Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
File: r_yn9tponMVFu7uVA5i6xAeXmqM.mft (raw, json)
Hash identifier: nz8xkdazD21NfxTNmq106qZdqn2tMzb45j50Es31bM8=
Subject key identifier: FF:73:23:A7:0A:86:5C:B8:92:DD:07:B0:81:46:DB:ED:E0:6F:E8:CB
Authority key identifier: AF:FC:A7:F6:DA:68:9C:C5:45:BB:BB:95:03:98:BA:C4:07:97:9A:A3
Certificate issuer: /CN=affca7f6da689cc545bbbb950398bac407979aa3
Certificate serial: 019D3909A5BBF58F23E2F75011CE274AA53C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r_yn9tponMVFu7uVA5i6xAeXmqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
Manifest number: 05F9
Signing time: Sun 29 Mar 2026 10:00:26 +0000
Manifest this update: Sun 29 Mar 2026 10:00:26 +0000
Manifest next update: Mon 30 Mar 2026 10:00:26 +0000
Files and hashes: 1: r_yn9tponMVFu7uVA5i6xAeXmqM.crl (hash: QccbDWVVOKD5gCidlRWu3pHjcZB2N73udoYgNiv41CM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/r_yn9tponMVFu7uVA5i6xAeXmqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:a5:bb:f5:8f:23:e2:f7:50:11:ce:27:4a:a5:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=affca7f6da689cc545bbbb950398bac407979aa3
Validity
Not Before: Mar 29 10:00:26 2026 GMT
Not After : Mar 30 10:00:26 2026 GMT
Subject: CN=ff7323a70a865cb892dd07b08146dbede06fe8cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:36:ee:99:22:e5:64:7d:56:b3:2c:99:00:cd:
bb:b6:37:45:10:53:86:f3:a8:ff:46:83:af:17:02:
1a:41:b5:7b:5f:8b:dd:8f:38:bd:2b:af:0c:df:ed:
51:ce:ac:3c:91:9c:da:7e:63:fb:68:95:86:37:50:
49:a3:2c:72:72:85:a3:11:61:7b:f1:59:6e:17:53:
8d:97:44:2a:cc:10:4e:a8:f6:37:01:6b:7a:a2:1d:
0b:4e:72:78:85:25:bb:fb:43:4c:72:19:e5:d2:6b:
1b:dd:70:d6:d1:a3:7f:96:44:4e:bf:72:a8:53:94:
d2:3e:de:01:29:9c:7f:90:81:e0:40:26:84:35:4e:
69:24:43:b4:bf:8e:01:55:23:57:31:22:49:8f:49:
ee:1b:66:59:85:ff:43:c1:ea:1b:cd:12:27:c7:c0:
a7:5e:52:8d:6c:48:24:1e:4a:90:75:19:97:0d:cd:
b5:f7:4e:3c:01:93:4f:73:27:18:fa:31:e2:0e:50:
4f:f8:c3:f9:89:11:50:44:6e:cc:10:89:bd:14:3a:
88:52:0c:1b:21:db:75:fc:5c:a9:88:71:75:32:bf:
a8:2c:31:c3:b0:f6:38:ed:23:1a:33:cd:f6:6a:9c:
dd:88:93:07:af:3c:05:0c:34:30:73:fe:da:26:c2:
5d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:73:23:A7:0A:86:5C:B8:92:DD:07:B0:81:46:DB:ED:E0:6F:E8:CB
X509v3 Authority Key Identifier:
keyid:AF:FC:A7:F6:DA:68:9C:C5:45:BB:BB:95:03:98:BA:C4:07:97:9A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r_yn9tponMVFu7uVA5i6xAeXmqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/19ba97-19af-4f88-96aa-1985b0b0825e/1/r_yn9tponMVFu7uVA5i6xAeXmqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:8e:8d:90:99:ed:cb:fc:c8:56:2d:60:a4:cd:14:2e:fa:19:
eb:99:ea:60:a0:a1:42:16:2a:79:28:ae:af:dc:56:76:9c:55:
b2:40:05:44:a5:1c:77:87:20:3f:1b:5b:9a:71:c3:b3:fd:72:
c3:08:0c:fc:7d:45:85:d1:cc:db:6d:fe:03:0b:e6:6e:e4:03:
fd:69:1b:ee:dd:64:ea:55:e6:fd:72:b2:2f:a7:e1:d2:42:f0:
dd:9a:00:79:eb:4a:75:0a:07:49:a7:89:3e:9d:8d:05:38:c0:
9e:b8:be:2b:ad:1b:f7:6e:81:c7:3c:7b:5d:6b:b5:7a:f1:04:
32:60:6b:cb:f0:69:ba:23:25:a9:b2:a1:52:fd:2d:e1:19:20:
67:6b:cf:26:7e:85:c9:5f:4a:a5:85:4d:6c:be:7d:25:65:11:
bf:70:c5:94:20:df:55:aa:10:f8:c6:30:ae:3f:2e:79:7c:75:
c4:67:88:f9:08:c4:c8:39:ef:bd:f1:58:a1:26:d0:e1:04:42:
69:95:0a:31:41:73:1e:a1:34:8c:59:4b:e4:86:78:3b:e8:b5:
4f:fb:5e:57:21:4c:a1:6f:3c:25:d5:42:d1:20:0a:93:71:b3:
07:5d:9a:0a:f3:30:8b:54:25:89:6b:a5:06:49:63:ad:c4:9e:
b7:92:72:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:46:02 2026 by rpki-client