Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
File: ylF4miMTWsImjCKihWAKX5sFN3A.mft (raw, json)
Hash identifier: TomL0+IWngcQztjaPITe9VIM+OTyTt78RYqs4f+kvDg=
Subject key identifier: 59:32:F2:7F:71:0C:C1:A7:34:AA:98:26:BC:1B:6C:5B:F3:54:B7:48
Authority key identifier: CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
Certificate issuer: /CN=ca51789a23135ac2268c22a285600a5f9b053770
Certificate serial: 019E9BBC943884D298A065E7369C00D0D68A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
Manifest number: 14AF
Signing time: Sat 06 Jun 2026 07:01:27 +0000
Manifest this update: Sat 06 Jun 2026 07:01:27 +0000
Manifest next update: Sun 07 Jun 2026 07:01:27 +0000
Files and hashes: 1: sr2F0zsExdSQr-zgnrk17i9FhUg.roa (hash: hKUfnAYzGISD3itupUfCkChJsvs636FejLl9Oqr8aQA=)
2: ylF4miMTWsImjCKihWAKX5sFN3A.crl (hash: i2PwSobBM/YT3qdWNHsqaHnMWBQH1vF09eczpiQ3xDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9b:bc:94:38:84:d2:98:a0:65:e7:36:9c:00:d0:d6:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca51789a23135ac2268c22a285600a5f9b053770
Validity
Not Before: Jun 6 07:01:27 2026 GMT
Not After : Jun 7 07:01:27 2026 GMT
Subject: CN=5932f27f710cc1a734aa9826bc1b6c5bf354b748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5e:23:48:44:b3:61:80:0f:9c:f2:80:05:3a:
81:ab:12:49:8e:bb:9a:35:f4:81:9d:3c:a3:a0:83:
b0:90:16:08:40:40:e8:39:0d:db:3a:a5:a3:70:7d:
90:30:23:b9:70:8e:49:56:d9:c2:6b:f1:f8:3e:b1:
98:c6:61:6a:1b:2d:b5:e8:30:a5:67:98:32:38:78:
a1:e0:20:da:eb:80:be:2f:fc:8a:18:d1:fe:38:bb:
73:1b:fc:8b:b0:a1:f2:3b:5f:f3:e9:74:cc:4b:f2:
fa:24:70:47:5f:80:c4:80:00:21:e2:37:47:ca:5c:
53:66:82:9b:df:72:1e:c7:da:1c:0b:3c:db:3b:a8:
0a:b2:57:fb:a1:43:32:dc:53:30:5a:fb:c0:9a:e9:
24:ca:73:55:5e:8c:34:2b:45:ab:25:a5:5c:95:fb:
49:05:c8:a2:aa:23:32:1e:18:9f:3b:62:b9:98:9c:
c5:73:88:d6:1e:c4:73:ca:c0:c6:0a:44:5e:1e:96:
2d:d9:f5:5a:5b:08:01:5f:fc:d9:d7:8a:cd:ef:81:
4b:b7:1c:1e:53:22:3f:a9:cc:5b:6c:b9:39:23:07:
84:1b:3e:0c:d7:f2:82:3b:a9:3e:e6:49:6e:24:80:
85:f7:90:a6:10:8a:a0:2e:b1:aa:82:cc:57:42:9e:
15:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:32:F2:7F:71:0C:C1:A7:34:AA:98:26:BC:1B:6C:5B:F3:54:B7:48
X509v3 Authority Key Identifier:
keyid:CA:51:78:9A:23:13:5A:C2:26:8C:22:A2:85:60:0A:5F:9B:05:37:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylF4miMTWsImjCKihWAKX5sFN3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b4bf60-d593-40d2-9783-1e19168f5d73/1/ylF4miMTWsImjCKihWAKX5sFN3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:43:c9:25:f7:b3:db:0e:ed:93:72:ac:84:ae:ac:45:0f:14:
11:be:31:4d:33:a9:87:09:f5:13:a5:4e:52:64:fc:3a:08:da:
4d:e0:ed:8a:32:9a:e7:80:49:98:a6:24:d7:31:40:c1:8a:d8:
f9:bf:47:6b:26:5d:c4:25:c3:6f:a9:9d:b1:15:c0:fc:42:bc:
ae:7c:a2:b5:5e:2a:c7:a5:9a:3d:08:ed:3a:00:76:a4:89:a6:
93:c6:f0:2e:c0:28:24:69:18:9f:f4:c9:04:5f:1e:f4:64:1d:
63:cb:09:87:1d:6d:06:8d:f7:bd:ca:e6:d9:80:d1:78:b9:ec:
9a:6c:95:6f:0f:7e:76:a5:20:dd:0e:7d:3e:08:27:b4:da:c9:
69:0c:bf:54:69:7a:2b:96:80:34:e4:04:31:4a:51:14:33:39:
bc:ee:fd:2f:bf:31:1d:8f:9b:c3:46:e7:00:c2:e2:30:bd:14:
fe:64:d7:80:7c:89:24:ec:7a:f8:4d:d8:73:cb:4f:5e:5b:30:
cd:0d:96:e4:92:e5:c8:c9:df:53:40:dc:fb:2e:58:15:03:c8:
2e:14:46:14:66:cc:7c:74:59:de:9e:c1:65:c3:36:bd:ff:e0:
6d:2a:22:53:f7:64:e5:c2:64:19:8a:73:ea:08:e6:6f:87:7b:
5c:7e:c8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 12:08:22 2026 by rpki-client