Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft
File: Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft (raw, json)
Hash identifier: 2Gk7DWENHyV4/2IIy/ECUmvcDpfRx81zCFKrSi8hECs=
Subject key identifier: 16:D4:63:91:0B:D3:F7:A9:41:5F:4A:27:E0:B7:78:56:CE:1B:86:E7
Authority key identifier: 63:6B:02:7B:FA:B9:1A:A4:71:9A:80:EF:E0:21:24:61:37:42:8B:DA
Certificate issuer: /CN=636b027bfab91aa4719a80efe021246137428bda
Certificate serial: 019D284D69F62E9138BFFE2B230016CBD3A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft
Manifest number: 1626
Signing time: Thu 26 Mar 2026 04:00:55 +0000
Manifest this update: Thu 26 Mar 2026 04:00:55 +0000
Manifest next update: Fri 27 Mar 2026 04:00:55 +0000
Files and hashes: 1: Y2sCe_q5GqRxmoDv4CEkYTdCi9o.crl (hash: RKguiLlR9FIDkcI35wl2LPMvjGmc8T+zfdCpjq0gTWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft
rsync://rpki.ripe.net/repository/DEFAULT/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:69:f6:2e:91:38:bf:fe:2b:23:00:16:cb:d3:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=636b027bfab91aa4719a80efe021246137428bda
Validity
Not Before: Mar 26 04:00:55 2026 GMT
Not After : Mar 27 04:00:55 2026 GMT
Subject: CN=16d463910bd3f7a9415f4a27e0b77856ce1b86e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:76:4a:13:ab:dd:d7:86:48:ab:f7:4f:a8:6d:
1c:41:02:c5:ee:0b:48:aa:07:78:9c:8b:58:b8:de:
db:9c:a8:ca:17:7f:83:72:f2:c8:f9:20:de:4a:9f:
4e:c8:6e:f7:e4:bb:fe:10:ae:aa:1c:97:66:cc:a4:
b7:e0:8e:d7:19:71:ff:ad:68:29:da:18:cb:6a:c1:
55:1c:20:ce:27:86:1d:c7:7f:99:12:09:53:4e:0b:
e2:c9:20:29:af:84:b0:de:f8:a5:98:6a:8f:0a:68:
e6:97:84:c6:f1:0c:46:0b:4d:4e:6f:dc:0b:fe:12:
fe:4a:01:01:1b:d2:80:fb:89:ee:76:0f:1f:b6:09:
fb:90:89:e5:11:79:83:4b:6d:6b:1c:c8:3f:1b:a0:
eb:dc:d3:f8:80:8f:eb:bc:2e:d3:a0:d0:2e:d4:fe:
02:53:bd:a5:98:17:0e:cf:88:8d:44:5c:be:01:3a:
e2:cc:b4:c1:33:b4:7e:63:cd:47:2f:39:24:1f:46:
da:c7:db:fb:34:41:07:d8:c1:d2:6c:ed:b7:3f:dd:
3a:19:2c:86:7a:40:f8:a9:e0:8f:70:58:d0:ee:62:
82:cd:aa:07:ba:85:99:47:bb:d1:3b:50:cc:64:51:
6f:36:7d:11:f5:b9:ec:2a:f7:af:ef:4c:cc:61:26:
58:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:D4:63:91:0B:D3:F7:A9:41:5F:4A:27:E0:B7:78:56:CE:1B:86:E7
X509v3 Authority Key Identifier:
keyid:63:6B:02:7B:FA:B9:1A:A4:71:9A:80:EF:E0:21:24:61:37:42:8B:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/a0cdd8-092d-43bb-a2a8-880c2e4faa6e/1/Y2sCe_q5GqRxmoDv4CEkYTdCi9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:bc:a5:d8:44:f4:d2:8a:25:c6:df:7f:aa:fe:37:fa:61:6b:
9a:e1:6a:d8:eb:2e:fe:87:e8:d6:9b:aa:d7:65:5c:ef:0d:38:
26:6c:cb:34:d3:40:69:be:e6:51:54:4a:2e:a8:59:82:06:68:
87:7f:65:f3:bd:a1:61:2f:50:a1:72:8d:0e:a1:96:89:80:06:
44:1c:c0:d6:77:4b:77:4a:91:8a:83:fa:1d:20:90:28:83:69:
e4:b9:68:da:29:4e:45:24:50:e2:f4:93:a6:53:db:0b:80:15:
3a:fb:e4:c7:d8:b5:9b:48:f2:df:7e:28:a6:8c:df:b2:56:a2:
01:e7:6d:bd:c1:72:c6:0e:cd:1e:cd:8a:41:a8:28:fc:74:66:
0b:2b:50:84:20:dc:9b:f1:f8:6c:d9:dd:27:b0:25:42:de:6e:
5c:ee:e0:69:85:55:24:00:5b:ce:66:0e:0d:3b:ad:27:07:74:
af:35:93:9f:18:8d:22:a7:2c:36:27:5d:95:93:29:e7:37:5c:
75:c1:f6:43:f7:27:7b:10:08:fa:a1:a2:74:cc:87:33:3f:4a:
6c:c4:56:b9:cd:0a:75:51:97:0f:56:9f:fe:d9:6f:10:52:ea:
1e:4b:1d:26:31:f9:6c:eb:7f:09:71:bd:ba:b6:5e:60:17:32:
42:07:c9:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:45:34 2026 by rpki-client