Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft
File: yoaOeySqNaTdEKyVmfBkqpadAx0.mft (raw, json)
Hash identifier: gkzDXYzQvD7Z70qhf/ZFvfcDz2ylELc/t5ChfChZVZc=
Subject key identifier: 11:AD:FB:DD:D6:9E:19:8B:4E:9E:D5:9B:88:3D:25:E4:E6:E4:89:6E
Authority key identifier: CA:86:8E:7B:24:AA:35:A4:DD:10:AC:95:99:F0:64:AA:96:9D:03:1D
Certificate issuer: /CN=ca868e7b24aa35a4dd10ac9599f064aa969d031d
Certificate serial: 019D39777E4B1466CA7537B8E4F0ECF2D417
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yoaOeySqNaTdEKyVmfBkqpadAx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft
Manifest number: 0501
Signing time: Sun 29 Mar 2026 12:00:25 +0000
Manifest this update: Sun 29 Mar 2026 12:00:25 +0000
Manifest next update: Mon 30 Mar 2026 12:00:25 +0000
Files and hashes: 1: yoaOeySqNaTdEKyVmfBkqpadAx0.crl (hash: KTQ/P1m68xrc+/vVsZOkS/uSr32LJ60bQxWfjSw8ghM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/yoaOeySqNaTdEKyVmfBkqpadAx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:7e:4b:14:66:ca:75:37:b8:e4:f0:ec:f2:d4:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca868e7b24aa35a4dd10ac9599f064aa969d031d
Validity
Not Before: Mar 29 12:00:25 2026 GMT
Not After : Mar 30 12:00:25 2026 GMT
Subject: CN=11adfbddd69e198b4e9ed59b883d25e4e6e4896e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c5:23:b6:75:9b:eb:70:17:aa:49:38:83:01:
a2:e2:84:cc:bd:54:65:50:e9:e7:27:05:90:83:25:
48:99:82:35:cf:ae:00:f2:4b:55:ba:b4:0e:c6:34:
da:5b:a8:f0:37:54:8e:92:d6:0f:73:82:c9:b8:37:
0f:33:81:c3:cf:de:c1:af:ea:b7:6b:b0:05:49:e7:
1a:5a:ee:82:bb:09:52:a9:39:f6:3d:b3:76:da:68:
66:c5:81:b9:35:85:4d:ae:7c:a2:85:0a:51:61:70:
9a:ac:bd:fa:07:52:21:7b:73:98:91:fc:16:c1:e3:
8a:72:a1:3f:e8:bf:06:35:41:f4:13:8a:5f:6b:da:
25:77:a3:25:64:9b:44:d3:e9:12:cc:34:be:a6:e0:
40:9d:1e:37:8e:05:a9:75:33:98:dc:7a:f5:6d:b5:
16:5f:03:cf:d1:2b:9a:67:d5:2b:1d:f6:64:37:a2:
3a:b7:a2:1b:d6:b0:2f:86:8d:f0:ba:c8:90:5e:c1:
1f:a7:9a:60:5e:56:43:d6:9d:11:41:2d:13:c8:b0:
fe:85:a8:8e:92:2f:8a:18:d2:de:d2:d9:78:54:43:
4d:81:45:93:ca:11:ce:4b:b0:6c:1d:7e:56:9f:05:
a1:a4:fc:ae:87:1c:c0:49:95:4d:27:ac:f0:ae:5f:
85:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:AD:FB:DD:D6:9E:19:8B:4E:9E:D5:9B:88:3D:25:E4:E6:E4:89:6E
X509v3 Authority Key Identifier:
keyid:CA:86:8E:7B:24:AA:35:A4:DD:10:AC:95:99:F0:64:AA:96:9D:03:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yoaOeySqNaTdEKyVmfBkqpadAx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f327eb-d71a-4279-af22-b8d06f46aec3/1/yoaOeySqNaTdEKyVmfBkqpadAx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:6f:3b:1f:20:f8:e4:de:9c:e9:35:15:b2:91:df:2a:58:61:
a1:8c:a0:cf:38:c1:8b:27:13:7b:ce:c8:2c:94:09:e6:81:bc:
da:09:e1:79:32:fd:f9:ea:ed:3a:7d:8a:ef:63:77:c1:77:c4:
3b:4e:cf:7c:4b:40:88:8d:3d:fd:99:e7:5d:63:a8:26:1f:24:
8d:49:7c:24:51:9a:be:a5:63:55:8b:90:53:02:52:f7:0c:b4:
2a:e5:d0:fa:da:13:3f:f5:09:6f:30:54:83:20:0a:14:d5:5b:
2b:3f:00:21:72:58:cd:e5:1c:d6:19:b5:ad:34:37:da:ac:3b:
2c:21:77:9e:0e:5a:68:63:0f:df:fe:b5:e0:62:b4:d6:3c:e1:
bb:b7:09:b1:17:47:98:44:a9:89:3a:51:82:0b:5c:57:c6:09:
6f:82:e5:4e:99:11:49:e8:27:a6:b4:d5:7c:85:de:92:5c:7d:
4d:74:a7:f8:41:67:e5:d3:d1:32:d0:38:52:c0:46:1b:d2:57:
1e:d3:c4:39:d2:e5:aa:01:3c:ae:d6:5c:a2:da:32:92:9a:e7:
47:1c:e7:08:6a:0d:d0:58:df:ae:c2:4d:62:2e:22:86:5a:1a:
a8:45:58:07:e6:c9:ab:f9:dd:03:ef:02:3c:8b:74:7b:0d:e7:
37:0e:80:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:48:47 2026 by rpki-client