Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
File: yuDyZX221YxEden7gXNW4u3SzA8.mft (raw, json)
Hash identifier: Bg2pvKNkztV1MTS4SfVQXXksG7AbfplCNcgL9smEJmQ=
Subject key identifier: 42:08:89:2B:42:15:1E:26:1E:35:6B:63:D3:72:08:72:B3:B9:26:A7
Authority key identifier: CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
Certificate issuer: /CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Certificate serial: 019CADC7D6E75CBAE0B4266FB7EC5A7FDF7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
Manifest number: 1423
Signing time: Mon 02 Mar 2026 09:01:20 +0000
Manifest this update: Mon 02 Mar 2026 09:01:20 +0000
Manifest next update: Tue 03 Mar 2026 09:01:20 +0000
Files and hashes: 1: yuDyZX221YxEden7gXNW4u3SzA8.crl (hash: dYvbJLxxPVRg/JVdDpm1nylhn/heDrkFZGwUy8YRrCs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:d6:e7:5c:ba:e0:b4:26:6f:b7:ec:5a:7f:df:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cae0f2657db6d58c4475e9fb817356e2edd2cc0f
Validity
Not Before: Mar 2 09:01:20 2026 GMT
Not After : Mar 3 09:01:20 2026 GMT
Subject: CN=4208892b42151e261e356b63d3720872b3b926a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:99:27:42:ee:6d:2d:d2:43:50:b9:6a:27:9e:
b5:ad:b9:2a:04:e6:d5:a4:6b:47:48:08:57:b8:a0:
65:b0:5e:5b:b3:f5:ea:14:52:43:ba:88:69:2f:a2:
1d:6f:6e:6c:d9:ac:2d:b9:f7:ce:1a:1d:92:b5:d3:
72:04:cb:7c:d2:c7:f3:a2:67:0a:19:e0:89:dc:5f:
cc:c9:92:d7:49:1c:ef:b0:59:f2:bd:b4:c6:9c:0b:
40:1d:93:cf:1c:ef:e9:ca:6b:c6:04:6b:b2:82:8c:
8e:0f:85:d7:73:ca:fc:10:aa:12:e2:4a:f6:58:35:
c9:28:ca:6f:a0:cf:f2:e3:19:a7:76:14:a8:c4:34:
55:60:7a:d5:40:24:5f:85:7c:dc:55:2a:f7:92:d7:
2e:81:69:dc:f6:58:23:64:df:e1:0e:a4:88:14:42:
c4:2e:01:4d:8c:bb:0c:59:93:da:0a:f3:b0:4c:7b:
e8:c5:a5:7e:2d:ec:15:eb:4a:f2:7d:d9:02:32:df:
1b:6d:1c:a6:52:91:97:72:de:8f:0c:35:36:04:89:
a4:d6:50:36:55:2f:23:2d:6d:c4:3c:da:d3:eb:3e:
78:e7:13:d9:8d:8c:e5:00:53:80:3d:4e:bc:96:47:
45:7d:3a:c0:b7:17:4b:6f:bd:15:7a:30:b7:69:78:
42:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:08:89:2B:42:15:1E:26:1E:35:6B:63:D3:72:08:72:B3:B9:26:A7
X509v3 Authority Key Identifier:
keyid:CA:E0:F2:65:7D:B6:D5:8C:44:75:E9:FB:81:73:56:E2:ED:D2:CC:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuDyZX221YxEden7gXNW4u3SzA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/037ff1-69b9-44b4-8c0e-a19a3beb15b2/1/yuDyZX221YxEden7gXNW4u3SzA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:4b:05:a6:c7:2c:e0:d0:23:97:7b:6e:d5:8c:87:f1:2a:2e:
0e:42:fd:e6:23:9d:04:b7:70:bb:20:a7:d6:d7:c1:72:61:e4:
79:bb:89:b6:bd:1d:9e:ba:aa:87:6e:0b:56:23:b2:e2:49:d0:
06:48:7d:78:4f:1b:12:db:d3:dd:84:08:55:c6:9f:59:45:a1:
f6:4b:3b:ff:a9:99:5c:3c:4f:4d:d2:09:2b:e9:42:d5:6e:71:
ad:0c:d1:6c:cc:87:ac:b0:e0:cd:fa:0a:54:7f:ee:28:25:e9:
5f:7d:69:39:d6:ce:a8:61:6d:23:a7:22:7c:2c:4a:98:9a:2c:
f3:76:10:66:b0:8e:46:86:86:8a:e1:ef:df:d7:a0:e2:25:43:
12:1b:d9:b5:d7:02:17:4e:96:86:26:73:b2:53:93:3c:d2:e2:
f5:16:d8:84:7f:ec:7a:1e:74:c1:f3:1a:b3:6b:94:6f:8f:75:
54:ce:87:4a:08:eb:36:d1:44:74:7f:f6:cb:84:8c:c5:89:46:
2a:e6:43:fe:40:c2:9e:98:9b:33:f4:75:cf:cc:02:1b:de:8c:
c1:a8:87:ab:d6:b0:1d:e0:08:e9:a1:c1:51:cf:a7:d5:af:30:
f8:46:a7:89:56:9d:d7:d1:86:ea:dd:73:99:24:b1:b6:d7:a4:
9e:d0:57:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytx9bnXLrgtCZvt+xaf99/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGNhZTBmMjY1N2RiNmQ1OGM0NDc1ZTlmYjgxNzM1NmUyZWRk
MmNjMGYwHhcNMjYwMzAyMDkwMTIwWhcNMjYwMzAzMDkwMTIwWjAzMTEwLwYDVQQD
Eyg0MjA4ODkyYjQyMTUxZTI2MWUzNTZiNjNkMzcyMDg3MmIzYjkyNmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmpknQu5tLdJDULlqJ561rbkqBObV
pGtHSAhXuKBlsF5bs/XqFFJDuohpL6Idb25s2awtuffOGh2StdNyBMt80sfzomcK
GeCJ3F/MyZLXSRzvsFnyvbTGnAtAHZPPHO/pymvGBGuygoyOD4XXc8r8EKoS4kr2
WDXJKMpvoM/y4xmndhSoxDRVYHrVQCRfhXzcVSr3ktcugWnc9lgjZN/hDqSIFELE
LgFNjLsMWZPaCvOwTHvoxaV+LewV60ryfdkCMt8bbRymUpGXct6PDDU2BImk1lA2
VS8jLW3EPNrT6z545xPZjYzlAFOAPU68lkdFfTrAtxdLb70VejC3aXhCaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEIIiStCFR4mHjVrY9NyCHKzuSanMB8GA1UdIwQY
MBaAFMrg8mV9ttWMRHXp+4FzVuLt0swPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQveXVEeVpYMjIxWXhFZGVuN2dYTlc0dTNTekE4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny8wMzdmZjEtNjliOS00NGI0LThjMGUt
YTE5YTNiZWIxNWIyLzEveXVEeVpYMjIxWXhFZGVuN2dYTlc0dTNTekE4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ny8wMzdmZjEtNjliOS00NGI0LThjMGUtYTE5YTNiZWIxNWIy
LzEveXVEeVpYMjIxWXhFZGVuN2dYTlc0dTNTekE4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMEsFpscs
4NAjl3tu1YyH8SouDkL95iOdBLdwuyCn1tfBcmHkebuJtr0dnrqqh24LViOy4knQ
Bkh9eE8bEtvT3YQIVcafWUWh9ks7/6mZXDxPTdIJK+lC1W5xrQzRbMyHrLDgzfoK
VH/uKCXpX31pOdbOqGFtI6cifCxKmJos83YQZrCORoaGiuHv39eg4iVDEhvZtdcC
F06WhiZzslOTPNLi9RbYhH/seh50wfMas2uUb491VM6HSgjrNtFEdH/2y4SMxYlG
KuZD/kDCnpibM/R1z8wCG96MwaiHq9awHeAI6aHBUc+n1a8w+EaniVad19GG6t1z
mSSxttekntBXKA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:16:30 2026 by rpki-client