Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
File: yuDyZX221YxEden7gXNW4u3SzA8.mft (raw, json)
Hash identifier: 9g+JhuLeGl+R8RNlUZgsFGyKx2e4OGZMLJ/zW6BrNlM=
Subject key identifier: 2D:AA:5C:66:D9:79:7F:CD:34:C1:E4:42:8C:5A:9E:B8:20:48:0C:29
Authority key identifier: CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
Certificate issuer: /CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Certificate serial: 019D9B5166F5483B37CFED31CF8711C1A5EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
Manifest number: 149E
Signing time: Fri 17 Apr 2026 12:01:36 +0000
Manifest this update: Fri 17 Apr 2026 12:01:36 +0000
Manifest next update: Sat 18 Apr 2026 12:01:36 +0000
Files and hashes: 1: yuDyZX221YxEden7gXNW4u3SzA8.crl (hash: Y5hCwUI4NjHPHsDF2hCLFzIQe6IlKKsG8p8i8fKxzow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 12:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:66:f5:48:3b:37:cf:ed:31:cf:87:11:c1:a5:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Validity
Not Before: Apr 17 12:01:36 2026 GMT
Not After : Apr 18 12:01:36 2026 GMT
Subject: CN=2daa5c66d9797fcd34c1e4428c5a9eb820480c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:14:51:4c:5a:67:8b:55:a4:46:96:bf:dc:6b:
e0:c8:d6:c0:89:81:d1:5d:3e:86:8a:90:8b:8b:6c:
34:50:9f:c6:e0:77:31:0a:7d:29:b0:0b:86:58:3c:
3b:fc:89:a5:38:f4:d7:d3:2d:2d:c6:d7:d7:5c:52:
60:13:cf:ef:3d:3d:fe:a8:58:06:e4:df:81:f3:84:
24:38:21:5e:67:e9:cf:0e:cf:6b:b4:14:82:b5:10:
1e:75:40:a1:74:b7:86:fb:4c:0a:b9:06:e4:aa:71:
f7:02:fc:46:9f:47:bb:0f:e6:10:87:88:fc:13:c0:
15:91:09:d0:35:28:64:3b:34:30:0d:93:d7:aa:6c:
07:61:16:27:43:a2:35:48:2d:e8:da:f4:00:50:f6:
48:71:6c:58:d1:3f:e8:cd:f6:e9:6e:d6:e2:1c:db:
2e:78:bb:5b:3c:c3:58:87:74:6a:fc:d1:08:43:e2:
35:a1:0c:7f:30:20:c7:57:9d:85:0c:c7:38:ec:2b:
9d:39:c7:d6:8a:c9:fb:26:18:15:7f:98:24:9e:d3:
91:59:9e:49:6d:94:03:22:d0:6b:03:07:c8:42:ac:
5d:4c:25:40:ae:e8:aa:1d:5b:87:18:6e:97:e2:82:
71:76:49:29:4b:c4:65:63:01:18:5f:0c:1a:ff:c1:
a1:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AA:5C:66:D9:79:7F:CD:34:C1:E4:42:8C:5A:9E:B8:20:48:0C:29
X509v3 Authority Key Identifier:
keyid:CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:69:35:35:2e:82:5e:6c:59:23:b2:aa:fd:99:c9:b1:c5:29:
04:bd:aa:e9:49:81:af:86:04:d8:28:1a:5f:52:8c:ff:ca:3f:
5a:29:ce:a6:91:6c:af:ff:83:3c:07:1e:1d:4f:80:72:d2:b4:
87:56:8f:bc:47:50:6a:0f:3f:bd:2b:b6:6d:c5:c8:de:9a:c9:
96:8b:c7:97:ef:75:b2:70:4f:ce:65:5d:1d:31:2d:c5:f9:6d:
2d:ef:86:42:bc:6f:b1:0d:c8:14:41:29:a2:86:e1:dc:d7:78:
b1:1f:04:34:a7:53:a4:ba:7b:65:42:5f:ab:5d:18:32:a3:fb:
45:2f:fe:2d:c0:59:1c:6a:0d:68:31:e7:9e:ba:4d:9e:f7:b8:
ea:4f:de:08:a4:3b:76:90:be:26:e4:55:d7:bc:f4:9c:c5:6e:
71:1e:91:45:ee:90:36:3d:0c:17:34:b1:78:db:17:55:cb:64:
95:2e:3e:12:9b:00:f4:6b:ad:6d:50:46:93:8a:22:df:6e:7c:
f1:38:d2:11:09:f1:d5:c5:6a:2b:2f:b7:62:6f:ff:1e:6b:67:
cd:38:61:91:0c:fd:0c:55:7e:ba:c0:d9:85:3b:54:59:d0:1d:
e0:bc:29:0f:49:e5:ef:b5:a0:f0:9f:f1:af:ff:7c:d1:c1:43:
6d:22:f3:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:37:43 2026 by rpki-client