Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
File: tY6n73bYACz8pmxSD3ybYIo5XZU.mft (raw, json)
Hash identifier: 9YN4ekNTXArr9EL1lbDLAREBlDynilvLD2D9eVP9XzQ=
Subject key identifier: D8:0A:3B:97:F3:3C:3E:0D:7E:E9:AE:5E:5F:F9:96:E4:7E:7A:6F:81
Authority key identifier: B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
Certificate issuer: /CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Certificate serial: 019D284DA9F6617741E7AE3E740F06B88315
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
Manifest number: 0817
Signing time: Thu 26 Mar 2026 04:01:11 +0000
Manifest this update: Thu 26 Mar 2026 04:01:11 +0000
Manifest next update: Fri 27 Mar 2026 04:01:11 +0000
Files and hashes: 1: tY6n73bYACz8pmxSD3ybYIo5XZU.crl (hash: indHvwjZb9MJB1wZwQ9qjmDJGYNUAUaVxlqRIegr7uw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:a9:f6:61:77:41:e7:ae:3e:74:0f:06:b8:83:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Validity
Not Before: Mar 26 04:01:11 2026 GMT
Not After : Mar 27 04:01:11 2026 GMT
Subject: CN=d80a3b97f33c3e0d7ee9ae5e5ff996e47e7a6f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1b:dd:b6:67:67:c9:c1:a3:12:b3:b2:df:84:
9c:25:b7:63:a7:62:e1:cd:ab:9f:0b:6b:1a:9a:0b:
5b:10:52:bc:53:92:d7:33:d7:82:27:2f:0d:ee:15:
b0:45:16:53:51:f5:6c:c7:bb:7b:2e:26:84:e4:cc:
0b:9b:58:13:fd:2d:6a:9b:1f:c4:d7:52:e0:16:8a:
cb:b1:ac:41:28:2d:14:2c:ac:2d:37:32:38:12:69:
f9:48:4f:92:6b:ac:9a:44:af:14:4b:fd:48:9f:dd:
42:f6:31:52:c8:cb:aa:c9:e6:f0:e5:03:2a:15:22:
b8:95:bd:8c:89:ab:4f:9d:9d:d8:48:65:8b:61:71:
a6:96:c8:80:4d:22:c0:16:95:56:2b:00:df:34:08:
1d:94:58:91:4d:dd:42:de:f7:a9:53:7d:b6:cc:a8:
fe:89:1b:51:0c:c9:fc:4b:4f:cc:53:86:05:48:17:
54:d9:1e:91:ef:47:09:c3:69:59:c4:15:a7:d5:24:
af:f0:69:1e:b2:0a:5b:d1:18:e7:e5:92:78:57:a3:
7b:d5:83:1e:99:c0:1d:fe:92:0a:5c:67:64:6c:7c:
ed:c4:0e:dc:05:d7:b5:43:f5:af:65:cf:43:04:d6:
a4:35:00:f0:57:ca:0b:34:9a:15:8b:de:d1:39:05:
f0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:0A:3B:97:F3:3C:3E:0D:7E:E9:AE:5E:5F:F9:96:E4:7E:7A:6F:81
X509v3 Authority Key Identifier:
keyid:B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:1d:a3:c1:97:9d:42:74:ac:cb:87:7a:6b:c9:be:49:07:58:
73:25:05:d1:af:7d:6d:45:12:9c:68:8b:e0:61:74:a5:f2:60:
03:1a:74:21:f1:82:6b:44:80:9f:f4:f7:3a:68:42:58:55:22:
92:93:1b:18:ef:66:3c:b4:9f:b8:f1:cb:d6:ad:ae:e3:e1:bc:
50:90:1d:a8:b3:a7:d6:53:dc:d8:2d:37:92:e2:72:0b:f0:52:
0c:53:e7:76:e1:63:9d:f7:43:84:8e:99:48:f3:78:a3:21:e6:
e8:4b:42:8b:69:9b:5a:76:14:20:58:b3:b3:c6:9e:9c:02:13:
d2:56:25:10:a0:fb:d7:63:74:b5:8b:bd:67:fc:f6:e0:b3:bb:
25:fe:63:ef:aa:b0:55:b3:70:36:f0:fd:bb:93:ea:d7:5e:d9:
90:3d:75:72:37:3a:d9:22:ef:cd:b3:b2:2e:f3:f0:b8:ad:be:
82:f4:e2:7e:dc:29:15:ae:a1:29:8f:94:fa:22:79:66:2e:7f:
9f:65:da:5d:a9:dc:e8:51:48:07:a0:1d:9b:a3:5c:b5:53:ea:
a5:29:34:f3:08:86:12:24:14:0c:eb:a7:c1:a3:49:84:33:b9:
26:ea:34:1a:1a:c3:34:7e:be:fe:34:11:04:bf:ca:5e:4c:16:
b2:f0:4f:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:59:54 2026 by rpki-client