Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: rbRyR3AI0fyX41g+BXaTyk/FV8HcODPS9c6Wacpd0Gc=
Subject key identifier: 5F:16:B1:30:78:90:3C:95:9E:96:9C:10:1F:2F:FC:41:41:98:FB:BD
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 019D9A7484C9ADB11264689DA40622318E57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 04DA
Signing time: Fri 17 Apr 2026 08:00:20 +0000
Manifest this update: Fri 17 Apr 2026 08:00:20 +0000
Manifest next update: Sat 18 Apr 2026 08:00:20 +0000
Files and hashes: 1: hLDJZ-V17lQ1uYy4Yb_7EyNt5EY.roa (hash: 0stvy4uT+ZzDa9Ceq2lwui9WwwpxCgyyC5wsX5cUjjE=)
2: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: 5bKT9A9cjHZPu/sRyWw63qVtXod+vV01uS9nJE1zmnE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:84:c9:ad:b1:12:64:68:9d:a4:06:22:31:8e:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: Apr 17 08:00:20 2026 GMT
Not After : Apr 18 08:00:20 2026 GMT
Subject: CN=5f16b13078903c959e969c101f2ffc414198fbbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:1d:0d:76:2d:42:33:ff:1e:82:58:6b:fb:72:
4b:3b:fd:c4:77:e7:2a:c9:b0:24:f1:95:68:8a:23:
9b:45:8d:b4:de:32:2a:03:ff:2d:8d:3d:24:ec:df:
69:c1:a4:c7:88:12:6a:77:d7:f9:1a:39:42:a4:ad:
2b:dd:bf:4f:05:46:c6:b6:02:96:2f:a3:d6:6a:05:
61:4a:80:64:7d:0a:f1:f3:56:52:a4:12:d2:96:b0:
7e:63:2c:4a:a6:66:f2:8d:58:1d:a4:de:68:4c:aa:
de:6f:20:df:81:b2:f1:1f:3a:1f:46:c4:d1:5d:08:
00:98:04:94:46:32:b8:09:87:26:7d:46:c5:85:6e:
ec:4a:f0:3b:68:5f:c8:9a:e6:80:98:59:04:b4:36:
78:c2:96:0d:27:49:ed:10:6f:da:43:13:10:91:d6:
bd:c6:e1:22:ea:45:10:f0:b1:c8:e2:73:9b:fb:92:
2e:1a:6b:ca:00:a3:c1:e4:e3:f7:27:b1:5e:9f:ff:
92:da:8e:a1:da:d8:ef:1b:cf:bf:56:8a:9c:45:6a:
47:e1:aa:11:0b:49:a8:36:57:a0:ca:80:1a:40:6e:
d8:49:3f:02:01:00:ae:9f:a3:97:89:ee:ef:b1:85:
1f:4c:f3:09:6e:6c:82:41:e5:cc:28:94:6e:18:0e:
ae:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:16:B1:30:78:90:3C:95:9E:96:9C:10:1F:2F:FC:41:41:98:FB:BD
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:6a:2a:54:e3:09:c8:5c:c4:94:f3:70:ea:29:98:c0:89:57:
38:38:55:48:8c:5f:b3:d3:2d:85:31:e1:7e:d1:96:24:74:fe:
ff:25:2a:72:a6:68:41:5a:96:0a:2d:5b:01:62:93:c9:07:fb:
70:c9:de:b3:3b:d0:48:91:ce:d7:6a:3e:2a:ab:2b:9c:89:9f:
f8:26:38:12:20:a9:23:dc:87:ae:1d:a8:7a:18:4c:e1:90:c2:
30:09:dc:54:e4:99:6f:00:27:79:73:0f:dc:cd:e9:ae:cc:62:
e5:b0:a2:66:9f:54:97:ed:bf:b0:a0:d2:43:33:08:42:54:d5:
ea:06:55:d3:6f:5b:9c:48:0c:13:3d:30:40:6a:23:d6:51:32:
11:2a:e4:77:bc:58:62:76:a2:0d:a1:da:9e:37:27:58:92:ae:
95:e5:32:21:a6:bc:13:77:60:1d:ea:67:9e:5c:24:52:48:af:
24:3f:4e:ae:4b:1b:1c:b9:35:61:32:89:c9:55:a6:cf:18:42:
f8:ba:d8:11:14:c5:82:33:6d:c3:54:10:f9:01:df:d5:ea:a9:
66:f3:3b:d4:f4:29:2d:31:40:81:c7:c9:51:90:de:7b:3c:16:
39:64:be:e3:42:c4:c7:ef:9a:38:42:61:f2:e1:16:1c:ca:12:
a3:e3:aa:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:45:10 2026 by rpki-client