Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
File: ymTavZvEZIX2qRY27edT2jjI82Q.mft (raw, json)
Hash identifier: L3gYMY2T0oAkYBh9hxiKgbd7FfE1aGrVJv8/ws+OvsY=
Subject key identifier: B5:EA:62:68:7C:F5:AF:5E:8D:AA:7C:8B:48:6A:41:27:1D:FF:D0:AA
Authority key identifier: CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
Certificate issuer: /CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Certificate serial: 019D3940EFE109C1C1F9BAB3FB5A434A7020
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 11:00:50 +0000
Manifest this update: Sun 29 Mar 2026 11:00:50 +0000
Manifest next update: Mon 30 Mar 2026 11:00:50 +0000
Files and hashes: 1: NkhNpoa7Mava_QXc8cJpKFD-6x0.roa (hash: NHb2sZxdiKyxH3v4fGC8EWYo7uPMfDDnkonpIAR9yAY=)
2: ymTavZvEZIX2qRY27edT2jjI82Q.crl (hash: hThBhbij7ndBtIwo7iLSMT3hqwjQ04tAUnBIlec7nKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:ef:e1:09:c1:c1:f9:ba:b3:fb:5a:43:4a:70:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca64dabd9bc46485f6a91636ede753da38c8f364
Validity
Not Before: Mar 29 11:00:50 2026 GMT
Not After : Mar 30 11:00:50 2026 GMT
Subject: CN=b5ea62687cf5af5e8daa7c8b486a41271dffd0aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6f:54:f6:e5:42:ee:85:95:2a:c4:da:05:65:
d1:3e:64:ab:fa:a0:f7:56:63:05:cc:55:96:54:8e:
90:4e:3e:fb:7e:b7:c9:f4:e0:49:f4:ab:07:75:20:
a2:d4:d1:00:0f:d4:9f:e2:d8:ba:3b:28:a6:a7:5a:
12:04:85:85:4f:1f:67:1b:6f:90:73:49:fc:dc:6b:
19:02:44:33:4d:ed:c0:d0:45:e7:92:ed:b6:5a:01:
9b:ec:d1:17:f3:49:f5:17:7b:7b:b8:99:09:32:5d:
a0:56:49:6f:2e:e3:a9:4b:7a:11:a0:f2:f4:5f:b8:
b0:47:08:09:24:5d:bd:e8:a1:22:8f:39:c6:95:8f:
fe:20:3b:46:44:a9:cc:5f:cc:f0:b4:50:9d:4a:57:
3a:4e:9d:cb:98:c4:40:c6:66:c9:2b:e0:b5:c1:27:
a3:85:8c:94:70:3f:f5:d6:e3:83:5e:67:a2:e3:f9:
1c:5c:47:39:51:57:49:fd:a6:53:5f:c6:3c:25:a4:
39:e3:e1:17:65:a6:96:00:d5:85:ed:63:51:8f:7e:
d5:52:4b:89:ab:29:04:f0:50:bb:5e:4e:3c:ad:87:
00:4a:9f:8f:e2:f1:37:55:d8:b6:78:a2:90:3a:bf:
e2:88:69:d1:0f:f4:ba:ad:6f:21:72:f6:11:43:16:
4c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EA:62:68:7C:F5:AF:5E:8D:AA:7C:8B:48:6A:41:27:1D:FF:D0:AA
X509v3 Authority Key Identifier:
keyid:CA:64:DA:BD:9B:C4:64:85:F6:A9:16:36:ED:E7:53:DA:38:C8:F3:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ymTavZvEZIX2qRY27edT2jjI82Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/241882-a437-4ab3-b38e-5028c259b267/1/ymTavZvEZIX2qRY27edT2jjI82Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:9f:7a:d8:e6:50:2c:ef:97:3b:12:f7:45:22:f7:0a:9f:c3:
3b:55:68:c3:42:d1:d5:c1:29:3a:c9:5b:73:4b:97:80:0e:4f:
f7:d9:03:3c:f4:2c:26:62:5f:e7:4d:4f:b1:3d:5d:c9:1d:b1:
e8:53:97:05:f2:29:cc:09:c6:6a:f6:ce:3d:ac:92:54:0c:60:
2f:a3:03:01:5d:5b:16:d3:21:36:30:0b:f7:6c:7f:76:72:8a:
54:70:f4:0a:76:d1:19:4f:5e:08:b6:eb:3a:07:4c:5f:40:3c:
a3:79:9f:bd:d6:13:1d:12:06:1e:43:0a:5d:65:7a:40:06:4f:
da:28:87:88:c0:6c:ea:13:56:e0:82:2c:98:dc:0b:14:8c:b3:
18:48:b4:54:fd:77:82:f5:76:b6:2e:89:4c:55:64:ce:58:f2:
47:fa:cf:d7:83:82:64:46:7f:5d:1a:a9:00:e8:7f:01:92:61:
bd:74:de:2a:75:a0:9f:b4:9a:34:87:0f:e5:13:72:10:b8:6c:
e8:f3:71:be:f8:2e:99:89:29:cf:c7:c6:a6:7a:d7:ee:14:09:
47:97:9f:81:16:a8:da:22:b2:2a:a1:36:89:15:c6:62:46:1c:
8a:ae:3b:97:dc:d4:b2:cc:9e:9f:f7:09:20:b6:ce:ab:f8:3f:
0c:2f:0a:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:38 2026 by rpki-client