Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json)
Hash identifier: qwR3WBAjlHv1lGpNKiPjF5BNPfaQhasz/ePRVBsJVZI=
Subject key identifier: D5:8A:3F:41:2F:5B:A9:B1:EA:3E:0A:18:A7:B7:2E:41:AD:36:85:E4
Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c
Certificate serial: 019D386593DA752E3FDBE2E37EAAEE6200FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
Manifest number: 131D
Signing time: Sun 29 Mar 2026 07:01:14 +0000
Manifest this update: Sun 29 Mar 2026 07:01:14 +0000
Manifest next update: Mon 30 Mar 2026 07:01:14 +0000
Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: O9jeLHsAZC7rW6D6if8mXp4604wewevYVUL3wOwzA18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:93:da:75:2e:3f:db:e2:e3:7e:aa:ee:62:00:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6117d6158043150b0ad224a0648df0185706019c
Validity
Not Before: Mar 29 07:01:14 2026 GMT
Not After : Mar 30 07:01:14 2026 GMT
Subject: CN=d58a3f412f5ba9b1ea3e0a18a7b72e41ad3685e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d4:3b:07:2e:75:b4:78:19:f0:80:ee:0a:b7:
51:0c:b6:73:be:65:b9:ac:05:1e:7d:c0:52:69:5d:
fa:2f:03:3f:79:13:2b:a4:e4:fe:9f:3a:f2:47:15:
fc:33:e8:5b:3e:49:0c:60:bf:4f:84:2d:f9:29:eb:
4c:79:89:22:b9:df:04:0e:5f:67:2c:e0:2b:73:ba:
84:80:a2:2b:47:7b:a5:d0:8a:32:74:2e:f5:88:d2:
71:68:90:b8:0e:47:56:74:f5:bf:07:6e:36:ed:53:
6d:dd:6f:02:40:5f:8d:59:9b:01:9a:56:3d:aa:80:
3f:ad:00:7d:68:4a:bf:ff:af:4c:4b:9d:0a:01:8a:
86:a7:ee:c0:7e:5d:19:a7:96:9a:d5:11:54:70:c4:
06:1c:89:b0:fe:c2:73:4c:ca:2d:f1:83:d6:3b:86:
6d:9d:50:ae:bb:6c:69:9f:53:b5:ba:82:ca:be:03:
44:23:e2:87:b5:4e:5a:6d:b5:b5:16:5e:2b:56:69:
d4:3d:71:d4:0f:06:0a:a7:a9:e9:8b:7e:1f:5e:94:
68:36:62:1f:3f:2f:a9:be:d4:ac:a9:fe:8c:7a:6a:
f5:69:f2:97:33:e1:31:44:a8:43:91:56:3b:58:41:
50:f9:c7:5c:58:29:96:28:5b:19:1a:ff:be:5d:3e:
c4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:8A:3F:41:2F:5B:A9:B1:EA:3E:0A:18:A7:B7:2E:41:AD:36:85:E4
X509v3 Authority Key Identifier:
keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:91:71:a1:d8:21:f9:b1:e8:ec:38:7e:22:e1:c3:ca:b4:b2:
0a:41:3d:1e:63:c3:45:3b:73:8b:4a:af:3b:ff:c0:a8:f7:09:
7c:73:a5:5a:c7:5f:6b:ab:4e:db:cc:b7:c1:fa:ee:f7:60:14:
0c:17:64:01:dd:c4:0d:d2:65:36:2e:f8:db:86:ae:68:8b:69:
11:b9:52:ce:3d:43:5d:85:e1:4d:1b:de:e9:08:19:78:32:d9:
32:17:7e:a9:6a:d2:cd:3f:9c:f2:ca:ff:50:49:38:6f:33:a4:
f5:73:e6:b0:80:ae:be:97:16:4b:86:bf:b0:5f:e5:51:3d:c9:
73:6a:74:f4:b7:90:6a:9f:5c:7a:f1:1c:d1:7b:40:6c:1f:f5:
29:5b:1d:14:ef:e5:9e:21:94:3e:7b:f7:92:04:4a:81:45:18:
dd:97:a0:85:20:af:a2:d4:17:3d:89:8f:9d:4b:d9:19:48:56:
93:f7:75:20:97:54:5e:72:8f:83:0e:c1:7f:86:f3:92:84:ea:
f8:95:0e:bb:ce:78:6c:b4:52:74:55:7d:1c:18:49:6d:9a:77:
63:7b:18:a5:8f:02:77:e8:cb:a6:7e:13:48:eb:3f:79:24:3e:
f4:b9:e1:1d:6f:f1:60:75:ea:6e:18:35:3a:1b:ca:ae:e1:d4:
f0:5d:b8:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:50:11 2026 by rpki-client