Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
File: YdOLN5gKDfrpz5osW1at6X-vUC4.mft (raw, json)
Hash identifier: 8gkGa9wlEMFApK3smTfFKMFrSYCWUh9PrbcrXu20KFM=
Subject key identifier: 98:98:C7:87:16:DC:D9:CB:BC:E7:17:62:05:57:32:57:94:9D:B9:C8
Authority key identifier: 61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E
Certificate issuer: /CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e
Certificate serial: 019D382E9FCA789A272BF8025C0693945465
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
Manifest number: 0D1A
Signing time: Sun 29 Mar 2026 06:01:12 +0000
Manifest this update: Sun 29 Mar 2026 06:01:12 +0000
Manifest next update: Mon 30 Mar 2026 06:01:12 +0000
Files and hashes: 1: YdOLN5gKDfrpz5osW1at6X-vUC4.crl (hash: dcPO3/mqdCJi8ugXSGZ7Z4eNJ7DuRYJv5dsyLA7cHes=)
2: kGLxA9onzrf8JLssDr-KbBw0Iso.roa (hash: iCYCJqbAYcmF46KnTkB1atw07n5B8BjwCirxzmxkzlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:9f:ca:78:9a:27:2b:f8:02:5c:06:93:94:54:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61d38b37980a0dfae9cf9a2c5b56ade97faf502e
Validity
Not Before: Mar 29 06:01:12 2026 GMT
Not After : Mar 30 06:01:12 2026 GMT
Subject: CN=9898c78716dcd9cbbce7176205573257949db9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1d:3f:7b:51:09:c8:8d:62:ff:71:83:39:53:
2b:82:e7:f6:20:79:db:1e:68:b7:53:7e:f6:bf:7e:
59:1c:5f:0f:87:1e:c4:b9:4b:13:7f:a3:32:22:43:
ad:71:f3:ce:7d:15:ff:6f:13:a7:8c:c5:ff:ab:96:
95:d0:bf:40:9e:09:4c:22:53:b1:d1:8c:80:48:d2:
de:39:35:7b:e4:2a:d5:5d:b1:c5:3a:d0:d3:03:97:
00:b4:9c:cb:5a:89:48:5d:40:b7:c0:61:8a:3f:c0:
53:2f:e0:27:98:27:70:33:2f:29:70:d5:0d:70:52:
ee:00:8f:68:21:2c:b8:7f:4d:30:0f:c3:ba:e0:4f:
85:cf:d0:1e:73:46:98:f3:9a:90:ba:7e:5b:a0:c3:
ea:04:e8:1e:14:b2:9a:8d:1b:1a:fa:82:19:1a:6e:
dc:de:b5:14:91:b2:d8:7d:22:49:1f:82:9d:6e:f5:
4b:80:d4:ff:75:e3:3e:3e:45:98:85:22:b0:c1:37:
39:39:94:f0:24:b7:70:3f:a8:44:8a:0c:cb:67:5d:
56:dc:c7:29:34:ff:e0:aa:7e:74:80:5e:90:35:16:
84:a9:4f:94:a5:8e:69:97:1d:80:71:ae:da:b6:7b:
ec:ea:41:99:4b:26:b1:28:4c:e4:f2:71:39:57:d5:
4e:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:98:C7:87:16:DC:D9:CB:BC:E7:17:62:05:57:32:57:94:9D:B9:C8
X509v3 Authority Key Identifier:
keyid:61:D3:8B:37:98:0A:0D:FA:E9:CF:9A:2C:5B:56:AD:E9:7F:AF:50:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YdOLN5gKDfrpz5osW1at6X-vUC4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/69746c-501a-43e8-b887-7d448b396776/1/YdOLN5gKDfrpz5osW1at6X-vUC4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:cf:c3:95:96:96:ba:94:ae:47:17:9d:08:35:2e:bb:8a:81:
fc:06:f5:2d:20:90:62:12:54:c9:83:a9:d4:12:2d:e3:4d:22:
15:4b:33:49:58:10:94:c3:b3:51:22:e2:11:38:a0:02:be:8b:
63:01:f0:73:e9:cb:2a:96:c8:45:3a:a6:23:6f:16:fb:3b:b4:
b9:6a:ff:54:27:aa:fd:64:78:c0:1d:b9:74:b7:10:56:3d:cc:
3b:5e:7a:d9:bd:ef:bf:9c:c4:dc:69:84:7e:f6:ac:47:fe:cb:
02:53:80:63:58:29:40:d7:7e:02:75:e9:37:88:27:42:a0:c8:
67:76:41:da:89:63:1f:f7:ac:a4:98:14:c7:b7:29:30:2d:4b:
a1:5e:ee:aa:11:2c:b5:19:9e:0a:6c:bd:40:b4:36:51:21:47:
30:6f:13:44:94:25:8e:9f:05:50:96:65:59:90:17:ef:34:01:
0c:0e:f5:e2:a8:af:86:f5:cd:56:8a:7f:b5:a5:52:7a:33:a6:
aa:93:5d:8d:bc:6b:e9:f9:eb:1d:92:10:6c:b4:ae:ce:11:af:
3c:44:59:dd:fa:4d:26:58:88:9e:f1:0d:3e:3f:7e:74:e7:05:
90:9a:99:48:91:02:d1:ff:aa:59:8e:c1:01:35:47:3b:83:a4:
21:52:01:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:52:20 2026 by rpki-client