Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.mft
File: PYyo-vPO4aXlGlxc2_lIKgACe2U.mft (raw, json)
Hash identifier: TayDXgW1yNCKNjeSZCB0dTzl74af2KBtmy7/EcWqK28=
Subject key identifier: A5:50:AF:1F:A0:C0:5D:60:73:AD:C7:35:63:0A:89:E8:E2:F2:DD:99
Authority key identifier: 3D:8C:A8:FA:F3:CE:E1:A5:E5:1A:5C:5C:DB:F9:48:2A:00:02:7B:65
Certificate issuer: /CN=3d8ca8faf3cee1a5e51a5c5cdbf9482a00027b65
Certificate serial: 019D38665BE5964609883EA640F91ED5FFC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PYyo-vPO4aXlGlxc2_lIKgACe2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.mft
Manifest number: 0DFC
Signing time: Sun 29 Mar 2026 07:02:05 +0000
Manifest this update: Sun 29 Mar 2026 07:02:05 +0000
Manifest next update: Mon 30 Mar 2026 07:02:05 +0000
Files and hashes: 1: PYyo-vPO4aXlGlxc2_lIKgACe2U.crl (hash: 5hF+4iLVgAeCm8rMgY2q3VgyhUS8xSXYsQLjihG2Uw4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.mft
rsync://rpki.ripe.net/repository/DEFAULT/PYyo-vPO4aXlGlxc2_lIKgACe2U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:5b:e5:96:46:09:88:3e:a6:40:f9:1e:d5:ff:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d8ca8faf3cee1a5e51a5c5cdbf9482a00027b65
Validity
Not Before: Mar 29 07:02:05 2026 GMT
Not After : Mar 30 07:02:05 2026 GMT
Subject: CN=a550af1fa0c05d6073adc735630a89e8e2f2dd99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cc:58:0c:42:ac:8f:ab:48:1f:2d:ad:d5:2c:
56:3d:01:f8:bf:3f:d2:69:04:60:48:c0:18:7c:76:
39:93:a5:ee:d6:8e:3a:cc:19:b3:6b:bc:0d:0a:8d:
28:0d:c5:50:b6:a8:1b:ca:db:8f:3b:6b:4b:c0:9a:
ea:95:ba:7c:8c:4a:62:6f:30:f0:74:22:0b:0d:51:
d6:3b:72:a1:d6:92:54:86:ca:9c:a8:ba:b5:27:b0:
f1:e5:02:50:5f:69:fb:5e:62:fe:cc:bc:c2:a9:1d:
72:76:ca:31:51:0b:eb:29:89:04:27:63:25:aa:39:
ed:40:76:36:5e:a5:2d:8a:8e:a4:86:cc:b1:22:3a:
d5:27:2d:87:28:52:6d:31:62:0c:2d:bf:21:84:2b:
f3:96:cd:fc:40:e3:e4:29:b1:03:e3:a1:2f:4c:84:
0f:0d:73:5d:3b:07:7c:87:e7:1e:9f:73:b4:fa:0f:
90:bd:03:63:c4:1b:68:6a:68:cb:39:e7:19:2a:cd:
8e:6b:9b:0f:3d:1b:18:75:ff:68:0e:4c:14:52:25:
cd:93:68:e2:b5:20:c1:cb:fb:6c:54:28:27:61:f1:
36:4e:6b:93:3a:4b:00:f5:b5:97:15:04:6d:e7:69:
be:f2:28:3d:c2:a1:83:dc:3d:30:d0:3b:27:6d:63:
c0:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:50:AF:1F:A0:C0:5D:60:73:AD:C7:35:63:0A:89:E8:E2:F2:DD:99
X509v3 Authority Key Identifier:
keyid:3D:8C:A8:FA:F3:CE:E1:A5:E5:1A:5C:5C:DB:F9:48:2A:00:02:7B:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PYyo-vPO4aXlGlxc2_lIKgACe2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/11237d-c69d-40d4-b4d7-4e15b84ee706/1/PYyo-vPO4aXlGlxc2_lIKgACe2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:02:aa:dd:15:12:57:2e:97:4b:52:66:01:b6:a2:26:2f:18:
31:ab:bc:48:65:9d:27:e1:ab:d1:c4:b0:15:3e:10:85:b1:54:
e7:6c:e1:8b:26:ff:7c:f2:27:fa:d9:c3:47:b1:c1:38:98:27:
34:26:92:87:45:19:cb:7c:19:31:39:19:96:04:a7:8b:03:34:
f4:1d:5e:80:ca:d5:eb:4a:b8:22:24:db:d3:e9:09:1c:a6:ba:
34:81:8f:a2:32:29:c0:e5:54:18:41:ab:ba:11:a2:15:ca:79:
ab:d6:81:45:ca:55:17:59:ed:df:fc:da:5f:72:a3:b2:47:a9:
69:7f:0a:93:aa:c0:ee:23:11:6b:25:70:96:10:b6:6e:99:23:
ce:1c:f2:71:dd:2b:70:32:d7:a7:26:b5:05:a6:a6:fe:b3:ba:
f3:32:f8:10:bf:da:b6:b0:69:03:f6:88:b3:84:5a:bc:43:5e:
44:ef:ba:b5:66:80:80:60:fe:24:50:a4:0f:4e:54:ac:c4:fa:
0c:4a:f6:47:40:58:32:92:eb:48:76:05:20:18:98:cf:9a:f4:
63:97:ec:c9:93:09:12:df:db:1b:7e:c5:e3:c3:00:bb:3c:39:
a5:c1:39:70:55:35:e7:ba:17:fd:7a:83:ef:95:3c:dc:5f:64:
af:51:d7:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:01:21 2026 by rpki-client