Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
File: YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft (raw, json)
Hash identifier: yh4ks+0y03UBAR3kSt5Lw5H81Ubk029oYPeU56PqbTU=
Subject key identifier: 0F:55:19:8C:15:35:A9:99:97:44:FA:CC:89:72:92:8F:CC:44:D4:AA
Authority key identifier: 61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
Certificate issuer: /CN=6117d6158043150b0ad224a0648df0185706019c
Certificate serial: 019D98F52532E41E90C41717DEC130160269
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
Manifest number: 134F
Signing time: Fri 17 Apr 2026 01:01:35 +0000
Manifest this update: Fri 17 Apr 2026 01:01:35 +0000
Manifest next update: Sat 18 Apr 2026 01:01:35 +0000
Files and hashes: 1: YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl (hash: 4miLD+vhk6FsZGDWSd8sFvkwxwI8G96EbRTzdLM766g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:25:32:e4:1e:90:c4:17:17:de:c1:30:16:02:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6117d6158043150b0ad224a0648df0185706019c
Validity
Not Before: Apr 17 01:01:35 2026 GMT
Not After : Apr 18 01:01:35 2026 GMT
Subject: CN=0f55198c1535a9999744facc8972928fcc44d4aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:86:91:00:cd:53:b9:d9:59:7d:8a:7b:e6:6a:
cd:56:3b:20:13:59:e8:55:2c:65:81:2c:15:b6:58:
66:4c:4b:3a:f4:6f:05:e1:18:f9:bc:d1:38:18:be:
51:33:f3:66:f8:5a:1b:af:5e:c0:c7:41:8e:35:48:
c6:42:25:6b:3e:84:d8:44:24:98:4f:b2:b1:f5:ff:
2b:e2:cb:34:4b:a6:60:ca:44:ca:01:5c:1a:fc:35:
df:3d:c0:2f:9d:53:cc:67:76:81:07:06:de:59:89:
b9:bc:f0:d5:39:85:31:6b:d0:cb:ce:e1:c5:9a:6d:
66:b3:bf:f1:38:80:fc:40:35:0b:04:06:84:c1:fe:
c1:8b:e6:a2:4f:8b:62:b9:71:f3:96:79:83:ac:02:
5e:98:ef:5c:ef:3c:46:82:00:54:7c:7c:06:f4:33:
ab:fe:e2:86:4b:21:b4:96:3b:e1:74:4b:70:45:90:
b3:b2:ef:a1:4f:df:45:34:d9:b1:de:cb:ba:a0:ae:
ba:fd:30:fa:2a:0f:22:3e:b0:3f:68:58:d9:02:12:
2c:80:7e:68:b9:bd:64:eb:7e:d1:1b:fc:7c:23:cf:
95:86:d7:8c:be:8d:08:70:af:2c:f7:e5:d4:08:62:
15:e7:55:6b:f8:71:bd:78:49:34:21:78:7a:c7:57:
10:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:55:19:8C:15:35:A9:99:97:44:FA:CC:89:72:92:8F:CC:44:D4:AA
X509v3 Authority Key Identifier:
keyid:61:17:D6:15:80:43:15:0B:0A:D2:24:A0:64:8D:F0:18:57:06:01:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YRfWFYBDFQsK0iSgZI3wGFcGAZw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/c96426-483a-4cbf-9aa3-9473580bc850/1/YRfWFYBDFQsK0iSgZI3wGFcGAZw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:16:c5:2c:13:23:71:d3:70:a5:7a:d0:03:38:53:92:84:1f:
a1:75:fd:97:0a:3d:b6:f2:cc:9c:32:3d:a6:ed:95:79:1f:3e:
84:7e:3e:57:c9:5a:ca:72:11:87:7a:07:49:27:f3:ee:f8:a4:
a4:1e:f4:fc:2d:5e:f2:7d:a2:9f:e1:0f:45:3b:06:9e:24:9b:
03:53:97:9e:e6:45:e1:1d:c2:92:6a:7d:45:0e:e9:9c:c0:28:
6c:49:3d:59:3d:25:c3:a1:52:f0:8b:c2:3c:d5:07:a4:45:93:
5d:6a:43:69:fb:9e:10:72:60:bc:39:a0:ea:17:02:c8:21:46:
76:1f:e0:e1:49:0b:25:89:b4:c2:cc:d3:32:c9:e1:e5:06:05:
87:c6:dc:b5:14:ae:59:ee:43:a0:7e:37:c4:6f:a0:42:45:a5:
6e:f0:13:2e:0f:c2:15:17:5a:82:49:9a:75:dc:0b:63:28:98:
81:56:98:f1:36:78:4e:6b:78:b9:90:bc:1b:3f:12:e0:49:68:
c5:e6:6d:55:dd:75:25:ed:df:c7:27:a6:25:5a:d1:50:46:23:
05:1c:1c:d9:8b:3f:15:3c:f3:79:1d:56:bf:82:c0:99:92:f7:
f1:5a:af:8f:c0:75:c1:14:f6:80:84:04:ac:a8:c5:3a:5e:7a:
6c:f4:19:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:10:37 2026 by rpki-client