Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: JKmVA3WXA3x2a4rcWeFxS5GQAL9629Md5hF44G+TErA=
Subject key identifier: FF:2A:A1:17:D4:D8:43:59:A0:F9:64:1F:C4:A4:31:23:B6:AE:C4:04
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 019EFBDDBC1D0341C3BB767DD3DAE1245325
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 07D1
Signing time: Wed 24 Jun 2026 23:01:13 +0000
Manifest this update: Wed 24 Jun 2026 23:01:13 +0000
Manifest next update: Thu 25 Jun 2026 23:01:13 +0000
Files and hashes: 1: 4okKBfXSNKomjqjfKSyXyfQW8mg.roa (hash: c/G+cvhNW3akdlAhAKvUtf/mU2MrPEwZm3MMXGbYwZo=)
2: jDQ8F_F11yNWOX6kbTNP0Ql0Wi8.asa (hash: a4/BoGxMxUQA6ejTQInWpx7OBve66J6mI7qjuV4Hb5Q=)
3: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: EncrMUA6JEnzYUFUPFqHX3mkOEjvpvC0l+DhXMmNEDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fb:dd:bc:1d:03:41:c3:bb:76:7d:d3:da:e1:24:53:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: Jun 24 23:01:13 2026 GMT
Not After : Jun 25 23:01:13 2026 GMT
Subject: CN=ff2aa117d4d84359a0f9641fc4a43123b6aec404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:76:dc:c7:57:96:16:e2:ce:26:24:22:64:7d:
2c:b9:c4:1f:1b:a2:5c:a8:1f:0d:cd:5d:70:e3:e2:
93:3c:0f:98:f8:73:f0:87:59:36:0b:0e:54:9f:0b:
18:c7:ea:26:5d:9c:92:c2:7e:04:6c:58:67:8d:f5:
4c:a5:a6:70:80:70:f6:cb:e9:b9:18:d6:45:11:87:
96:2b:15:77:52:35:28:48:d3:5a:2c:7f:ac:29:af:
69:8f:33:e4:57:85:f1:de:ef:9c:18:c2:f7:74:0b:
80:c5:26:e0:54:9b:8a:08:4b:35:5c:c0:3b:ea:99:
0e:c8:7a:bb:8e:0a:af:7e:9c:42:36:ff:5a:cc:0a:
b1:28:d7:bb:cd:9d:cd:a9:19:b8:b4:66:98:5d:d0:
f6:12:40:91:56:95:03:6c:c4:4e:27:55:50:ac:a8:
33:5c:1c:0b:9f:19:ba:24:c2:1f:4e:80:9c:ea:18:
18:01:96:b6:08:f8:52:83:5d:bb:cc:c0:5f:3a:f7:
8c:92:c5:22:6e:ee:51:e2:b6:af:87:38:75:f5:3f:
09:96:77:99:03:3c:87:ed:23:78:10:17:69:7a:6b:
f5:51:cd:55:e6:c2:17:fd:e5:0d:d9:1d:8b:a1:86:
43:4d:ca:82:ec:62:3a:2e:df:22:62:c8:40:d4:4b:
60:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:2A:A1:17:D4:D8:43:59:A0:F9:64:1F:C4:A4:31:23:B6:AE:C4:04
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:16:23:12:47:0a:1c:33:6b:9b:80:bc:e7:a8:92:2c:5e:c3:
aa:57:d1:91:8b:7d:c1:38:66:79:05:53:b4:27:95:5b:9c:ed:
6d:56:dc:ac:16:d8:be:13:c2:84:c6:37:dd:e8:43:1b:bf:cb:
f3:1e:97:5e:3b:7e:94:08:7e:d7:a5:f0:33:ef:89:e8:38:75:
58:f4:0d:b1:b5:ff:d8:d0:15:fa:ed:10:db:c8:46:0a:ed:dc:
c7:de:90:d2:f9:7a:52:a2:20:27:f9:bf:a7:db:bf:e1:3d:89:
3d:2b:65:dc:d5:66:2e:46:aa:37:d1:00:23:b8:4b:49:6c:20:
64:99:81:ce:89:b6:23:9a:3a:2d:2f:ba:6d:09:a6:80:99:67:
8d:35:c4:5e:36:1c:1d:19:c7:54:d4:23:68:d1:ce:5a:8b:60:
9f:e0:62:9b:50:f5:78:46:93:7a:b8:f8:60:fc:25:67:72:65:
64:da:f3:ab:19:58:41:f1:9d:46:62:95:9c:f0:dd:42:02:03:
b9:ca:e7:9d:db:77:bb:63:ab:27:53:83:1d:c3:31:bd:c2:26:
e6:85:02:8a:5a:ec:73:4f:ed:b5:c0:c9:57:68:ad:86:73:41:
2a:e5:f5:f6:b2:19:7f:e2:b2:f5:03:01:f9:39:85:65:c9:e3:
f4:3c:8b:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 08:29:35 2026 by rpki-client