Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: tOcHUqG9NclZ8sMQ68LMlEzxPTasQZVeABzZ5HDWoug=
Subject key identifier: C5:B6:BC:56:DF:62:28:5A:83:F0:D1:A9:9F:B9:E1:11:2B:4D:F0:CE
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019DB20F22710720538FF68F013BAFF20C8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 1436
Signing time: Tue 21 Apr 2026 22:00:29 +0000
Manifest this update: Tue 21 Apr 2026 22:00:29 +0000
Manifest next update: Wed 22 Apr 2026 22:00:29 +0000
Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: HbvbwBpfB5kPCSX4HJel8oh6Nz5xZTCUHs7soX2ievU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 22 Apr 2026 21:56:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:0f:22:71:07:20:53:8f:f6:8f:01:3b:af:f2:0c:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Apr 21 22:00:29 2026 GMT
Not After : Apr 22 22:00:29 2026 GMT
Subject: CN=c5b6bc56df62285a83f0d1a99fb9e1112b4df0ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:af:d1:c9:ba:b7:6d:ff:8f:2d:92:83:d1:91:
30:43:de:6c:d7:1c:10:2d:ff:99:a2:4a:09:e2:b5:
be:8d:70:72:9b:20:e1:e8:0f:b7:59:67:40:a7:e5:
80:65:38:ff:39:fa:68:6d:9b:07:af:80:42:17:57:
27:23:55:54:51:07:8f:31:cd:9d:0d:df:a1:1d:9a:
53:93:25:e5:04:a5:ed:27:cb:e5:b3:e2:41:dd:2c:
7b:2b:75:bf:22:f3:fa:11:42:fb:1f:5a:9c:56:d6:
a5:b4:c5:e5:16:9d:4d:e7:f8:39:db:6d:34:9b:5f:
02:e7:a4:d9:52:89:a2:ec:4e:aa:bf:f6:1b:e9:93:
02:8f:30:03:b8:d4:46:f7:3e:6e:e1:39:e0:da:65:
75:09:43:19:fb:b0:97:3e:a3:b8:21:ef:25:ef:6e:
28:67:a8:7b:b0:32:9c:fc:2d:17:01:29:8c:74:f3:
fb:70:f4:78:53:5a:50:a8:ad:63:8e:9e:19:97:41:
d2:7b:f6:e1:b3:00:59:c4:35:05:78:4c:55:64:1a:
98:ee:e5:98:c5:21:59:1f:7f:35:a9:08:04:58:8d:
3f:71:35:cf:4e:06:63:7c:e8:50:78:e3:1d:98:59:
09:ef:24:fc:6c:39:b9:e6:72:a1:62:c0:4b:8b:ed:
13:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B6:BC:56:DF:62:28:5A:83:F0:D1:A9:9F:B9:E1:11:2B:4D:F0:CE
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:a7:c7:e2:9e:1b:3b:40:5c:e6:65:1b:99:c0:7d:a6:c8:71:
8e:fd:78:51:e3:0f:29:2a:d1:e2:7f:81:fa:6f:1a:e7:2e:29:
69:12:7c:f0:0a:4b:cb:43:ef:a1:95:80:8d:bb:1a:0a:dd:e4:
a1:94:0c:61:5f:09:87:2c:0a:70:98:a7:96:20:e2:e0:d0:05:
de:34:a5:23:8a:b2:88:9b:f3:aa:59:0d:ae:23:96:41:09:3e:
e1:bc:77:58:d8:4f:45:20:bd:97:f9:10:17:89:2b:82:1e:2d:
0b:34:3f:47:d1:9c:ab:21:19:88:26:25:d0:b8:74:86:c0:aa:
3b:36:57:12:70:0a:a8:43:6d:d1:b9:ef:8e:17:6d:24:0e:65:
0c:80:85:03:e0:55:f7:87:d1:1f:e2:ff:29:61:49:9d:ab:60:
23:f3:6a:07:ca:53:fc:f9:f7:aa:e8:e9:39:65:b6:75:c9:40:
ba:41:c7:7b:29:a6:29:cf:d0:6a:70:9c:70:8b:85:c8:c6:ac:
c3:c1:61:f4:fb:9c:70:04:f8:a4:40:70:bf:1a:fb:1a:2c:fc:
48:0c:de:34:b7:07:40:27:4d:45:aa:a2:6d:2f:48:8d:af:90:
d3:3e:0c:ee:e1:b4:64:31:42:06:35:3e:4b:52:9e:50:9c:59:
68:d2:08:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 02:56:14 2026 by rpki-client