Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
File: hyyq6fD7ed7GhEvqzowiHO9NMsk.mft (raw, json)
Hash identifier: S6AhTydIZnw0lzup6fNkTzANuWTOrOud5ZemqzLyOr0=
Subject key identifier: 15:A5:B4:03:2F:A7:9E:06:56:F1:F2:E1:7E:B4:F7:0C:0F:E6:0C:3B
Authority key identifier: 87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
Certificate issuer: /CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Certificate serial: 019D3A53B67225DD5E14B9D3133559FF7943
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
Manifest number: 1318
Signing time: Sun 29 Mar 2026 16:00:57 +0000
Manifest this update: Sun 29 Mar 2026 16:00:57 +0000
Manifest next update: Mon 30 Mar 2026 16:00:57 +0000
Files and hashes: 1: hyyq6fD7ed7GhEvqzowiHO9NMsk.crl (hash: o/FxAbEpAwNH4ceF9zmSN1dY4NOZkmGYF9BDhZs0c1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:b6:72:25:dd:5e:14:b9:d3:13:35:59:ff:79:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=872caae9f0fb79dec6844beace8c221cef4d32c9
Validity
Not Before: Mar 29 16:00:57 2026 GMT
Not After : Mar 30 16:00:57 2026 GMT
Subject: CN=15a5b4032fa79e0656f1f2e17eb4f70c0fe60c3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:92:0a:56:09:c5:6f:90:4f:ad:b8:59:f8:07:
e3:e8:16:3b:a2:0c:c5:ed:16:09:a8:3f:31:cd:48:
66:6a:12:98:a4:c3:a9:6b:98:21:85:9c:19:b8:14:
d1:4f:20:72:44:0b:90:de:5c:f7:3f:e3:3b:33:e1:
2f:18:6b:75:54:8d:51:78:a9:7c:2e:a7:1d:68:95:
05:c5:11:9f:14:9f:7f:5a:ba:6c:bb:d8:c2:8f:89:
47:d7:74:4c:e4:eb:80:62:c5:9d:67:55:a6:bc:64:
17:78:34:5a:b8:6e:73:14:e9:98:65:f7:1c:f0:62:
7f:81:73:6b:42:01:c0:32:79:ff:18:37:b6:05:1b:
f1:4b:c0:16:b1:f1:d4:c1:75:c3:02:ef:7d:42:9d:
29:95:f8:1c:11:c8:cc:48:53:8c:e5:67:7c:e7:2e:
4f:55:f2:e7:17:5f:b5:84:04:b3:91:f0:ba:55:c1:
d8:d3:3f:58:3c:01:6a:bd:4a:6a:aa:48:df:e4:68:
fe:02:2f:bb:ef:b8:8b:55:85:2e:07:b6:eb:0c:e9:
3a:89:51:04:c9:3e:f2:00:ed:05:08:14:94:bb:91:
88:0b:f6:fb:62:eb:fa:b9:51:6f:d9:5f:a5:57:99:
7d:cc:ee:80:79:c3:d7:2b:fd:59:f4:db:27:f4:dc:
6a:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A5:B4:03:2F:A7:9E:06:56:F1:F2:E1:7E:B4:F7:0C:0F:E6:0C:3B
X509v3 Authority Key Identifier:
keyid:87:2C:AA:E9:F0:FB:79:DE:C6:84:4B:EA:CE:8C:22:1C:EF:4D:32:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hyyq6fD7ed7GhEvqzowiHO9NMsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/6c791f-ba85-4c03-b791-e5b1672d4b17/1/hyyq6fD7ed7GhEvqzowiHO9NMsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:50:7d:86:b0:a2:32:06:2b:56:75:44:4b:51:16:67:3f:f6:
95:e1:1d:b5:99:a5:ad:f5:a2:f8:26:bb:81:73:27:70:a2:1f:
76:ce:d6:2d:6e:3a:4b:ac:36:7a:e6:9c:ea:26:4d:82:6d:60:
75:0c:6c:7a:86:56:04:cb:22:6d:d4:df:53:80:e2:91:06:3d:
5d:ae:32:fb:42:0d:60:e1:8b:82:46:a8:90:6d:c1:f2:96:d8:
1e:f7:20:22:e8:c7:c1:a5:99:a7:1e:fb:ca:3d:47:b7:f5:99:
48:5a:97:36:84:c2:20:ac:21:12:ca:07:57:62:56:b1:18:02:
cd:2e:ee:7c:c2:2b:ae:9b:eb:96:0c:08:44:41:f6:42:a4:61:
aa:84:2d:6b:8d:17:ad:5f:58:f3:f9:e6:23:8a:6f:85:39:14:
ef:7d:2b:d5:75:76:8d:a8:08:da:68:71:56:d7:09:12:a3:61:
3f:3b:80:c3:cb:0b:4a:1b:af:dc:97:ee:dd:8d:25:35:a5:dc:
30:b7:54:6b:04:5a:b1:42:c1:44:05:1d:67:db:db:53:1c:03:
9b:e6:99:38:04:39:b9:05:fb:70:5a:87:8a:38:f6:b0:ca:d4:
97:a0:84:d6:33:40:50:18:92:e0:2d:fa:46:17:b3:88:0d:63:
01:79:76:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:36:01 2026 by rpki-client