Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json)
Hash identifier: JBnnbMg0TBpvuQ11R3VruXRSGexSd+k3JIdluj/0CLg=
Subject key identifier: D7:5B:BB:94:4B:F3:13:FD:78:BB:35:FD:E7:E4:9E:18:CF:7D:98:72
Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c
Certificate serial: 019D2703EFC8B234FFF2753C27D5F9B2AAB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
Manifest number: 1314
Signing time: Wed 25 Mar 2026 22:01:02 +0000
Manifest this update: Wed 25 Mar 2026 22:01:02 +0000
Manifest next update: Thu 26 Mar 2026 22:01:02 +0000
Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: 7Bj2rd/8wN2GNl2BTCrUMvqDPJfUFvCMmfQZnsrAchg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:ef:c8:b2:34:ff:f2:75:3c:27:d5:f9:b2:aa:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6117d6158043150b0ad224a0648df0185706019c
Validity
Not Before: Mar 25 22:01:02 2026 GMT
Not After : Mar 26 22:01:02 2026 GMT
Subject: CN=d75bbb944bf313fd78bb35fde7e49e18cf7d9872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:24:2a:0c:3a:a4:81:05:ff:4d:93:d2:82:bd:
83:d5:8a:34:51:b9:96:0d:01:e7:ea:97:03:f8:bf:
29:b3:e6:8d:f8:a7:21:b9:9f:69:b0:c6:20:81:2b:
ec:8f:25:25:16:a4:11:1f:58:c1:fb:d0:32:3f:2a:
fc:81:c0:8e:50:79:84:e8:f8:8a:5a:04:2f:ef:27:
c4:4a:5c:98:45:0e:00:bb:bd:d1:f6:23:de:33:14:
28:8f:2f:c5:9e:b1:7b:24:e5:32:68:c5:9a:f6:68:
68:b6:15:b1:5b:c7:6f:c8:cd:be:82:2a:7c:20:a6:
da:d9:7a:81:e3:39:1f:45:3f:8b:c3:0d:2d:fa:fd:
2c:74:41:c6:4b:fa:f4:0b:6d:2c:4d:1a:a1:6b:d0:
29:27:f8:db:4b:29:be:30:e2:b2:26:cb:25:f4:03:
f0:11:06:34:4d:4c:72:38:ee:77:98:9b:b2:c0:38:
24:e8:09:25:51:86:2a:bc:27:7d:58:8a:bd:fa:4a:
1a:5e:8c:2a:06:92:97:e2:b4:59:c1:67:ec:95:14:
bb:00:03:63:50:ad:be:b9:ba:48:1a:f9:21:98:f3:
87:ba:e9:1f:f8:0b:30:41:20:1a:72:69:d0:17:13:
4c:6b:48:b1:a5:62:69:a0:fb:36:99:f5:b7:f4:68:
d1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5B:BB:94:4B:F3:13:FD:78:BB:35:FD:E7:E4:9E:18:CF:7D:98:72
X509v3 Authority Key Identifier:
keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:d2:46:bd:4a:08:ce:8e:b3:bc:8b:94:08:ec:b5:6b:ea:69:
2c:8a:0b:ed:33:21:f1:c2:b0:32:d3:84:72:78:f5:52:6b:fa:
40:16:1a:ee:5b:c7:01:88:80:59:95:1f:db:0f:cc:31:ca:9d:
9d:fb:59:18:59:1c:25:0a:32:8c:42:f8:48:52:9c:c3:2e:96:
e6:c7:98:18:6c:85:15:7f:3b:94:0c:86:54:c8:6f:e7:a8:86:
0e:69:0f:2a:42:c3:3d:e9:1b:e5:b2:a7:41:b5:a9:2c:c3:15:
28:b8:9b:bc:7a:53:01:af:51:7a:d1:b9:e4:7f:1a:a7:7c:63:
10:5c:18:e0:55:7e:a9:0b:04:95:19:38:eb:2b:28:75:20:0f:
99:f9:a0:ce:e5:a7:07:6e:ca:46:e2:7a:b9:dd:b2:bb:0f:0b:
88:a3:eb:c7:f2:19:60:d2:49:1a:45:f8:6d:9b:4b:b6:fd:55:
e7:ef:c8:38:ca:e4:c0:77:10:06:1d:38:3e:bb:92:86:ac:e0:
48:d4:73:88:dd:15:08:02:c1:4f:3e:f3:12:c8:62:d9:d3:be:
29:d3:9e:8f:b2:9c:e0:68:95:1c:95:fa:fb:92:08:f9:f5:a7:
a7:f6:37:49:80:e8:e3:7b:4b:70:ff:03:ea:41:7f:b5:b1:44:
b8:8b:45:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:20:49 2026 by rpki-client