:b6:3a:39:eb:fe:e1:f1:
ec:97:89:fc:9a:bd:9a:d4:e2:a7:67:91:6f:9b:78:
ea:06:c2:72:d4:ef:db:00:09:b5:80:30:47:c1:b9:
bc:5b:b1:4a:4a:d1:14:27:2d:30:f8:b5:b8:52:30:
ea:9e:49:e6:ae:3f:06:98:a3:75:c4:8f:7e:2a:0d:
07:f3:f3:62:25:54:71:18:bc:87:00:3a:c1:4e:49:
bd:32:69:57:66:e5:7f:b8:9a:67:70:8d:2f:c1:b1:
40:b3:6c:e2:53:31:68:65:0a:ac:ab:07:b8:f1:5c:
03:b8:22:b7:66:af:39:d0:54:2c:0d:3e:80:97:10:
fe:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:CB:1E:F8:BA:C1:D3:36:12:0E:F3:3D:F5:E7:8C:42:65:D0:61:42
X509v3 Authority Key Identifier:
keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:eb:42:37:fa:9e:7c:4a:c4:8b:24:d4:c6:dd:94:fc:8f:57:
5a:7c:30:4b:6a:dd:43:25:f6:e8:bf:36:7a:dc:95:ba:44:49:
46:a5:0a:7d:d9:7a:3b:14:e5:47:03:ed:59:f6:63:d4:cd:9c:
b0:53:39:34:ad:98:dd:8d:a5:7f:11:0b:ec:b0:fe:01:a6:6b:
f2:1b:55:0c:eb:3b:a3:35:99:db:92:15:d9:be:5b:cf:17:43:
fb:91:f4:f9:a0:c9:d6:a6:00:1a:03:24:bf:15:21:b8:32:b3:
b1:ed:ff:87:dd:75:92:59:c8:ae:04:c9:ac:d1:67:8b:5c:03:
46:a9:43:a3:db:88:a5:ea:74:b5:f3:44:32:7a:5a:32:8e:d6:
6c:01:46:1f:a1:2b:0d:20:01:af:6c:30:68:88:cb:67:36:7c:
31:ad:02:54:6a:75:ad:84:89:ae:83:db:2a:f5:77:2a:9c:31:
03:d0:aa:f7:a5:04:20:58:77:ee:d7:5f:ae:bd:93:c7:cd:ed:
8b:0e:79:24:6c:b8:b2:dd:18:26:df:a1:02:fe:d3:13:9c:e5:
58:71:4f:38:26:16:45:e5:11:46:a8:b3:35:8c:88:61:3c:e1:
18:4e:0c:87:38:e7:38:68:3e:42:0e:e9:8f:fd:69:78:dd:85:
65:a1:1a:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:51:28 2026 by rpki-client