Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
File: JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft (raw, json)
Hash identifier: wCPO2LUS50prlHxHTVDz7FadDHP5Nq6B/wvaxnKRyII=
Subject key identifier: B1:9D:89:21:86:9F:B6:AA:20:52:05:D7:B7:11:6E:89:93:9A:6A:76
Authority key identifier: 25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
Certificate issuer: /CN=258906554d8c8b428ede8cb35026860d3d7771df
Certificate serial: 019D38D3A6D406CD3A478EB06742EDF9F777
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
Manifest number: 0F6F
Signing time: Sun 29 Mar 2026 09:01:27 +0000
Manifest this update: Sun 29 Mar 2026 09:01:27 +0000
Manifest next update: Mon 30 Mar 2026 09:01:27 +0000
Files and hashes: 1: JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl (hash: WHELv5KWG7v3wmE66zZpYBXbB3CwvW1wdDkTVxrL6xM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:a6:d4:06:cd:3a:47:8e:b0:67:42:ed:f9:f7:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=258906554d8c8b428ede8cb35026860d3d7771df
Validity
Not Before: Mar 29 09:01:27 2026 GMT
Not After : Mar 30 09:01:27 2026 GMT
Subject: CN=b19d8921869fb6aa205205d7b7116e89939a6a76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:a6:59:54:94:b9:48:f8:0b:36:75:bd:2d:02:
c9:4e:b7:82:bb:50:1b:37:bc:17:8b:05:13:c5:54:
bd:60:0e:0f:e5:26:83:07:d6:f0:67:87:52:90:fe:
fb:30:04:1b:3e:e0:6e:5b:c6:f2:50:dd:e2:17:30:
ff:59:dd:68:18:66:4b:3e:67:b5:ec:c4:80:1a:99:
c6:e3:49:4d:86:73:cf:15:13:49:ac:50:2c:53:80:
6f:a2:36:47:cf:ea:cb:88:84:d1:87:cd:15:9b:80:
83:c6:12:a1:9c:94:30:18:d5:3b:32:84:8f:09:05:
d4:f5:34:9b:fe:b8:bf:23:e7:74:3c:c0:c6:bf:d5:
03:55:78:24:4f:bf:9d:85:f4:ce:95:91:02:26:27:
4c:de:21:0a:66:f8:a1:f6:d5:c5:55:66:1e:34:01:
7d:69:95:9f:33:81:6d:cf:06:5e:68:77:db:c9:d3:
48:8e:00:ee:f9:c3:3a:ef:06:aa:c3:b9:2e:3a:5f:
87:6a:3b:ae:ac:54:80:58:ff:4a:72:1f:4b:d7:8b:
f8:8d:70:42:1c:4d:c4:cd:40:c1:ce:3d:59:96:cb:
7b:ea:4f:04:82:37:f7:9d:be:9a:94:62:ce:ac:86:
9e:98:12:10:62:84:85:02:29:59:e3:cf:0e:64:e7:
1b:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:9D:89:21:86:9F:B6:AA:20:52:05:D7:B7:11:6E:89:93:9A:6A:76
X509v3 Authority Key Identifier:
keyid:25:89:06:55:4D:8C:8B:42:8E:DE:8C:B3:50:26:86:0D:3D:77:71:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JYkGVU2Mi0KO3oyzUCaGDT13cd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/9b57ab-6ca2-4aa8-8387-afdd53827e93/1/JYkGVU2Mi0KO3oyzUCaGDT13cd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:4d:c8:7e:e4:10:27:1f:64:8a:4a:45:6c:ea:2d:b4:f6:1a:
f0:02:6d:18:81:ca:f3:6e:eb:b3:00:78:38:9b:bc:2d:8d:f5:
8a:7d:e1:2a:ee:bb:01:4a:94:1d:69:d9:cb:05:d0:0c:85:b0:
6d:bf:e7:0b:94:d1:83:f5:7d:79:28:56:33:b7:5f:7e:d1:b9:
aa:d3:83:5a:7d:25:94:5a:98:7d:d1:51:0e:a1:11:e8:f3:3a:
0c:3b:8d:59:99:f6:5a:1a:26:cb:da:50:c9:8c:f1:8a:8e:53:
c3:de:6e:2b:6b:f6:8a:40:df:4f:b7:a6:1f:f8:94:54:5c:91:
ce:81:f4:a8:f4:6b:b0:f2:00:19:5a:9e:4b:77:e1:dc:84:e3:
cd:d8:72:94:8a:3f:3a:5c:51:41:fc:8b:ff:e4:8c:a9:29:cd:
61:db:21:7e:6a:c9:06:b4:dd:8b:56:bf:50:6c:75:5a:a0:7d:
c2:ba:5d:9e:46:f9:72:35:fb:65:c2:15:c4:fe:b9:7a:8f:99:
fc:f8:dc:60:d9:d5:e8:e2:f1:02:66:60:da:44:df:77:67:31:
d6:c4:24:a1:7a:82:47:57:12:9e:fb:b6:35:1f:70:17:9d:a9:
0f:f3:94:35:16:da:e6:ee:a5:e6:36:83:71:e5:d9:e2:b3:5f:
20:27:01:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:09:05 2026 by rpki-client