Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
File: ym3NrZkpBFbG18GOscBY2UEIiAE.mft (raw, json)
Hash identifier: oSJHx+0/FUBDUILsGZ11MkD5Cn2hrlmrkVQ8mSBQLRE=
Subject key identifier: A3:62:3C:DE:D5:A9:37:DC:1E:B5:FE:EA:FA:31:1C:60:D1:D9:1C:95
Authority key identifier: CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
Certificate issuer: /CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Certificate serial: 019D37F7371BA3A42E28707C12E13C978A15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
Manifest number: 1832
Signing time: Sun 29 Mar 2026 05:00:41 +0000
Manifest this update: Sun 29 Mar 2026 05:00:41 +0000
Manifest next update: Mon 30 Mar 2026 05:00:41 +0000
Files and hashes: 1: BqLAw4i8RwTxiSET0W9t_-557cY.roa (hash: 3vmf1uaZgtPEqrsbNZ2vEk3NVigksfRtXsG72qUjM2Q=)
2: ym3NrZkpBFbG18GOscBY2UEIiAE.crl (hash: wUyWCcjyshylsZxWrxE/IVnqofh/q29uuriWStVn624=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:37:1b:a3:a4:2e:28:70:7c:12:e1:3c:97:8a:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca6dcdad99290456c6d7c18eb1c058d941088801
Validity
Not Before: Mar 29 05:00:41 2026 GMT
Not After : Mar 30 05:00:41 2026 GMT
Subject: CN=a3623cded5a937dc1eb5feeafa311c60d1d91c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:4d:30:f5:51:87:b6:36:27:b8:b0:25:c9:8c:
25:51:11:f5:83:0c:88:a3:7f:2e:f5:18:fd:70:a0:
5b:33:24:46:34:3b:ce:98:99:39:83:11:93:c6:c2:
26:00:fe:f7:ed:55:35:f1:46:98:2a:fe:73:c3:da:
f5:6e:60:09:c4:c0:23:ba:f5:d2:e6:09:17:25:f0:
ff:02:90:61:0f:e3:fa:d7:15:58:87:90:14:a2:06:
0e:e8:5b:e4:ab:31:78:9b:14:33:8d:fb:19:66:db:
d4:c8:6c:19:83:3f:ef:41:81:4c:6d:dd:a2:47:40:
15:7d:b9:1e:3d:71:00:5f:18:c8:e2:87:4a:eb:96:
c5:06:d2:bc:f6:41:1c:15:9d:2b:4d:31:ee:2e:41:
87:e3:53:20:f5:b6:10:b8:ea:05:3a:8e:58:6f:1d:
47:a9:3b:b3:2d:f7:1a:f0:1a:3f:f5:17:fc:0d:83:
cc:49:58:4c:e4:68:29:8e:ef:5c:e1:2a:31:13:83:
97:5e:fa:66:89:7f:00:ea:41:db:be:59:96:a4:5d:
00:6b:9c:41:66:07:e8:cf:9e:f6:91:f6:e0:39:f4:
d3:c1:06:6a:54:62:3a:1e:0c:2c:49:77:9d:85:fd:
d0:b4:01:02:66:60:db:43:b1:78:f9:73:5c:7a:9f:
49:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:62:3C:DE:D5:A9:37:DC:1E:B5:FE:EA:FA:31:1C:60:D1:D9:1C:95
X509v3 Authority Key Identifier:
keyid:CA:6D:CD:AD:99:29:04:56:C6:D7:C1:8E:B1:C0:58:D9:41:08:88:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ym3NrZkpBFbG18GOscBY2UEIiAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/76759e-3964-4c4f-876b-bc475d008869/1/ym3NrZkpBFbG18GOscBY2UEIiAE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:6f:17:a0:93:1b:45:6a:40:84:18:17:56:46:9c:e7:5d:e2:
b9:e6:00:20:68:22:ef:dd:45:58:d2:b3:9f:56:ec:8e:0c:4c:
4f:00:2f:a3:95:e0:9d:56:31:94:3d:cf:4c:30:58:47:c0:28:
21:45:44:96:9f:a8:84:af:2b:d6:69:3b:3c:35:45:b3:f1:2b:
c6:53:05:2d:eb:00:fc:14:7b:8b:00:fb:03:f3:9e:fa:b9:d4:
0a:fa:50:80:bc:3b:9f:b8:57:fd:74:2d:34:00:a0:47:bb:eb:
57:3a:54:82:2d:8d:0b:7c:bd:8b:2d:a8:0d:d1:86:4a:ad:f4:
5b:c7:48:9e:db:ba:bc:91:20:4d:92:9e:0b:a8:04:0b:b4:30:
cb:50:11:e6:5c:84:17:9c:b9:2a:64:64:cd:21:84:8f:3d:7d:
f8:03:f1:79:af:8c:5d:9c:9f:dd:07:e7:d1:91:54:3a:38:a5:
fd:9b:37:7e:aa:12:09:4a:2a:2a:4d:34:bc:79:bb:a0:e1:55:
85:8b:89:85:65:f9:c5:61:9e:b4:c0:24:34:52:72:12:2c:45:
74:d5:ac:00:92:6d:eb:bf:10:17:77:3e:2c:d0:c2:24:9e:99:
eb:5c:f6:ff:b6:6f:13:22:df:60:b5:fa:8a:6d:d7:70:87:9f:
81:a6:e3:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:37:54 2026 by rpki-client