Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
File: yigmXgq4MyeqVJI0yrsT64_2ZDc.mft (raw, json)
Hash identifier: BR2/XHUD1XRHtOAHBivJQ/uZn0A5pADepx9xKycLdlI=
Subject key identifier: B8:C7:32:DC:A5:50:6B:6B:66:4D:5B:57:12:B0:B6:6E:4A:04:8F:62
Authority key identifier: CA:28:26:5E:0A:B8:33:27:AA:54:92:34:CA:BB:13:EB:8F:F6:64:37
Certificate issuer: /CN=ca28265e0ab83327aa549234cabb13eb8ff66437
Certificate serial: 019CAC46E2B6DFB5EAD5DE4DE349DB763F57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
Manifest number: 11A7
Signing time: Mon 02 Mar 2026 02:00:52 +0000
Manifest this update: Mon 02 Mar 2026 02:00:52 +0000
Manifest next update: Tue 03 Mar 2026 02:00:52 +0000
Files and hashes: 1: yigmXgq4MyeqVJI0yrsT64_2ZDc.crl (hash: Yp2xgz8Ak4QcgMI2umogOQ4bDhBbN6xSBePd50gJe/c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:e2:b6:df:b5:ea:d5:de:4d:e3:49:db:76:3f:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca28265e0ab83327aa549234cabb13eb8ff66437
Validity
Not Before: Mar 2 02:00:52 2026 GMT
Not After : Mar 3 02:00:52 2026 GMT
Subject: CN=b8c732dca5506b6b664d5b5712b0b66e4a048f62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:36:52:28:88:29:25:ab:4c:ac:72:aa:ca:cb:
b3:25:b8:0c:8d:6b:f8:1c:fc:93:7f:2d:90:6c:a6:
1b:f1:8f:38:f3:38:e4:77:0a:d1:1c:4e:48:b1:8e:
71:bc:00:b3:4b:09:68:12:84:54:15:b3:2a:a8:bb:
ad:dd:8f:ea:63:1c:34:26:39:e5:41:e0:f5:9f:d9:
88:4d:c2:11:f6:41:e9:ad:ab:6c:92:d5:37:95:5c:
b2:26:2c:be:6c:51:3d:7f:7c:58:f1:a8:30:8e:94:
cd:10:83:50:3a:77:fc:11:02:4f:b3:dc:b2:4c:ef:
7c:f3:e5:3e:c1:60:c3:0e:5a:a5:41:9a:96:c1:e8:
4b:66:4a:fc:4a:e2:fb:10:bd:89:54:4c:7b:eb:3b:
bc:f1:e5:70:02:9d:f6:6a:79:8a:1c:5b:a8:ac:5d:
b8:e8:9d:2b:4a:67:82:10:d6:1c:4e:b7:3c:78:93:
0f:0d:6a:ed:c9:c5:a9:18:be:6e:7a:ae:e4:58:8f:
d5:90:f9:e7:ca:c1:cb:11:5a:c3:db:a1:68:1f:53:
d4:1b:ec:69:39:38:e1:64:30:cf:d7:e8:0e:99:52:
78:e8:94:7a:3b:38:b0:47:a9:05:7f:27:25:1a:73:
24:8e:be:98:ee:3b:f1:ff:89:76:a4:50:a3:6c:30:
a8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C7:32:DC:A5:50:6B:6B:66:4D:5B:57:12:B0:B6:6E:4A:04:8F:62
X509v3 Authority Key Identifier:
keyid:CA:28:26:5E:0A:B8:33:27:AA:54:92:34:CA:BB:13:EB:8F:F6:64:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yigmXgq4MyeqVJI0yrsT64_2ZDc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/df5c6f-bb17-42af-ab4a-12dfd5e395f9/1/yigmXgq4MyeqVJI0yrsT64_2ZDc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:73:de:31:d3:91:1e:ca:10:cc:7b:46:d3:28:69:50:8d:22:
f4:d7:8f:c4:56:07:84:67:89:e0:a5:0a:fd:3c:df:66:0f:ca:
e0:e3:b9:87:45:aa:b7:59:8c:f8:40:1c:74:78:4b:08:05:fc:
9f:48:06:e6:11:03:45:d9:94:15:a6:fd:dd:1e:b4:e3:58:f9:
cc:2f:77:a9:c9:54:67:c4:6e:8a:e0:04:f0:ae:32:d6:b6:26:
e6:d6:b4:25:a9:70:65:45:1a:a8:81:de:ec:2c:a7:44:a1:1b:
73:1b:68:a3:a7:b4:4d:9c:7b:de:fd:3d:4d:5d:4f:92:c9:e0:
a9:bb:64:c4:b4:0c:cb:05:21:c8:0c:1d:da:cc:5d:da:9e:89:
09:fc:b0:ec:8b:51:f7:82:60:ac:7a:ec:8c:2e:92:a7:55:28:
22:a4:b2:d3:a4:6e:16:52:a7:c5:b2:b0:5b:88:ef:87:13:28:
c5:0e:4c:41:f9:f8:29:42:ef:fc:47:19:f5:b9:f3:37:cd:e2:
35:41:92:ba:c7:49:19:6b:98:1a:29:ae:c1:04:ae:92:fd:dc:
90:b4:a5:fa:46:63:ee:8c:d8:00:23:d7:f1:e8:28:68:28:81:
c1:23:b7:91:0b:59:29:25:f3:99:55:0f:75:f4:a2:69:31:2c:
f8:2c:bb:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:41:38 2026 by rpki-client