Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
File: YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft (raw, json)
Hash identifier: N5MqE+rdw3LOivQNeLdbGmsxuWkiFSWP179dppwxeeU=
Subject key identifier: D9:64:9F:19:8A:59:7D:B0:98:15:99:F9:89:6B:9D:93:0A:89:A5:6F
Authority key identifier: 60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
Certificate issuer: /CN=60f31d820c32400dec0c60496178994d57752acc
Certificate serial: 019CAF489B9E4D4C15B8607A5A53A4E252F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
Manifest number: 1844
Signing time: Mon 02 Mar 2026 16:01:37 +0000
Manifest this update: Mon 02 Mar 2026 16:01:37 +0000
Manifest next update: Tue 03 Mar 2026 16:01:37 +0000
Files and hashes: 1: YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl (hash: Vhzgsac6jERx2iYS7b+vAVIQBVgC+reDFMo/y/m/z7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:48:9b:9e:4d:4c:15:b8:60:7a:5a:53:a4:e2:52:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60f31d820c32400dec0c60496178994d57752acc
Validity
Not Before: Mar 2 16:01:37 2026 GMT
Not After : Mar 3 16:01:37 2026 GMT
Subject: CN=d9649f198a597db0981599f9896b9d930a89a56f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:51:ce:26:db:03:a8:d8:59:e5:2d:37:1b:17:
53:86:6c:7e:cd:ac:a6:e3:2f:f4:a5:97:de:07:9e:
78:8a:ef:2b:54:63:d1:c3:1a:8f:66:16:04:ee:c7:
11:71:26:60:d9:02:a2:00:be:59:8f:38:5b:98:1b:
1c:b9:35:c7:aa:6d:93:64:41:5c:1f:5e:12:37:76:
00:8d:87:7c:58:3c:f0:bf:7a:42:4c:a4:ee:03:a5:
c9:7c:1d:29:c5:4a:e4:87:65:9d:b2:e6:ff:81:41:
e1:b4:eb:a4:16:64:7c:b2:e1:75:c7:92:5e:df:b0:
ae:c6:c9:fc:97:38:e8:36:c1:b1:50:bc:c0:a2:9a:
f6:7d:96:05:79:61:39:e1:e0:d8:2c:48:4b:69:0c:
9c:7b:a6:7f:ce:cd:a9:b8:3a:38:8b:e5:37:3e:7b:
d6:d9:4b:1d:cf:55:68:d0:7f:43:6d:a8:a8:6b:b2:
b6:f2:04:ba:d7:e8:58:96:87:3d:88:38:ab:65:e2:
32:6b:62:ce:be:fa:59:72:03:28:9a:58:3a:5e:82:
0b:2f:19:dc:9b:ab:fa:b5:2c:05:8f:f9:26:c1:39:
d5:0e:ab:a2:32:a1:87:14:d9:30:f0:d3:1d:f9:a4:
b8:0c:cc:1f:f5:a3:6a:74:f7:9b:2e:bb:5b:60:88:
b5:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:64:9F:19:8A:59:7D:B0:98:15:99:F9:89:6B:9D:93:0A:89:A5:6F
X509v3 Authority Key Identifier:
keyid:60:F3:1D:82:0C:32:40:0D:EC:0C:60:49:61:78:99:4D:57:75:2A:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YPMdggwyQA3sDGBJYXiZTVd1Ksw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/a28553-899c-4068-9673-ded2113b9060/1/YPMdggwyQA3sDGBJYXiZTVd1Ksw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:dc:5d:6d:fc:a0:aa:2f:23:36:d6:fe:16:14:6f:8d:82:7d:
5c:ef:2d:86:0e:01:0f:0b:7e:9e:77:79:9b:b3:d3:98:16:95:
fa:3d:79:7c:1f:1d:ae:ad:84:5c:86:b1:0b:6c:74:8c:cb:d4:
4f:19:07:b4:cf:e4:cd:ef:ed:d8:71:1b:1a:64:e5:94:41:19:
82:4e:fa:a0:07:3b:29:05:76:97:a3:b0:71:05:5c:e1:ed:19:
7f:81:f0:95:f4:11:45:a9:75:85:5f:8c:3f:d5:ee:98:1f:bb:
b2:cb:27:1a:68:f4:a8:27:fc:29:37:1b:d0:05:eb:d0:a4:20:
21:a8:fd:f2:0f:11:7b:45:84:bd:5d:e0:0b:a6:ff:8b:95:cc:
ba:21:ac:16:c3:d0:d7:ae:31:e3:7f:74:4d:b4:51:b0:e0:33:
e6:04:ee:06:38:c3:80:aa:7f:ee:a0:e8:cb:f2:8a:ec:ed:3b:
df:31:24:4a:6d:16:70:db:dc:7f:09:03:7c:42:6f:a6:cc:62:
2b:0c:81:77:f8:95:0d:8a:63:de:5e:96:d3:64:b6:13:9d:e5:
01:b2:3a:c4:c7:3b:9b:d7:2d:44:77:7c:e0:ba:6a:60:28:26:
11:37:77:ff:02:f9:29:0a:4d:d6:69:3f:95:92:05:e9:d4:10:
11:7a:79:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 00:45:35 2026 by rpki-client