Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
File: NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft (raw, json)
Hash identifier: YH+UGE/S3mnf5JFyREZpzCzLaCtgJfq8fw2VAp971Vs=
Subject key identifier: 0C:52:98:32:0F:D5:77:BF:B0:E8:93:4D:58:56:98:B9:81:4D:C0:91
Authority key identifier: 35:8A:E5:80:B2:F7:B4:5C:3D:2A:E9:F1:9F:3C:1B:E9:7E:83:9A:AA
Certificate issuer: /CN=358ae580b2f7b45c3d2ae9f19f3c1be97e839aaa
Certificate serial: 019D29977A1E37A0EDC926607320942B2D45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
Manifest number: 14BF
Signing time: Thu 26 Mar 2026 10:01:26 +0000
Manifest this update: Thu 26 Mar 2026 10:01:26 +0000
Manifest next update: Fri 27 Mar 2026 10:01:26 +0000
Files and hashes: 1: NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl (hash: 7tQZLgRY95uJAv9vmhVwxX81SC6lq7W7IqfuDVXDihc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:7a:1e:37:a0:ed:c9:26:60:73:20:94:2b:2d:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=358ae580b2f7b45c3d2ae9f19f3c1be97e839aaa
Validity
Not Before: Mar 26 10:01:26 2026 GMT
Not After : Mar 27 10:01:26 2026 GMT
Subject: CN=0c5298320fd577bfb0e8934d585698b9814dc091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:49:e7:c4:df:29:8f:57:30:6d:7a:fa:3b:05:
c8:57:0d:37:8a:1a:5b:b9:0c:1d:54:ff:fb:61:4d:
23:40:3f:78:22:99:eb:ac:f6:c0:aa:de:49:cd:59:
83:ff:fa:78:f1:ba:c9:56:57:93:db:9f:51:dc:eb:
66:ac:58:76:51:f8:cd:8b:84:84:a9:22:38:1a:dc:
56:bf:a0:8c:fe:41:f0:44:07:3e:a9:b3:d3:87:da:
4a:1c:0b:5f:75:41:9e:d1:ad:96:e0:5d:30:d6:ef:
8e:0a:35:ea:83:f9:be:17:39:2e:e6:a7:41:01:b0:
39:1f:1f:64:03:2f:72:57:8d:7f:93:99:0f:81:86:
c6:07:01:89:06:c1:99:d9:60:dc:d9:b4:4c:88:d0:
23:ca:03:cc:00:82:b8:2c:da:31:c2:8d:c0:09:a3:
38:fa:fd:ed:6a:16:85:af:29:88:c8:62:87:f9:9d:
7b:c4:4c:44:fb:f2:af:d0:dc:8b:09:d3:18:15:2d:
94:3f:86:50:2b:e8:d6:5a:9f:75:6c:6e:ab:af:69:
75:3a:a8:55:81:97:0a:5f:8d:a3:be:78:da:30:ea:
d1:73:06:04:bf:05:8a:26:44:0a:52:3e:1e:80:22:
22:aa:22:8e:c4:e9:45:dc:2a:05:1a:a3:f2:7c:50:
f3:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:52:98:32:0F:D5:77:BF:B0:E8:93:4D:58:56:98:B9:81:4D:C0:91
X509v3 Authority Key Identifier:
keyid:35:8A:E5:80:B2:F7:B4:5C:3D:2A:E9:F1:9F:3C:1B:E9:7E:83:9A:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/9521f6-184e-430a-b667-524f3a2f68b3/1/NYrlgLL3tFw9Kunxnzwb6X6Dmqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:24:31:1d:a1:74:41:bc:53:0c:cf:cd:40:b4:c7:39:d2:a9:
94:e4:e1:30:46:eb:bc:95:44:de:4f:cb:d6:2c:bc:b4:8a:21:
10:9d:36:55:ff:df:3b:90:92:3f:6b:ef:2a:6e:fa:6f:28:1e:
0b:42:90:70:dd:a4:e9:6d:2a:08:0d:dc:a3:3b:95:6d:86:be:
27:01:d7:52:cb:6f:02:27:85:54:c8:8f:64:30:97:00:f0:ea:
2f:59:79:a8:b2:79:3d:b3:00:f3:74:cb:fa:32:ae:d3:ec:32:
05:47:54:53:5a:08:01:56:9b:35:db:87:f6:6f:42:ed:bc:2b:
bd:14:7b:5f:48:6b:32:28:5e:c3:27:f4:29:42:ac:00:10:d9:
a6:f9:6c:3a:18:77:43:94:f5:1f:8e:4a:ad:95:93:f3:e5:7d:
c7:96:88:e8:e7:be:8b:22:f8:b3:a3:32:2a:ff:bc:60:37:e4:
62:14:2f:01:f5:fe:35:f6:49:99:57:88:df:77:a3:69:7b:aa:
25:eb:07:69:fb:80:36:25:75:69:5e:1d:14:11:75:53:a3:3c:
83:43:0d:43:5e:77:d4:8f:7f:9b:9a:46:d3:cf:5e:ab:df:aa:
34:aa:e5:ce:8c:90:ac:7f:3c:1c:9f:20:e2:ae:47:a8:e8:f6:
cf:25:6a:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:45:24 2026 by rpki-client