Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/5e7dc8-7bf5-4033-9092-fc7eb991db40/1/Yonrndlo7aSnlWTC4GpoOEIpegQ.mft
File: Yonrndlo7aSnlWTC4GpoOEIpegQ.mft (raw, json)
Hash identifier: BIOiKwhhl3+3q/4MjagQVsivckzvWT+OCDyime0tG8E=
Subject key identifier: 5E:2D:E2:46:AF:D7:26:52:27:57:B7:A4:D2:C6:2F:2A:BD:88:64:B2
Authority key identifier: 62:89:EB:9D:D9:68:ED:A4:A7:95:64:C2:E0:6A:68:38:42:29:7A:04
Certificate issuer: /CN=6289eb9dd968eda4a79564c2e06a683842297a04
Certificate serial: 019D273B39723EC4A94D4EE027625BA84230
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yonrndlo7aSnlWTC4GpoOEIpegQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/5e7dc8-7bf5-4033-9092-fc7eb991db40/1/Yonrndlo7aSnlWTC4GpoOEIpegQ.mft
Manifest number: 05A5
Signing time: Wed 25 Mar 2026 23:01:25 +0000
Manifest this update: Wed 25 Mar 2026 23:01:25 +0000
Manifest next update: Thu 26 Mar 2026 23:01:25 +0000
Files and hashes: 1: Yonrndlo7aSnlWTC4GpoOEIpegQ.crl (hash: UzRGjYpqxfnS8MFhRgdhnk5wlhUbB8Mwt0TfqHGwLIk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/5e7dc8-7bf5-4033-9092-fc7eb991db40/1/Yonrndlo7aSnlWTC4GpoOEIpegQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/5e7dc8-7bf5-4033-9092-fc7eb991db40/1/Yonrndlo7aSnlWTC4GpoOEIpegQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Yonrndlo7aSnlWTC4GpoOEIpegQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:39:72:3e:c4:a9:4d:4e:e0:27:62:5b:a8:42:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6289eb9dd968eda4a79564c2e06a683842297a04
Validity
Not Before: Mar 25 23:01:25 2026 GMT
Not After : Mar 26 23:01:25 2026 GMT
Subject: CN=5e2de246afd726522757b7a4d2c62f2abd8864b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:9a:9f:c7:b5:65:0a:12:28:af:8e:f9:e6:ef:
11:29:6d:f6:0e:e3:86:80:e3:e6:5d:44:57:a0:c3:
00:6e:19:43:8c:7b:40:8d:8f:54:55:c4:df:e5:8f:
c0:d0:0e:03:6a:74:f3:86:8f:f0:7e:08:5e:57:f6:
21:ee:0f:fd:1c:d0:26:f8:cc:1d:2a:60:48:ca:66:
e5:c5:67:6c:32:28:c1:3c:0f:67:ca:c4:c3:32:38:
b5:8a:c0:c6:39:0c:9c:ff:31:3c:ef:ff:e4:af:83:
8d:9b:45:55:3e:14:31:bb:8c:2c:56:82:83:1b:78:
e3:69:8f:c2:60:9c:b8:21:e9:55:70:ad:bb:ed:55:
99:e3:06:22:60:cb:c1:7f:03:45:0f:84:30:f6:bb:
5a:d9:4a:e2:0b:fe:fc:17:57:98:66:59:c6:d8:7c:
35:32:04:39:b6:4f:b2:4d:2d:36:4f:73:ef:23:cf:
89:74:87:e6:42:3b:58:02:0d:d3:ff:b3:a7:b4:c0:
c1:66:3a:ea:e6:10:72:b6:b1:87:21:15:80:7a:49:
bd:e9:db:6e:33:7a:9a:0c:4d:52:bd:d1:d8:77:e4:
5e:09:2f:89:02:bc:7e:b3:80:6b:56:66:b1:0e:77:
94:3a:f8:21:f2:bc:bc:f3:96:11:19:ac:29:44:23:
c5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:2D:E2:46:AF:D7:26:52:27:57:B7:A4:D2:C6:2F:2A:BD:88:64:B2
X509v3 Authority Key Identifier:
keyid:62:89:EB:9D:D9:68:ED:A4:A7:95:64:C2:E0:6A:68:38:42:29:7A:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yonrndlo7aSnlWTC4GpoOEIpegQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5e7dc8-7bf5-4033-9092-fc7eb991db40/1/Yonrndlo7aSnlWTC4GpoOEIpegQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/5e7dc8-7bf5-4033-9092-fc7eb991db40/1/Yonrndlo7aSnlWTC4GpoOEIpegQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:cc:07:64:8c:84:15:ce:7e:bb:0f:64:06:b9:1c:39:ac:80:
82:09:a2:90:4d:e6:2d:0c:25:ab:2d:ce:7a:a4:0f:7b:22:00:
36:bf:4a:d2:69:5e:19:13:99:9d:1b:a2:8c:63:cf:0b:d5:81:
66:d1:08:f9:d5:d5:c2:8e:a3:c3:05:23:73:c5:79:f0:35:5f:
a0:37:47:77:9b:f9:72:3f:05:dd:cb:15:8b:6c:57:ba:a0:a3:
87:f1:3d:6b:83:a4:84:5d:5f:e6:77:b7:65:07:68:13:d9:c2:
04:79:19:f9:2a:ba:c8:fe:6e:48:f8:8b:11:2a:da:a5:d3:5b:
f4:58:ca:ef:d7:9c:e4:7b:aa:e6:32:d0:0d:30:81:ea:1e:3d:
b0:74:04:bc:b7:56:e2:ec:1b:08:91:e8:08:df:9c:a6:89:62:
7f:7b:8a:77:5e:d2:13:79:96:47:69:fa:14:4d:30:55:4a:0d:
85:49:f2:1a:83:0d:c2:aa:1e:df:4b:ea:28:4f:30:23:c0:25:
5e:cf:a2:5a:43:e7:00:6d:1c:4a:d0:c0:f2:17:8e:06:3e:bb:
07:72:4d:69:ba:3c:0e:c9:72:a0:ff:6b:26:77:41:db:79:e0:
f9:4a:82:53:d0:f2:a1:b9:12:f4:e7:44:9f:ae:45:8e:99:ef:
72:01:6d:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:20:05 2026 by rpki-client