Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
File: pyiF7ybebTsiYKtj0sXKD4Y33wM.mft (raw, json)
Hash identifier: 2dmL3CHlk9PGL+UuMKvwH12gcDV8BclXQBtcvUpVjec=
Subject key identifier: 5B:7D:08:96:87:D6:F4:5F:17:B6:E8:12:B1:0B:F8:35:3F:57:BB:85
Authority key identifier: A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03
Certificate issuer: /CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
Certificate serial: 019D3865FC496D47E36661C63B9C94EFFFD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
Manifest number: 17A2
Signing time: Sun 29 Mar 2026 07:01:40 +0000
Manifest this update: Sun 29 Mar 2026 07:01:40 +0000
Manifest next update: Mon 30 Mar 2026 07:01:40 +0000
Files and hashes: 1: pyiF7ybebTsiYKtj0sXKD4Y33wM.crl (hash: AvPEmM+cD80rB2hmiO7h3PFGnJkVmlHsG/UTkBGG+l4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:fc:49:6d:47:e3:66:61:c6:3b:9c:94:ef:ff:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a72885ef26de6d3b2260ab63d2c5ca0f8637df03
Validity
Not Before: Mar 29 07:01:40 2026 GMT
Not After : Mar 30 07:01:40 2026 GMT
Subject: CN=5b7d089687d6f45f17b6e812b10bf8353f57bb85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ca:0a:72:2e:42:90:2f:69:33:11:6b:be:27:
48:11:15:62:78:16:97:1a:94:b1:7b:2e:c0:63:cf:
b2:e6:0a:22:25:41:79:59:74:f3:b8:29:f2:5f:7a:
6c:24:95:94:30:49:0b:12:da:56:18:45:4c:23:d9:
3f:f3:91:91:43:1c:8f:55:e5:ba:d0:9c:aa:17:80:
51:91:b5:88:66:51:38:d0:9f:95:e2:a4:66:7a:f3:
2e:73:a7:53:43:55:90:c9:de:fa:02:79:a2:04:72:
10:78:cc:a1:12:ea:9a:d5:62:f5:dd:3d:13:cc:cf:
72:4e:81:24:6d:63:a7:28:a7:7d:94:16:b0:5b:21:
20:18:30:c6:03:53:7a:55:8f:d9:59:4b:08:e7:79:
74:a2:28:5c:11:de:9e:c6:37:01:88:f0:59:dc:01:
fd:e4:37:6b:d1:16:31:d7:cc:d6:4f:cf:86:f9:88:
5c:52:5e:26:9f:58:db:f3:61:4c:f3:84:dc:94:d4:
e1:62:38:7f:bd:41:a5:27:c7:d9:1a:f2:0f:62:98:
c1:0d:6a:47:d9:1a:0a:66:8b:ba:91:ec:64:75:42:
0a:23:08:53:cf:64:f1:4a:b4:2f:85:20:97:b9:c6:
2e:1e:3a:59:4c:bd:99:93:4d:e7:86:41:07:ce:c1:
ae:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:7D:08:96:87:D6:F4:5F:17:B6:E8:12:B1:0B:F8:35:3F:57:BB:85
X509v3 Authority Key Identifier:
keyid:A7:28:85:EF:26:DE:6D:3B:22:60:AB:63:D2:C5:CA:0F:86:37:DF:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pyiF7ybebTsiYKtj0sXKD4Y33wM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/ed259b-d7bf-4de4-bbf0-0e7180f9874d/1/pyiF7ybebTsiYKtj0sXKD4Y33wM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:ba:df:2e:39:20:ef:75:c8:8b:40:27:22:26:91:30:b2:3b:
bc:86:a2:86:a0:52:94:d3:29:b1:5b:7f:1d:88:bb:0c:55:14:
6b:67:df:d4:08:fe:14:18:ed:16:5c:c9:99:8f:2e:1c:a0:12:
81:73:38:88:4f:a3:29:09:d9:16:cd:0b:0d:21:f2:7a:12:3c:
00:c9:64:74:a4:5d:bb:6b:7c:89:dd:80:96:4f:93:83:a1:6c:
19:f4:76:31:df:bd:27:3e:d9:56:4c:ad:05:4a:56:f5:97:97:
90:1c:3e:57:aa:2a:fe:ec:c7:a2:ff:ea:91:45:3e:b4:29:a8:
23:9d:7f:06:06:ff:93:55:20:ce:fd:4c:a3:c2:80:84:6b:4c:
d8:e9:a4:3e:26:49:40:89:eb:4c:f6:6e:07:8c:77:d2:78:78:
5b:4a:b6:e0:b4:95:2a:ce:e4:26:87:63:d4:53:b6:13:01:9c:
62:c9:8d:a2:d1:74:83:be:41:9b:09:5f:a8:ad:cf:36:0c:10:
d0:5a:0e:39:d0:3e:21:4e:a1:a3:03:15:d7:a7:18:91:9b:0b:
8e:84:ac:99:14:7e:00:89:cd:fc:70:c5:93:6f:20:66:b5:34:
f4:f9:91:21:3a:e2:e1:c2:b6:7d:d6:d3:64:52:db:fa:57:5d:
22:f4:67:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:49:49 2026 by rpki-client