Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
File: ylmb3Bz8eujML7oV_NgMoRc3hGc.mft (raw, json)
Hash identifier: F5nTRyhuis2CZ+hufUs9mRHGpShsBDlrmzqoQ8VvKOU=
Subject key identifier: 9E:82:2F:A6:03:93:F9:0D:6A:2E:AA:25:AF:6F:8A:31:67:91:58:79
Authority key identifier: CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
Certificate issuer: /CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Certificate serial: 019E295DFAC016E2FAF9086D53CAD42AF740
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
Manifest number: 0524
Signing time: Fri 15 May 2026 02:01:25 +0000
Manifest this update: Fri 15 May 2026 02:01:25 +0000
Manifest next update: Sat 16 May 2026 02:01:25 +0000
Files and hashes: 1: hLDJZ-V17lQ1uYy4Yb_7EyNt5EY.roa (hash: 0stvy4uT+ZzDa9Ceq2lwui9WwwpxCgyyC5wsX5cUjjE=)
2: ylmb3Bz8eujML7oV_NgMoRc3hGc.crl (hash: O318V1ZMFgI1mQuPvxVzcmCWzQNmYv+c+2wyfNZvUBA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:5d:fa:c0:16:e2:fa:f9:08:6d:53:ca:d4:2a:f7:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca599bdc1cfc7ae8cc2fba15fcd80ca117378467
Validity
Not Before: May 15 02:01:25 2026 GMT
Not After : May 16 02:01:25 2026 GMT
Subject: CN=9e822fa60393f90d6a2eaa25af6f8a3167915879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:39:a8:64:bd:10:8e:b2:1d:0d:ee:1d:fc:bb:
b1:c2:95:c8:6d:a5:a0:8e:85:ad:0a:de:61:02:31:
06:24:81:ba:72:24:14:1f:b6:6e:aa:f1:1f:ac:ba:
05:01:23:0f:79:3c:0f:9b:a4:2d:61:2b:59:8d:33:
8c:0d:26:60:13:c7:43:c9:6f:e2:19:32:ba:79:4e:
a3:8c:c6:e6:78:3f:ae:d3:e1:d5:ef:6d:22:7c:e6:
e3:e4:d1:27:aa:cc:d2:66:ed:ab:3c:c9:dc:d4:5d:
17:6f:f8:4f:77:d1:77:ea:98:6e:2e:30:59:5f:bd:
4c:0e:36:e5:f5:59:55:58:20:19:48:1a:78:d5:ed:
c6:f4:50:f1:d3:16:45:45:67:0a:86:71:89:4e:ff:
65:af:b5:32:68:f3:5a:29:f4:87:46:d4:32:34:e4:
09:bb:16:ad:e7:48:5a:3a:69:35:b7:f1:26:9e:c3:
f1:9f:56:51:c1:96:55:4c:cd:b0:b3:a8:96:21:c0:
cc:96:3b:85:62:4f:33:50:b0:79:14:d7:69:da:34:
74:26:76:83:30:74:10:a2:bb:82:4f:31:de:06:3a:
80:73:0b:e8:2c:57:fd:b2:d8:15:f3:88:e4:d1:82:
92:0f:29:27:b0:3d:ac:c0:00:e4:87:5c:80:24:49:
fc:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:82:2F:A6:03:93:F9:0D:6A:2E:AA:25:AF:6F:8A:31:67:91:58:79
X509v3 Authority Key Identifier:
keyid:CA:59:9B:DC:1C:FC:7A:E8:CC:2F:BA:15:FC:D8:0C:A1:17:37:84:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ylmb3Bz8eujML7oV_NgMoRc3hGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/1cecb8-97d9-473f-b004-cc912746e47e/1/ylmb3Bz8eujML7oV_NgMoRc3hGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:05:29:09:e1:97:4c:4f:23:a3:92:80:d9:c3:67:2f:32:1c:
9a:1e:6f:f2:d4:1f:51:a7:62:be:26:54:b5:dc:1a:f4:11:59:
cf:23:8f:49:bc:ac:a7:25:3b:12:7b:6b:d2:c5:7a:39:4b:3b:
9a:61:bd:aa:42:a8:77:3d:ef:ee:74:7c:9f:0c:68:4a:89:99:
6a:ce:f7:35:8d:db:e5:e7:1d:6e:e1:f8:48:e0:4a:39:81:f0:
99:a9:75:3a:7f:30:65:34:e4:b3:89:e4:7e:0b:93:27:1d:fd:
44:cf:f0:d8:1a:ee:11:6d:88:5b:7b:7e:62:e2:0c:1c:4b:2d:
da:24:de:d0:a5:ec:0f:f3:3f:76:3d:67:4e:91:c2:06:ae:8e:
a5:67:3b:34:cf:c2:40:f6:57:78:dc:19:fa:05:fc:65:a6:b5:
06:30:e2:40:cd:3f:5e:58:5d:6d:46:62:04:ac:4c:3e:45:84:
a6:41:92:a0:73:a0:95:62:63:2a:c8:1f:ac:ff:0e:24:5e:61:
6c:3b:e0:90:45:41:c3:c0:ea:e0:af:f9:b4:92:66:a3:06:21:
7c:39:83:18:8e:75:55:3f:ac:5d:4f:c7:2d:99:e1:ad:a5:19:
4b:4d:54:1c:4c:7f:aa:ef:eb:c3:c9:00:b1:79:29:c2:f5:af:
f2:ee:3e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:02:07 2026 by rpki-client