Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
File: hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json)
Hash identifier: JOD1YBgfqck3NTe4K5wG3rRQS0DkmUkc7ipIsSKRAT8=
Subject key identifier: 98:FB:0E:F2:E2:87:3D:BB:E7:18:0F:65:B0:AD:10:40:A7:2D:A4:E2
Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
Certificate issuer: /CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Certificate serial: 019D2704D7B16172A341533622D442076576
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
Manifest number: 130E
Signing time: Wed 25 Mar 2026 22:02:01 +0000
Manifest this update: Wed 25 Mar 2026 22:02:01 +0000
Manifest next update: Thu 26 Mar 2026 22:02:01 +0000
Files and hashes: 1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: 21tfYhSa/vYrO8za1XvRmA0hTPRoHLfZUYQtZ0Vjie8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:d7:b1:61:72:a3:41:53:36:22:d4:42:07:65:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Validity
Not Before: Mar 25 22:02:01 2026 GMT
Not After : Mar 26 22:02:01 2026 GMT
Subject: CN=98fb0ef2e2873dbbe7180f65b0ad1040a72da4e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:99:49:7c:1d:93:12:7a:91:c9:ea:22:c9:97:
fb:8b:59:0d:02:69:d8:28:7d:7d:5c:a2:eb:9d:dd:
5d:16:0b:d1:4c:d9:f1:8e:c7:87:4d:10:8c:3a:ab:
fd:a2:b5:33:82:a8:19:8a:06:df:54:3f:7c:52:c2:
e0:83:33:ae:31:ff:fd:1f:f6:27:c5:6f:40:ee:82:
5a:6a:31:84:d7:90:68:b1:d5:aa:c5:65:00:4c:ee:
bc:7b:b9:14:07:1c:9c:65:85:fd:97:4c:79:2a:fd:
f8:a3:3f:1a:ff:b8:9b:89:3c:c7:fa:15:92:7a:5e:
86:46:68:53:f7:df:d0:f1:ea:f9:da:2d:19:c7:63:
14:c2:80:54:02:4d:07:4c:37:34:d3:7c:47:de:7c:
94:95:03:5b:f0:6b:fa:1d:91:ea:af:73:18:cd:a3:
65:1a:38:35:be:98:61:5c:c9:bb:9c:9e:69:3c:ff:
e2:4c:c4:a3:20:77:44:de:ba:d7:28:0e:db:a9:46:
6a:87:57:48:91:67:57:e6:97:e9:8d:25:b4:e2:61:
75:2a:3c:88:28:5b:22:f7:10:d5:f8:35:e5:96:04:
a8:2f:50:17:97:9f:db:bb:db:60:96:9c:d7:1c:47:
c5:02:0f:14:39:b9:24:41:50:be:eb:05:e7:80:58:
7d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:FB:0E:F2:E2:87:3D:BB:E7:18:0F:65:B0:AD:10:40:A7:2D:A4:E2
X509v3 Authority Key Identifier:
keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:b0:03:53:6f:f2:e3:34:b4:0f:4e:76:00:70:e8:de:cc:54:
c0:39:9d:70:00:4f:be:a5:52:32:9f:e2:8e:da:e4:cd:98:d1:
d4:1e:f4:63:fc:ad:67:53:06:26:be:c8:13:1f:28:fd:c7:11:
60:2f:e2:bd:5f:2c:03:53:60:b3:ea:c2:61:1d:f3:49:f6:81:
11:de:58:d1:c1:32:32:87:aa:8e:5d:6c:75:49:74:11:95:46:
1d:2f:06:2b:ae:74:a5:8b:b8:80:5d:a9:1f:5b:4c:76:f5:42:
61:22:f1:57:a8:6e:c8:88:82:e9:22:c6:b4:61:6f:09:35:48:
5f:d5:36:20:e4:f3:b2:97:77:6f:1c:37:59:3d:40:d3:91:df:
40:ff:fc:31:f9:44:3c:38:dc:86:2e:41:c4:7f:ca:c2:92:9c:
fa:c3:21:31:53:a2:e6:b2:8b:0c:d5:39:d4:9f:66:9f:0a:40:
b1:39:b4:ce:dc:e9:ab:00:75:ff:8e:52:1e:9d:dc:e7:38:34:
63:9f:35:da:0c:24:36:4a:91:fb:5f:a0:9c:a1:44:52:65:6e:
ea:15:97:68:d3:e5:d6:08:42:dc:d9:62:ba:f9:a9:a6:20:10:
d2:ae:e2:8f:03:1d:66:bf:5e:69:e7:cf:a5:89:aa:40:17:f4:
26:5a:00:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:46 2026 by rpki-client