Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
File: YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft (raw, json)
Hash identifier: G817ql+1CdeuAM9/r/664DXb0KJmaDFASHCtV1gAVZ8=
Subject key identifier: 95:00:9E:63:EE:65:66:EC:CB:02:43:29:22:5D:D4:AC:23:D9:C6:7E
Authority key identifier: 60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
Certificate issuer: /CN=60f31d820c32400dec0c60496178994d57752acc
Certificate serial: 019D2AE04441E3272A31AEC44C68B495BFD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
Manifest number: 1884
Signing time: Thu 26 Mar 2026 16:00:33 +0000
Manifest this update: Thu 26 Mar 2026 16:00:33 +0000
Manifest next update: Fri 27 Mar 2026 16:00:33 +0000
Files and hashes: 1: YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl (hash: X1sRwa9LlDUAX4GNzjLwik4myDU7mzYE+EsSBYAbKYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e0:44:41:e3:27:2a:31:ae:c4:4c:68:b4:95:bf:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f31d820c32400dec0c60496178994d57752acc
Validity
Not Before: Mar 26 16:00:33 2026 GMT
Not After : Mar 27 16:00:33 2026 GMT
Subject: CN=95009e63ee6566eccb024329225dd4ac23d9c67e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b5:41:be:5d:f8:e8:db:e6:47:24:db:47:ff:
b8:63:65:bd:9e:1b:4d:b4:47:15:c1:cd:bb:9c:bd:
6f:9c:0f:41:18:ca:9c:2d:1f:84:72:42:c3:48:7c:
79:ae:a7:c5:f9:22:01:50:65:14:24:32:f2:59:6c:
b2:00:d4:6b:83:ee:74:92:43:e5:8d:64:d2:f6:d7:
c0:4e:2a:15:50:6c:7d:61:41:fb:11:74:ad:5a:a4:
2e:07:8c:bd:83:02:43:51:2d:fd:b9:2d:35:01:1a:
89:90:d1:9f:b4:ff:5a:45:4c:92:89:51:d9:6d:48:
c2:a7:a6:9b:c3:b2:7c:3e:35:13:6f:8b:46:28:12:
bf:d1:c0:8d:5d:f3:12:ca:87:d0:9a:45:50:4f:36:
36:90:e6:d7:59:07:f7:c1:b0:8a:8e:09:9a:1c:57:
8a:ff:d7:a2:f8:e9:78:91:25:89:42:40:5f:9a:c2:
25:a0:a7:7b:37:0d:9a:17:ff:d7:ba:01:a9:5a:2b:
b7:57:99:a5:10:81:2b:ef:a9:7f:44:af:16:c2:75:
7b:19:c9:eb:5f:b5:d2:34:5a:41:4a:fe:9c:bf:64:
02:c1:46:f4:2e:2a:6e:7b:d8:96:d7:dd:4a:0e:2f:
1a:86:cf:cd:05:12:d1:e0:92:20:88:b9:30:47:1d:
c2:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:00:9E:63:EE:65:66:EC:CB:02:43:29:22:5D:D4:AC:23:D9:C6:7E
X509v3 Authority Key Identifier:
keyid:60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:2a:17:80:71:a9:c2:0b:2b:b7:24:33:e3:8b:ef:19:e4:9a:
e5:98:ec:53:0e:7b:15:d4:4e:43:03:04:74:d3:d9:4e:2b:b1:
c8:0f:a4:a3:ef:93:7b:04:6d:a1:d0:9c:28:12:b6:37:54:c8:
52:03:ae:58:48:b6:24:55:47:e9:23:e2:86:ad:7f:fd:55:9f:
61:b4:12:f9:d8:fe:43:61:f5:08:3e:20:b6:0e:be:b8:1f:79:
71:e1:b0:40:61:ed:61:38:d7:99:4e:b4:32:0b:c4:88:92:88:
e7:5b:2d:b1:60:2a:62:5d:22:2f:35:34:47:23:a6:d6:93:86:
2b:88:db:43:5c:3d:09:4b:93:0b:ef:1c:55:15:71:00:11:0f:
67:0e:5b:7b:ad:f6:33:0a:e5:37:fd:e4:eb:d1:50:05:b6:aa:
e0:49:05:21:65:c9:93:f8:93:57:7e:92:0b:b2:27:33:8a:a3:
9f:53:cc:18:6d:40:f1:0e:b9:b2:c2:09:24:fa:f7:69:46:ee:
22:8e:7e:6a:e6:e2:69:59:b4:39:6e:7c:29:bf:78:24:da:52:
e7:2d:8c:2a:a5:6b:bf:a0:36:3b:e2:b8:77:98:1b:3a:49:3e:
8b:90:8e:82:1e:e8:a6:cc:72:81:3e:76:58:42:55:59:f0:39:
8f:f8:41:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 02:05:08 2026 by rpki-client