Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json)
Hash identifier: bINnxP3sXBzW3M4Y45fCV1+qe/xBayrr1HHiWfsGIYk=
Subject key identifier: BE:57:FE:58:CC:DB:5B:D3:6B:46:46:C1:BD:0A:EC:27:D8:B2:0A:62
Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c
Certificate serial: 019CAD5A3E633072713B272B5C9F17D59D4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
Manifest number: 12D5
Signing time: Mon 02 Mar 2026 07:01:38 +0000
Manifest this update: Mon 02 Mar 2026 07:01:38 +0000
Manifest next update: Tue 03 Mar 2026 07:01:38 +0000
Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: VbG8ocO+2Vp9SM2aFmBfgmq520yV2ABjUhi69n7I/Ok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:3e:63:30:72:71:3b:27:2b:5c:9f:17:d5:9d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6117d6158043150b0ad224a0648df0185706019c
Validity
Not Before: Mar 2 07:01:38 2026 GMT
Not After : Mar 3 07:01:38 2026 GMT
Subject: CN=be57fe58ccdb5bd36b4646c1bd0aec27d8b20a62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e2:24:19:43:02:a4:27:96:da:91:ed:22:04:
58:3d:62:e5:ac:c0:f6:ec:66:48:2d:14:93:5d:88:
72:a0:fa:ff:34:44:37:bb:f2:cb:36:2d:4f:77:53:
70:98:66:b1:21:37:24:05:62:fe:cc:82:37:ce:c9:
66:ab:04:9f:d1:d8:b5:f1:5c:cd:ee:a0:22:c7:d2:
ea:fa:08:da:81:de:2a:a6:84:3c:40:81:ce:90:5c:
14:45:fe:82:33:b5:36:2a:c3:b3:f2:c1:41:30:b8:
25:bf:0c:c4:8c:94:19:7c:1b:aa:fc:d8:d8:82:86:
d4:86:17:95:37:97:d6:3f:98:5e:94:ef:02:97:1e:
b1:30:c0:be:d5:27:a0:a9:9b:ec:88:2f:65:2a:16:
fb:21:8c:15:d3:03:bf:90:1f:3e:af:2c:1a:74:db:
40:d8:ee:8f:70:a5:10:e6:26:4d:95:f8:24:6f:f3:
0b:b1:e3:fa:0c:96:0f:a9:26:cc:39:df:37:a3:0f:
17:99:67:65:41:81:d7:f2:36:31:a6:bd:25:1c:ba:
99:8d:84:21:a5:39:ec:87:7b:d3:0b:64:a7:17:64:
48:b2:1d:84:f2:49:b2:4c:97:df:b3:79:87:3d:a8:
cf:f2:d1:7e:95:a3:e0:99:cb:ba:03:5f:9d:ed:4b:
69:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:57:FE:58:CC:DB:5B:D3:6B:46:46:C1:BD:0A:EC:27:D8:B2:0A:62
X509v3 Authority Key Identifier:
keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:c2:c0:71:2a:a9:83:5f:ec:fe:4e:5e:35:0a:84:93:4e:24:
5b:22:fb:28:d7:8f:fe:9f:ca:68:70:4e:1f:b9:b9:2b:54:0d:
fd:6e:f5:2e:34:38:c1:d6:a6:60:5f:ae:5f:18:b0:74:ec:96:
bd:37:ad:a9:02:75:f5:cb:81:a9:77:00:db:e8:c3:c5:e4:b6:
30:01:41:0b:42:72:a3:db:b3:c1:41:45:d9:ee:b7:11:d5:d8:
d7:5c:d7:a1:d6:19:ed:5b:e1:5e:4f:1c:43:23:b7:fa:e4:bd:
d1:f3:19:9f:1c:11:53:8b:ca:95:22:25:d1:d6:8b:f6:bb:4b:
b9:d4:be:b2:3e:5d:78:69:e4:b5:0e:57:22:91:dc:e4:72:d2:
55:4e:43:dd:08:fc:a8:99:10:2b:0e:6f:b1:15:70:44:aa:8d:
5b:00:0e:b3:a8:0d:e3:cd:6d:ae:6b:ca:79:f9:b9:7a:20:af:
f5:56:70:4e:29:9e:fc:0c:2c:3d:88:7a:6f:1c:79:65:41:1b:
0e:70:05:8b:23:ed:2a:99:a2:87:10:11:0f:aa:e2:92:1a:88:
4a:e3:eb:bc:ea:a8:2f:6e:38:d4:92:34:ba:d1:a4:79:31:23:
93:c1:f2:e6:71:65:75:90:7b:e0:35:f4:f3:1c:6c:cd:7a:3b:
21:fc:c2:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:25:01 2026 by rpki-client