Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
File: cnOYybFuqY0iKkwpyvey68mE8oI.mft (raw, json)
Hash identifier: zl9vmIyV8zflRgtx+/oP7IpJUnyDkLJVwG1WitZIjsM=
Subject key identifier: 6A:64:59:59:D7:87:0D:9F:F7:64:6D:04:75:7B:8E:B5:27:F6:55:15
Authority key identifier: 72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
Certificate issuer: /CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Certificate serial: 019D3865E15F1C203574B607B01B68BAC59F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
Manifest number: 0427
Signing time: Sun 29 Mar 2026 07:01:34 +0000
Manifest this update: Sun 29 Mar 2026 07:01:34 +0000
Manifest next update: Mon 30 Mar 2026 07:01:34 +0000
Files and hashes: 1: cnOYybFuqY0iKkwpyvey68mE8oI.crl (hash: 67LwVqrVWlK/krIb/ccM+Bx3BrtXf0Az6DLw1K1q5bs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:e1:5f:1c:20:35:74:b6:07:b0:1b:68:ba:c5:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=727398c9b16ea98d222a4c29caf7b2ebc984f282
Validity
Not Before: Mar 29 07:01:34 2026 GMT
Not After : Mar 30 07:01:34 2026 GMT
Subject: CN=6a645959d7870d9ff7646d04757b8eb527f65515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ee:f0:32:b3:7f:7a:5e:27:2e:54:2c:db:46:
89:ce:d6:fe:97:0d:d4:9f:d5:af:5d:bb:16:7c:12:
99:fa:a7:28:19:15:48:b1:d9:8b:de:18:52:64:51:
1d:6c:86:08:55:96:d6:e1:5b:d9:3f:f9:b0:67:0e:
e7:09:12:91:23:83:84:bc:dd:04:ec:02:b2:1a:5d:
cb:c8:14:da:24:57:62:08:f1:31:e0:b2:3c:72:1e:
8e:65:75:ff:d3:10:f5:4f:1d:40:5c:61:14:37:e6:
db:54:03:3c:02:3c:3a:3b:e6:12:fa:38:e8:ca:1c:
f8:13:f3:37:8f:41:98:8c:a8:a9:be:1e:e4:00:0f:
d0:f3:eb:8f:9c:c5:ae:42:57:c3:c3:64:47:60:b7:
4b:ed:fa:c3:61:58:d6:ad:39:86:f1:59:cd:88:89:
31:21:e9:a1:46:41:58:71:4a:7a:40:af:96:2e:79:
81:6f:67:12:1c:86:25:14:3d:9f:90:66:3e:b8:c4:
c7:0a:5a:16:4f:3d:e1:2e:79:4c:f7:8c:83:70:69:
12:c4:85:c4:b6:8b:17:5f:06:91:54:0f:90:10:e9:
f7:81:a9:75:24:46:64:ea:d2:e7:97:a3:be:74:27:
0d:44:ba:65:9c:60:27:15:f4:df:e1:51:6c:c8:71:
58:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:64:59:59:D7:87:0D:9F:F7:64:6D:04:75:7B:8E:B5:27:F6:55:15
X509v3 Authority Key Identifier:
keyid:72:73:98:C9:B1:6E:A9:8D:22:2A:4C:29:CA:F7:B2:EB:C9:84:F2:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnOYybFuqY0iKkwpyvey68mE8oI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/3c604e-e6a8-4e4e-b769-5a07e26fb822/1/cnOYybFuqY0iKkwpyvey68mE8oI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:51:04:5d:cd:15:30:44:a2:b1:75:fe:b2:d4:4b:37:99:cc:
76:d1:9e:7a:26:b7:c8:26:61:26:fc:81:dd:64:29:af:3f:1c:
ca:22:32:f1:62:b5:56:0f:8f:42:28:4d:de:f0:2f:59:fd:be:
e5:29:a5:f4:86:07:b7:1d:2a:15:31:db:56:af:7a:4f:ab:ff:
ba:14:06:4c:ac:b9:b9:94:9c:71:41:74:6f:ee:9a:67:b3:b4:
8f:19:25:bd:6d:fa:de:f0:22:3c:5a:65:fd:2b:02:0d:5e:bc:
a0:6f:a2:c8:9b:39:58:3f:29:8f:e9:23:b4:84:18:5e:fd:a4:
77:d4:ea:04:8a:bc:10:c7:27:f0:8f:f8:af:e4:b0:ca:4f:e5:
95:8d:1d:57:a5:62:8e:b2:d0:d9:e5:20:11:ba:54:20:2d:27:
04:7e:e4:a3:54:85:dc:82:28:5f:44:b9:a8:f0:d6:72:3e:ee:
92:e9:8d:15:ab:ed:13:ec:30:30:1d:bd:70:27:82:84:77:6c:
ee:70:31:7d:a2:c7:72:07:7b:6f:8c:3f:2d:5d:9d:ae:02:9e:
cb:86:6c:13:28:c1:82:d0:8b:ce:f6:78:61:43:6d:f6:3d:7c:
b9:10:e7:77:79:66:26:9b:cc:21:8a:37:6d:9f:e3:3e:cd:91:
b2:bb:71:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:02:15 2026 by rpki-client