Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: L/G1Ckv54+4WMaJw1Nd9Vdn+MtKWAd7Esbhdnc4JCIA=
Subject key identifier: 6E:25:46:1A:47:11:C5:22:08:26:87:A1:9E:FB:00:14:50:CE:2C:1B
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 019CAAFD5B5DA6658DBCC0ED3B5109540307
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 045E
Signing time: Sun 01 Mar 2026 20:00:56 +0000
Manifest this update: Sun 01 Mar 2026 20:00:56 +0000
Manifest next update: Mon 02 Mar 2026 20:00:56 +0000
Files and hashes: 1: hLDJZ-V17lQ1uYy4Yb_7EyNt5EY.roa (hash: 0stvy4uT+ZzDa9Ceq2lwui9WwwpxCgyyC5wsX5cUjjE=)
2: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: euP3wTH8bc3EwnvyDsufCzPfycLBujtHukwQNneR8mE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:5b:5d:a6:65:8d:bc:c0:ed:3b:51:09:54:03:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: Mar 1 20:00:56 2026 GMT
Not After : Mar 2 20:00:56 2026 GMT
Subject: CN=6e25461a4711c522082687a19efb001450ce2c1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:92:2d:d5:e8:86:34:fd:ec:26:3b:66:9b:33:
be:6d:7d:9f:92:9b:28:ea:e8:e0:3e:86:97:f9:f5:
fe:51:2a:d1:e8:6a:18:fe:ff:7f:6e:de:4d:d6:50:
28:81:f1:45:c1:ae:e0:e5:83:56:9f:75:9b:ee:2b:
a1:f5:b9:6d:4f:b1:ae:59:da:37:46:e4:2b:83:b5:
8b:ed:8c:23:8b:c1:1f:3a:a6:8d:47:55:60:ec:12:
b9:b7:62:d4:c3:b5:7b:8f:f7:90:ae:b9:85:ff:57:
56:b5:04:f0:cd:b6:11:5a:c6:2b:2c:1a:b8:e8:9f:
4c:ad:5e:e3:26:45:59:f8:28:9c:db:e7:b0:2f:11:
87:4d:e5:37:eb:9b:f7:71:a3:81:45:db:99:38:0d:
30:7e:a1:6b:14:8d:62:86:d9:37:de:0e:ed:cf:36:
41:e8:12:a2:54:a2:a6:9d:f8:75:b2:94:45:16:7d:
31:97:bf:e2:80:53:d9:b4:ec:0f:16:81:c8:30:65:
60:a3:bd:68:da:57:15:02:6e:6b:38:17:97:7e:70:
10:61:0d:a8:81:f3:a7:31:b8:b0:6d:44:32:ab:f7:
61:0f:d4:c4:26:71:94:8b:ed:8e:4b:03:d0:3e:05:
35:53:ab:fd:c0:75:7b:fb:8d:53:07:57:b8:1b:5f:
78:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:25:46:1A:47:11:C5:22:08:26:87:A1:9E:FB:00:14:50:CE:2C:1B
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:b7:cf:c1:82:a2:6a:47:b3:bd:c4:2b:c8:2f:24:26:c9:ce:
35:c5:96:7e:1b:15:d8:fd:aa:3b:9a:b3:a1:c2:a6:94:18:51:
03:ec:44:a6:b9:db:b1:2f:79:c7:66:b5:9f:e6:0d:a2:ad:dc:
1f:3d:f3:1f:7d:36:f2:37:f0:e7:26:03:25:d0:a2:a8:aa:b9:
fe:8b:44:92:28:e2:56:f8:72:c0:a4:83:16:bf:47:cc:c1:f2:
ee:91:04:bb:9f:e3:9a:65:ee:21:94:d3:73:ed:7e:18:d7:2b:
0b:ea:16:0b:60:1b:5f:35:71:c8:19:c5:e2:19:8a:f8:12:18:
b8:06:aa:1f:da:67:5e:7e:3d:21:69:0c:9b:1e:0a:67:a9:28:
6a:2f:f4:46:be:e8:ae:7b:15:77:57:8c:2b:82:68:47:9b:69:
e3:d7:81:cc:df:de:ab:08:4f:0d:d9:29:80:48:a1:c0:52:6f:
62:46:bb:7c:5b:23:e9:19:64:f1:25:e9:66:6b:b6:58:ca:45:
e6:06:a3:9b:a6:53:ad:ea:47:dc:4d:a8:e7:3d:7d:da:25:85:
4a:6f:e6:ff:65:29:d9:b8:90:0e:7a:8e:2f:4d:05:e8:5d:b1:
fc:87:79:7f:29:fd:9c:1a:97:9f:09:bb:b0:22:80:34:06:0d:
d9:42:9f:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyq/VtdpmWNvMDtO1EJVAMHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhNTk5YmRjMWNmYzdhZThjYzJmYmExNWZjZDgwY2ExMTcz
Nzg0NjcwHhcNMjYwMzAxMjAwMDU2WhcNMjYwMzAyMjAwMDU2WjAzMTEwLwYDVQQD
Eyg2ZTI1NDYxYTQ3MTFjNTIyMDgyNjg3YTE5ZWZiMDAxNDUwY2UyYzFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3JIt1eiGNP3sJjtmmzO+bX2fkpso
6ujgPoaX+fX+USrR6GoY/v9/bt5N1lAogfFFwa7g5YNWn3Wb7iuh9bltT7GuWdo3
RuQrg7WL7Ywji8EfOqaNR1Vg7BK5t2LUw7V7j/eQrrmF/1dWtQTwzbYRWsYrLBq4
6J9MrV7jJkVZ+Cic2+ewLxGHTeU365v3caOBRduZOA0wfqFrFI1ihtk33g7tzzZB
6BKiVKKmnfh1spRFFn0xl7/igFPZtOwPFoHIMGVgo71o2lcVAm5rOBeXfnAQYQ2o
gfOnMbiwbUQyq/dhD9TEJnGUi+2OSwPQPgU1U6v9wHV7+41TB1e4G194NwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG4lRhpHEcUiCCaHoZ77ABRQziwbMB8GA1UdIwQY
MBaAFMpZm9wc/HrozC+6FfzYDKEXN4RnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8xY2VjYjgtOTdkOS00NzNmLWIwMDQt
Y2M5MTI3NDZlNDdlLzEveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMi8xY2VjYjgtOTdkOS00NzNmLWIwMDQtY2M5MTI3NDZlNDdl
LzEveWxtYjNCejhldWpNTDdvVl9OZ01vUmMzaEdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAarfPwYKi
akezvcQryC8kJsnONcWWfhsV2P2qO5qzocKmlBhRA+xEprnbsS95x2a1n+YNoq3c
Hz3zH3028jfw5yYDJdCiqKq5/otEkijiVvhywKSDFr9HzMHy7pEEu5/jmmXuIZTT
c+1+GNcrC+oWC2AbXzVxyBnF4hmK+BIYuAaqH9pnXn49IWkMmx4KZ6koai/0Rr7o
rnsVd1eMK4JoR5tp49eBzN/eqwhPDdkpgEihwFJvYka7fFsj6Rlk8SXpZmu2WMpF
5gajm6ZTrepH3E2o5z192iWFSm/m/2Up2biQDnqOL00F6F2x/Id5fyn9nBqXnwm7
sCKANAYN2UKfZw==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:55 2026 by rpki-client