Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
File: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft (raw, json)
Hash identifier: 5SVz3wNgA5dsFK5oGDakYlTENNRaWsvugEfOl2cut/M=
Subject key identifier: B4:1E:1E:30:0D:F8:2B:98:B4:85:54:51:2B:0F:5B:4B:62:0E:5E:C4
Authority key identifier: C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81
Certificate issuer: /CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
Certificate serial: 019D29CDC0AF95ACD3AB7FA1A85E11CA6ECA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
Manifest number: 1055
Signing time: Thu 26 Mar 2026 11:00:43 +0000
Manifest this update: Thu 26 Mar 2026 11:00:43 +0000
Manifest next update: Fri 27 Mar 2026 11:00:43 +0000
Files and hashes: 1: yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl (hash: wbvEg1ALC/ZSZsEH7dxkkcvpt5uprgO4PYXhAFmVYhg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:cd:c0:af:95:ac:d3:ab:7f:a1:a8:5e:11:ca:6e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8da89fb152d43c63e3da2fd6a0b0dfb22a06581
Validity
Not Before: Mar 26 11:00:43 2026 GMT
Not After : Mar 27 11:00:43 2026 GMT
Subject: CN=b41e1e300df82b98b48554512b0f5b4b620e5ec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:18:4d:5a:58:9f:07:14:42:be:c1:93:94:de:
7e:a6:bc:1c:77:29:08:c2:4b:f3:27:0a:05:04:f3:
e6:5b:ef:0f:55:de:52:e9:55:66:7a:54:7b:26:1b:
8c:db:02:12:75:54:e9:b0:ec:9e:0b:0f:46:39:6d:
61:6f:a0:f5:7a:8b:9b:5d:1e:25:d3:b7:86:bd:36:
6f:df:e3:da:37:93:b4:fe:59:e6:ae:4b:67:a3:2d:
c9:22:86:8a:9b:89:e0:98:61:9b:76:ef:4d:9d:89:
9f:06:33:4d:29:9e:34:5c:c2:4a:89:8a:7a:d6:1f:
49:66:98:53:41:f9:e3:11:15:31:f1:3f:7a:f7:1b:
55:b7:a8:14:6c:5d:ef:36:10:a7:c1:d7:a9:5b:f2:
ea:7d:17:90:cb:d5:a4:14:58:d1:c1:2f:a3:c7:39:
2b:d7:03:ce:33:11:8f:50:86:af:f3:1d:ed:42:ca:
00:fd:eb:8b:9e:81:07:c7:00:92:93:fc:96:bc:31:
85:05:c8:2e:89:72:8a:bd:58:f0:48:4e:21:75:56:
a7:36:a7:66:fb:a2:99:91:67:ea:00:d8:e1:7a:f2:
93:44:7b:fe:22:c2:ca:33:a8:be:2b:ba:97:42:38:
7e:1e:7d:6d:08:8e:f5:50:89:a1:a2:18:62:ff:e0:
00:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:1E:1E:30:0D:F8:2B:98:B4:85:54:51:2B:0F:5B:4B:62:0E:5E:C4
X509v3 Authority Key Identifier:
keyid:C8:DA:89:FB:15:2D:43:C6:3E:3D:A2:FD:6A:0B:0D:FB:22:A0:65:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/b55005-005d-4a64-be1a-dd2b061bd4f2/1/yNqJ-xUtQ8Y-PaL9agsN-yKgZYE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:27:c7:a6:4c:34:11:ed:50:47:cf:2b:ae:2a:c4:85:ec:3d:
b2:6b:2e:b3:65:6d:43:2b:5f:b4:8d:18:97:b8:54:82:a0:d7:
66:91:68:a3:72:5b:58:f3:85:98:a0:64:6a:64:60:5d:07:92:
20:fc:53:b2:66:65:fe:52:84:aa:68:5c:4e:b2:23:29:4b:e5:
78:0c:fd:dd:66:b1:72:34:b6:b7:0f:13:80:5b:66:0e:01:13:
31:70:25:82:cc:60:a1:7e:a0:c4:bb:49:d7:da:22:56:c1:8c:
3d:11:7d:ad:78:bf:23:ad:84:59:d5:ee:6d:e8:7c:08:86:22:
8f:79:7d:f5:96:df:e3:de:dd:90:12:78:8a:d4:eb:70:5a:fc:
ac:29:cc:54:ea:e6:50:e6:f5:f4:a6:51:cd:d5:49:aa:7e:c6:
41:6b:4a:47:43:e3:a8:62:b9:4d:03:6b:80:85:ea:a5:69:b7:
db:88:8f:fc:b4:eb:34:76:25:0d:9c:32:2e:7e:64:30:29:4d:
42:72:32:0e:39:7e:c0:82:5c:3e:3f:25:6a:3d:79:e9:fd:22:
58:87:98:47:3c:9c:17:79:81:b7:27:5b:2f:da:b0:8b:1f:9d:
05:6b:cc:61:ea:64:fe:ed:1a:0a:bd:7b:35:9d:d9:8a:f9:29:
f1:3b:cb:23
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pzcCvlazTq3+hqF4Rym7KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGM4ZGE4OWZiMTUyZDQzYzYzZTNkYTJmZDZhMGIwZGZiMjJh
MDY1ODEwHhcNMjYwMzI2MTEwMDQzWhcNMjYwMzI3MTEwMDQzWjAzMTEwLwYDVQQD
EyhiNDFlMWUzMDBkZjgyYjk4YjQ4NTU0NTEyYjBmNWI0YjYyMGU1ZWM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxhNWlifBxRCvsGTlN5+prwcdykI
wkvzJwoFBPPmW+8PVd5S6VVmelR7JhuM2wISdVTpsOyeCw9GOW1hb6D1eoubXR4l
07eGvTZv3+PaN5O0/lnmrktnoy3JIoaKm4ngmGGbdu9NnYmfBjNNKZ40XMJKiYp6
1h9JZphTQfnjERUx8T969xtVt6gUbF3vNhCnwdepW/LqfReQy9WkFFjRwS+jxzkr
1wPOMxGPUIav8x3tQsoA/euLnoEHxwCSk/yWvDGFBcguiXKKvVjwSE4hdVanNqdm
+6KZkWfqANjhevKTRHv+IsLKM6i+K7qXQjh+Hn1tCI71UImhohhi/+AACwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLQeHjAN+CuYtIVUUSsPW0tiDl7EMB8GA1UdIwQY
MBaAFMjaifsVLUPGPj2i/WoLDfsioGWBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9iNTUwMDUtMDA1ZC00YTY0LWJlMWEt
ZGQyYjA2MWJkNGYyLzEveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS9iNTUwMDUtMDA1ZC00YTY0LWJlMWEtZGQyYjA2MWJkNGYy
LzEveU5xSi14VXRROFktUGFMOWFnc04teUtnWllFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAASfHpkw0
Ee1QR88rrirEhew9smsus2VtQytftI0Yl7hUgqDXZpFoo3JbWPOFmKBkamRgXQeS
IPxTsmZl/lKEqmhcTrIjKUvleAz93WaxcjS2tw8TgFtmDgETMXAlgsxgoX6gxLtJ
19oiVsGMPRF9rXi/I62EWdXubeh8CIYij3l99Zbf497dkBJ4itTrcFr8rCnMVOrm
UOb19KZRzdVJqn7GQWtKR0PjqGK5TQNrgIXqpWm324iP/LTrNHYlDZwyLn5kMClN
QnIyDjl+wIJcPj8laj156f0iWIeYRzycF3mBtydbL9qwix+dBWvMYepk/u0aCr17
NZ3Zivkp8TvLIw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 18:48:02 2026 by rpki-client