Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
File: ymFHjk1lm-zoIDxei6jo-C8EcNc.mft (raw, json)
Hash identifier: uySQQEzvsSM5FGWNDbzOje8C1TUselGN5xOUgaum+qs=
Subject key identifier: 7E:F2:0D:12:84:43:5E:0B:BA:72:40:85:FB:D1:9A:38:33:6D:88:34
Authority key identifier: CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
Certificate issuer: /CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Certificate serial: 019EC292178AA4D84093FF2E49F042160D76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
Manifest number: 0386
Signing time: Sat 13 Jun 2026 20:00:14 +0000
Manifest this update: Sat 13 Jun 2026 20:00:14 +0000
Manifest next update: Sun 14 Jun 2026 20:00:14 +0000
Files and hashes: 1: nasjAVJDsU8AYQoGkGUr76HwJrE.roa (hash: ulv6Sdisc5z+EneUBgzHGP5vhuFMcuY6hrYIBq7ACx4=)
2: ymFHjk1lm-zoIDxei6jo-C8EcNc.crl (hash: Ilj3gOtJMD/1+g7kVRAbLKfph2VmFYUCjnzMqKCeWKE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:92:17:8a:a4:d8:40:93:ff:2e:49:f0:42:16:0d:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca61478e4d659bece8203c5e8ba8e8f82f0470d7
Validity
Not Before: Jun 13 20:00:14 2026 GMT
Not After : Jun 14 20:00:14 2026 GMT
Subject: CN=7ef20d1284435e0bba724085fbd19a38336d8834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cd:11:3c:8d:0a:4e:18:02:8c:23:33:28:f3:
5a:11:1f:b4:1b:cc:e8:c8:74:1c:a4:8d:d1:a4:76:
a6:b8:20:c8:c0:17:6a:7d:14:95:83:f1:7d:c5:61:
7e:6a:32:7d:d0:96:c5:fa:b2:5a:37:3c:4b:00:5d:
70:37:69:06:e0:61:6b:2a:06:f3:19:20:20:88:27:
67:e8:23:9c:f7:fd:9b:67:32:aa:4a:20:d3:65:53:
9f:9b:32:96:99:9b:c6:18:2e:0c:83:0f:0e:ea:fb:
72:2e:99:3d:49:a4:00:b1:b2:d0:c3:81:74:f6:ee:
e4:72:57:69:5d:a4:47:cb:23:62:04:ef:5f:f9:04:
51:f5:82:ed:c9:cf:ba:d1:2b:67:b8:6a:aa:3a:b3:
e1:36:91:98:1e:f5:cb:dc:90:80:62:ee:d9:1a:87:
46:ba:82:4b:6e:ef:b8:cb:8f:66:49:03:d9:19:82:
1b:7f:d9:cf:d7:92:bc:75:32:2a:58:9e:6e:a3:c1:
50:3e:b7:f0:3d:c0:8c:4c:ef:31:9e:a5:11:97:23:
3c:c8:01:d9:ac:fd:78:79:02:bc:42:c8:03:28:3b:
46:34:e5:5f:c1:a1:dd:8c:28:f8:43:e0:6e:93:53:
38:76:ea:6f:b9:c7:3e:b9:bc:28:0e:d2:6e:2a:0e:
22:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:F2:0D:12:84:43:5E:0B:BA:72:40:85:FB:D1:9A:38:33:6D:88:34
X509v3 Authority Key Identifier:
keyid:CA:61:47:8E:4D:65:9B:EC:E8:20:3C:5E:8B:A8:E8:F8:2F:04:70:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymFHjk1lm-zoIDxei6jo-C8EcNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/279b66-38f1-41a5-90e2-946da5f5efbb/1/ymFHjk1lm-zoIDxei6jo-C8EcNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:c1:fe:60:55:92:35:47:a3:60:9d:5b:bd:7e:45:0e:22:74:
cc:e1:73:a6:83:cf:49:7f:19:d5:6c:a9:1a:0c:dc:2e:8a:2e:
68:09:d4:67:d6:8f:9f:59:e0:0d:a2:c6:65:aa:ec:8d:9a:73:
e3:80:74:0c:0f:ca:b6:af:d4:b9:04:4d:74:e1:a0:69:8c:e4:
ab:f7:86:91:eb:ed:fc:0e:66:aa:98:de:12:9e:5e:64:c8:a0:
b9:fc:2f:05:74:3c:13:58:ff:0e:88:4f:70:38:a1:10:2d:2a:
16:df:a3:07:cc:c4:90:5e:ea:92:41:bd:c1:c6:c1:98:15:e0:
8c:37:03:89:be:00:53:3d:85:2e:8b:d9:21:32:4c:20:1f:1f:
18:3b:2b:cc:8c:66:91:b3:e0:c4:de:c5:89:f4:e8:1d:02:a2:
ad:61:12:24:e5:f0:89:94:39:ef:85:3a:8c:f7:d3:5f:88:64:
5b:30:bd:59:2e:6e:e7:53:84:7e:4e:21:70:4c:b7:09:b9:17:
44:10:99:af:ec:12:7f:9e:b3:26:7b:77:f9:01:d1:8e:b7:e2:
95:23:1e:5a:ad:36:57:1a:2b:ec:a8:0f:82:93:9e:08:61:30:
70:0c:ba:4f:3d:ac:91:c9:ae:64:64:ba:70:98:cd:e4:d6:aa:
8c:2f:cd:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:18:04 2026 by rpki-client