Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
File: ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft (raw, json)
Hash identifier: e/KyYAJsh043q7OhIYgmqK3DLq3t8k8Z6rwC2Va4ygM=
Subject key identifier: 25:8D:6A:B1:A2:A9:E4:1B:89:59:DB:68:1F:5C:5A:5C:52:D4:8A:7D
Authority key identifier: CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
Certificate issuer: /CN=ca5154158905d1d44c4588dfd25802f324a93d61
Certificate serial: 019CF83C839C4258D17ACB2770EC6BF7EC4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
Manifest number: 06C6
Signing time: Mon 16 Mar 2026 20:00:41 +0000
Manifest this update: Mon 16 Mar 2026 20:00:41 +0000
Manifest next update: Tue 17 Mar 2026 20:00:41 +0000
Files and hashes: 1: 4okKBfXSNKomjqjfKSyXyfQW8mg.roa (hash: c/G+cvhNW3akdlAhAKvUtf/mU2MrPEwZm3MMXGbYwZo=)
2: jDQ8F_F11yNWOX6kbTNP0Ql0Wi8.asa (hash: a4/BoGxMxUQA6ejTQInWpx7OBve66J6mI7qjuV4Hb5Q=)
3: ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl (hash: jSAaNY035GlCUed5EaEz/6KDtN56jW/82piCU+imFMw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f8:3c:83:9c:42:58:d1:7a:cb:27:70:ec:6b:f7:ec:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca5154158905d1d44c4588dfd25802f324a93d61
Validity
Not Before: Mar 16 20:00:41 2026 GMT
Not After : Mar 17 20:00:41 2026 GMT
Subject: CN=258d6ab1a2a9e41b8959db681f5c5a5c52d48a7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:03:eb:d2:72:2d:0c:b0:6a:ed:ff:b5:0a:c6:
64:df:d3:96:42:c0:17:da:84:4b:82:59:e7:41:a0:
99:f2:67:04:1a:7c:1a:56:52:58:dc:2e:86:78:2e:
82:3e:26:59:2d:50:7d:52:16:39:a2:d3:a0:e5:8f:
a2:27:88:cf:38:85:e7:ec:f8:f0:7e:24:03:c3:08:
3b:fb:c2:3b:c9:9e:4c:5d:d3:3b:be:8e:e3:3d:1c:
5b:d0:e7:cd:e9:d9:c6:05:bf:62:53:8d:dd:38:b4:
4e:d5:96:6d:4b:c2:d2:c7:9c:93:db:a6:a1:d6:17:
5d:9c:cf:00:e5:da:6e:a7:7f:3d:37:b1:65:e1:e3:
c1:f0:1c:fd:a4:3a:12:6b:3b:fd:10:4a:29:85:22:
c9:a7:7e:d5:3f:47:32:1e:88:b7:0c:90:d4:d0:3c:
16:44:74:6c:c2:25:2a:21:43:a1:92:2c:4e:b9:89:
bf:d9:0d:54:2c:54:e9:c9:d2:2f:3d:66:3f:39:cb:
57:f7:94:35:f7:c9:ac:d2:36:25:77:ea:cc:a7:18:
6a:8c:8e:cd:2b:6e:24:c1:73:a1:20:f0:92:d3:a2:
c7:25:8c:08:e3:4c:5d:14:07:5d:50:46:dd:8c:34:
7e:20:c3:da:8f:c4:22:5a:24:6a:2e:e0:7c:5f:6c:
80:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:8D:6A:B1:A2:A9:E4:1B:89:59:DB:68:1F:5C:5A:5C:52:D4:8A:7D
X509v3 Authority Key Identifier:
keyid:CA:51:54:15:89:05:D1:D4:4C:45:88:DF:D2:58:02:F3:24:A9:3D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylFUFYkF0dRMRYjf0lgC8ySpPWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f558aa-55ef-450f-8b97-10090d1e7d94/1/ylFUFYkF0dRMRYjf0lgC8ySpPWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:15:a5:86:32:f4:30:a3:ba:66:b6:82:eb:61:f7:cc:70:90:
b8:46:17:17:13:4b:15:ae:04:ec:f8:b7:37:d6:3c:a6:14:1c:
3c:92:92:fb:00:85:2f:61:34:44:33:1b:b4:13:c5:1e:19:82:
0b:a1:be:b7:56:cb:ce:3c:c1:3e:ac:bd:15:71:4b:d7:71:64:
c7:aa:e2:58:65:24:1d:6a:fd:60:d5:26:64:8c:95:ab:79:9a:
9c:f3:23:e3:37:0f:64:2f:fd:1e:93:f5:46:17:e6:74:ad:c1:
a6:73:b7:d8:b3:c3:d3:36:45:f1:00:ed:47:67:84:b9:6b:b4:
28:4e:89:09:69:e7:10:fe:17:31:c6:4f:50:40:f2:bb:c6:ac:
78:7c:6f:4a:4b:ee:af:78:58:3a:0a:38:9f:55:49:1e:2c:0b:
9d:bc:57:01:b8:ed:b6:6c:e1:c4:fd:72:62:02:23:82:b8:b1:
a0:a0:22:d9:e5:ea:58:24:07:b1:11:f0:f3:99:ec:eb:eb:f9:
17:ef:ea:38:05:16:26:5b:ea:9a:a0:6b:29:15:0c:d5:b3:94:
b4:63:63:d0:7e:68:aa:af:b2:1b:1a:13:89:6d:95:28:71:19:
5f:2d:63:6c:f1:c6:e3:e8:1e:0c:32:b6:62:ba:4a:6f:2a:a6:
39:42:64:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 17 05:56:32 2026 by rpki-client