Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft
File: YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft (raw, json)
Hash identifier: iN7Wnab+MnIhcQaLc4UxBFxxzLWrKpCYiL7x0DSAnDg=
Subject key identifier: 7C:86:6A:71:DC:AC:1B:CC:7C:FE:A6:2A:19:C3:13:E3:BB:80:CA:8E
Authority key identifier: 60:0B:11:3E:06:2D:17:EA:23:08:06:B3:4A:21:DE:B5:62:7B:67:74
Certificate issuer: /CN=600b113e062d17ea230806b34a21deb5627b6774
Certificate serial: 019D386604D2649F4173B60EB5C96E8474E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft
Manifest number: 150C
Signing time: Sun 29 Mar 2026 07:01:43 +0000
Manifest this update: Sun 29 Mar 2026 07:01:43 +0000
Manifest next update: Mon 30 Mar 2026 07:01:43 +0000
Files and hashes: 1: YAsRPgYtF-ojCAazSiHetWJ7Z3Q.crl (hash: fBqy4O6KKvCHaCkOD/BT/fD5prMmklguFnxD5K10Vj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:04:d2:64:9f:41:73:b6:0e:b5:c9:6e:84:74:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=600b113e062d17ea230806b34a21deb5627b6774
Validity
Not Before: Mar 29 07:01:43 2026 GMT
Not After : Mar 30 07:01:43 2026 GMT
Subject: CN=7c866a71dcac1bcc7cfea62a19c313e3bb80ca8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2a:90:c6:1b:d0:01:73:85:94:e4:f0:c1:2a:
19:ef:a6:46:63:25:86:af:c8:15:f9:d0:85:7a:12:
a4:54:8f:c1:2e:1d:4f:8c:a9:3d:0e:60:c4:8a:63:
fb:da:6d:2a:74:a7:02:b2:46:1b:91:f4:de:6e:07:
36:58:05:a7:11:cb:f7:b5:5b:3d:4d:dc:c2:b6:c3:
a8:80:fa:f3:1f:77:f3:2b:5c:94:7b:6f:8d:c1:b4:
3e:9c:a5:86:df:ef:51:63:45:dc:64:f1:9d:52:84:
bf:0f:01:0d:0d:79:36:12:bb:e8:41:50:ae:11:f2:
0d:f7:b2:09:2f:fc:90:a5:63:46:23:a2:ba:a7:cd:
19:59:dd:3c:6c:4e:81:e4:19:08:98:24:a4:c4:94:
dc:83:5c:6b:89:7b:36:c9:3a:dc:85:6d:5d:87:fc:
77:7c:61:9e:af:39:34:b7:70:9f:ce:25:fb:94:0d:
91:b3:c3:e4:e3:82:c0:b1:c8:1c:c6:9e:65:18:b7:
9c:d4:30:af:e2:ee:91:37:c3:83:f1:de:55:17:bc:
ee:b4:00:ef:9b:60:14:fc:1a:a8:cd:cd:79:e3:7d:
05:26:c4:52:66:27:2d:7a:f2:a4:3e:a1:25:6f:b0:
8b:bb:3a:43:a0:8c:9f:9a:34:6e:a9:f5:81:6c:7d:
d3:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:86:6A:71:DC:AC:1B:CC:7C:FE:A6:2A:19:C3:13:E3:BB:80:CA:8E
X509v3 Authority Key Identifier:
keyid:60:0B:11:3E:06:2D:17:EA:23:08:06:B3:4A:21:DE:B5:62:7B:67:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/14c8c5-9af5-41b0-9917-a0da45299c6e/1/YAsRPgYtF-ojCAazSiHetWJ7Z3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:21:30:f2:7c:4f:1c:fb:2b:ce:0d:65:f5:f3:ab:3a:6b:64:
78:80:59:31:e7:a7:f3:db:03:27:42:6a:71:f8:cf:7d:80:1b:
de:b9:62:e0:ea:80:f4:a0:f1:a0:f3:3b:e3:76:0a:83:7d:0a:
16:36:bf:34:43:14:8a:4d:95:dd:50:ad:d3:c7:f9:08:6f:d6:
34:23:cf:42:e3:0e:da:1f:fb:db:86:b8:45:17:ac:0d:c8:f5:
30:cc:cb:40:03:0a:d8:cd:89:df:34:01:4c:93:b0:91:2f:45:
69:bc:6f:57:6c:53:e3:d5:08:01:90:46:a7:96:59:90:74:04:
d1:af:d5:0c:60:61:40:6f:c9:62:f6:9b:84:5c:ed:2c:89:7f:
6a:de:d5:91:6c:47:42:70:0a:29:81:80:cb:d3:c9:4d:7c:f3:
30:cb:c2:18:18:c5:b5:ac:8d:0f:99:5e:35:fb:ce:46:dd:07:
4f:29:4c:04:b4:6f:8f:ff:90:da:dd:88:85:3c:6d:73:1f:43:
83:c7:92:73:57:b9:92:b4:00:d2:9a:0d:12:30:9f:7e:01:11:
45:a7:20:c6:df:6b:ac:5f:1f:af:f4:dc:13:65:bc:3e:32:09:
ef:c5:37:04:63:08:75:98:77:3c:37:64:8e:b5:45:16:28:1a:
53:89:25:11
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04ZgTSZJ9Bc7YOtcluhHTjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwMGIxMTNlMDYyZDE3ZWEyMzA4MDZiMzRhMjFkZWI1NjI3
YjY3NzQwHhcNMjYwMzI5MDcwMTQzWhcNMjYwMzMwMDcwMTQzWjAzMTEwLwYDVQQD
Eyg3Yzg2NmE3MWRjYWMxYmNjN2NmZWE2MmExOWMzMTNlM2JiODBjYThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0CqQxhvQAXOFlOTwwSoZ76ZGYyWG
r8gV+dCFehKkVI/BLh1PjKk9DmDEimP72m0qdKcCskYbkfTebgc2WAWnEcv3tVs9
TdzCtsOogPrzH3fzK1yUe2+NwbQ+nKWG3+9RY0XcZPGdUoS/DwENDXk2ErvoQVCu
EfIN97IJL/yQpWNGI6K6p80ZWd08bE6B5BkImCSkxJTcg1xriXs2yTrchW1dh/x3
fGGerzk0t3CfziX7lA2Rs8Pk44LAscgcxp5lGLec1DCv4u6RN8OD8d5VF7zutADv
m2AU/Bqozc15430FJsRSZictevKkPqElb7CLuzpDoIyfmjRuqfWBbH3TNQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHyGanHcrBvMfP6mKhnDE+O7gMqOMB8GA1UdIwQY
MBaAFGALET4GLRfqIwgGs0oh3rVie2d0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUFzUlBnWXRGLW9qQ0FhelNpSGV0V0o3WjNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8xNGM4YzUtOWFmNS00MWIwLTk5MTct
YTBkYTQ1Mjk5YzZlLzEvWUFzUlBnWXRGLW9qQ0FhelNpSGV0V0o3WjNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy8xNGM4YzUtOWFmNS00MWIwLTk5MTctYTBkYTQ1Mjk5YzZl
LzEvWUFzUlBnWXRGLW9qQ0FhelNpSGV0V0o3WjNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXyEw8nxP
HPsrzg1l9fOrOmtkeIBZMeen89sDJ0JqcfjPfYAb3rli4OqA9KDxoPM743YKg30K
Fja/NEMUik2V3VCt08f5CG/WNCPPQuMO2h/724a4RResDcj1MMzLQAMK2M2J3zQB
TJOwkS9FabxvV2xT49UIAZBGp5ZZkHQE0a/VDGBhQG/JYvabhFztLIl/at7VkWxH
QnAKKYGAy9PJTXzzMMvCGBjFtayND5leNfvORt0HTylMBLRvj/+Q2t2IhTxtcx9D
g8eSc1e5krQA0poNEjCffgERRacgxt9rrF8fr/TcE2W8PjIJ78U3BGMIdZh3PDdk
jrVFFigaU4klEQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:57 2026 by rpki-client