Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
File: yS0-Y6HAGI17pgy4TXDk64m4rlE.mft (raw, json)
Hash identifier: GZ1Fw6d2qFBb4ccYeJxRtiOIvA70WICIqbZYywp2ce8=
Subject key identifier: 5A:73:E1:FD:1C:16:B0:1A:66:CD:48:38:58:D3:8A:92:DA:1A:DA:A1
Authority key identifier: C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
Certificate issuer: /CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Certificate serial: 019D38658BB65B65234AED64D053A46FACE2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
Manifest number: 0917
Signing time: Sun 29 Mar 2026 07:01:12 +0000
Manifest this update: Sun 29 Mar 2026 07:01:12 +0000
Manifest next update: Mon 30 Mar 2026 07:01:12 +0000
Files and hashes: 1: yS0-Y6HAGI17pgy4TXDk64m4rlE.crl (hash: o4KmoNFnd2HkJnkTqtH7hA7GESPMowmbxu7fkWUC+rw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:8b:b6:5b:65:23:4a:ed:64:d0:53:a4:6f:ac:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c92d3e63a1c0188d7ba60cb84d70e4eb89b8ae51
Validity
Not Before: Mar 29 07:01:12 2026 GMT
Not After : Mar 30 07:01:12 2026 GMT
Subject: CN=5a73e1fd1c16b01a66cd483858d38a92da1adaa1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:1f:62:c0:72:9b:9b:e0:a9:b7:79:b6:34:7c:
f6:38:e3:0b:2e:ce:6d:a0:a3:45:2c:70:89:b5:92:
c9:dd:04:dc:17:74:7b:fb:24:30:53:56:96:73:eb:
f5:07:2f:94:21:d2:bf:d6:10:2f:8d:00:61:b2:00:
5e:69:b1:25:5e:e0:3f:f3:ff:13:46:7e:eb:5a:bb:
ff:da:81:87:9d:20:d1:ff:86:15:4d:c6:2c:bf:03:
74:d6:c2:02:27:f9:1f:8b:d6:53:63:e3:eb:90:db:
7e:2d:08:73:b8:bf:3d:fb:e2:18:49:c3:78:55:e1:
96:45:aa:5d:94:e5:12:07:c4:13:56:3f:1a:45:5a:
ed:fb:9c:ee:05:b0:8e:51:b5:3b:0f:ae:14:58:25:
4a:c7:7a:81:81:54:0d:37:ef:13:eb:01:4c:33:79:
16:11:5a:0d:f1:44:ec:73:ee:ae:7c:3b:76:22:03:
ae:a6:f6:e0:2c:0a:65:0c:50:78:67:0b:5b:3a:a3:
09:73:6a:3e:41:cd:14:64:16:db:57:b3:e7:45:9d:
97:a3:ab:f3:0a:bf:ab:42:d2:9c:79:af:53:23:8c:
31:2a:e2:ab:d8:eb:73:e9:2e:fe:6f:c0:37:89:bf:
7e:99:f1:91:20:54:94:63:82:3d:c1:48:3e:9f:5c:
98:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:73:E1:FD:1C:16:B0:1A:66:CD:48:38:58:D3:8A:92:DA:1A:DA:A1
X509v3 Authority Key Identifier:
keyid:C9:2D:3E:63:A1:C0:18:8D:7B:A6:0C:B8:4D:70:E4:EB:89:B8:AE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yS0-Y6HAGI17pgy4TXDk64m4rlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/a7c39c-61c7-41d6-a816-7fef23f97a34/1/yS0-Y6HAGI17pgy4TXDk64m4rlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:4b:d7:26:99:5c:5e:f0:ae:bd:9f:ef:a0:01:71:c9:87:10:
6c:68:d0:31:90:dd:41:16:dc:e2:32:32:25:94:ad:2e:69:6e:
35:78:ea:58:e5:a7:21:fd:09:5f:aa:a7:1b:cd:da:05:20:99:
69:40:ca:a6:18:82:51:c8:8e:28:cd:a9:78:86:21:d1:6d:01:
b8:c2:14:0b:cd:aa:52:20:ab:60:55:c8:a4:c1:28:c9:65:4e:
44:0e:81:be:49:14:79:43:cd:3a:5c:07:44:82:af:e1:35:33:
60:b1:2f:03:52:da:7c:f5:db:61:d5:be:be:26:d9:d9:c0:92:
22:44:ac:c8:8d:0b:39:20:72:09:a9:ee:3d:f4:a6:88:43:e8:
1b:11:8a:f4:ed:de:28:7c:5d:06:c7:5c:11:4e:c0:0c:c5:e5:
97:c1:7b:c6:a8:56:80:dd:60:14:70:61:e8:08:e3:a0:a8:a9:
81:b4:e5:71:ac:ca:9e:a3:60:dd:20:7e:c8:39:39:33:39:50:
48:95:a2:8c:14:45:7a:76:07:55:c5:9f:9f:af:48:8c:47:4a:
14:55:05:9e:9a:0e:a2:15:1c:1b:95:83:98:f7:1f:10:99:9b:
b2:b1:ec:64:03:be:7a:93:36:d8:79:10:07:84:e6:bf:2d:08:
c7:fe:81:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:50:59 2026 by rpki-client