Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft
File: YDe79svKAic6peIbuIjj4exnZ98.mft (raw, json)
Hash identifier: MLNjGgmEh2BmeWJKPFWU1krFQoAHyjWtZ1k9CA4Gn0o=
Subject key identifier: 29:AD:98:57:85:D2:0C:D6:0A:CD:6F:CC:DE:ED:2A:64:8E:38:EC:8B
Authority key identifier: 60:37:BB:F6:CB:CA:02:27:3A:A5:E2:1B:B8:88:E3:E1:EC:67:67:DF
Certificate issuer: /CN=6037bbf6cbca02273aa5e21bb888e3e1ec6767df
Certificate serial: 019D9C9A878B2B294CD8F4AD2EC6C76D6D82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YDe79svKAic6peIbuIjj4exnZ98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft
Manifest number: 0DE4
Signing time: Fri 17 Apr 2026 18:01:06 +0000
Manifest this update: Fri 17 Apr 2026 18:01:06 +0000
Manifest next update: Sat 18 Apr 2026 18:01:06 +0000
Files and hashes: 1: YDe79svKAic6peIbuIjj4exnZ98.crl (hash: 4R/T4r4A5MnX1OtoiR/pEEEvO4t9irgU/Ch7iB0HDas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft
rsync://rpki.ripe.net/repository/DEFAULT/YDe79svKAic6peIbuIjj4exnZ98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 18:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:87:8b:2b:29:4c:d8:f4:ad:2e:c6:c7:6d:6d:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6037bbf6cbca02273aa5e21bb888e3e1ec6767df
Validity
Not Before: Apr 17 18:01:06 2026 GMT
Not After : Apr 18 18:01:06 2026 GMT
Subject: CN=29ad985785d20cd60acd6fccdeed2a648e38ec8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6f:6e:83:8a:1b:c7:1d:f7:fa:e8:ec:4e:e0:
48:80:3a:4e:e6:2a:94:bd:34:b8:65:66:c9:5d:b1:
1b:e7:94:46:76:a7:3d:2b:4f:d4:86:7f:28:5a:94:
b5:1e:a4:38:76:9a:4b:a7:9d:99:4b:b3:ad:6c:96:
65:dc:73:bc:7e:2b:63:b1:07:d3:47:00:0f:02:80:
2d:6a:96:e9:88:b6:40:1d:1a:ca:c0:6f:58:5d:af:
9a:2c:f8:7c:d3:f5:62:c5:40:3b:3e:9f:50:ca:d3:
73:99:26:31:8e:22:bc:3d:4f:33:c8:eb:e9:09:5b:
e3:33:a8:75:01:7a:49:dd:b2:e8:c0:62:51:69:3e:
d0:ce:8b:8c:04:3b:93:bb:ce:09:4e:fb:0e:07:88:
e3:67:08:9c:5c:3e:69:42:d4:02:3d:3b:94:6d:b2:
65:cf:f6:0c:d7:14:73:fd:ed:64:d8:ac:d5:42:54:
1b:c7:e8:76:4a:39:68:30:ae:0a:29:8e:f7:c1:4c:
04:83:4b:c8:56:09:d1:d1:64:ec:18:08:be:2f:d4:
30:9a:80:07:6d:f5:8b:6f:1e:4e:32:0c:15:94:22:
2e:15:9d:87:14:cb:4e:d2:c8:dd:6e:9d:14:a8:fd:
63:14:c8:d7:4e:95:7b:fa:f9:be:9b:b9:71:ed:b9:
76:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AD:98:57:85:D2:0C:D6:0A:CD:6F:CC:DE:ED:2A:64:8E:38:EC:8B
X509v3 Authority Key Identifier:
keyid:60:37:BB:F6:CB:CA:02:27:3A:A5:E2:1B:B8:88:E3:E1:EC:67:67:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YDe79svKAic6peIbuIjj4exnZ98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/64e20c-8f61-4351-8077-fc3b3e11161d/1/YDe79svKAic6peIbuIjj4exnZ98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:25:e1:d0:d7:13:9e:4a:aa:2e:d9:67:ec:3b:69:28:d7:50:
86:c5:dd:f5:38:53:da:72:e2:c5:a5:af:c4:d2:85:a9:68:b3:
09:fc:45:2f:c0:f3:76:36:47:04:88:e8:d9:b0:0d:06:c1:89:
4f:44:99:49:d8:3e:b7:06:13:85:1c:5c:05:36:1e:3b:ab:01:
fd:a8:9e:65:f7:4a:32:66:7e:de:08:10:c7:1b:7c:68:fe:8c:
09:3b:b6:76:37:44:90:69:c3:6e:65:b3:9e:f7:58:b6:2a:36:
7f:95:84:e7:09:c9:be:49:22:84:e8:2b:8c:a6:87:66:ea:d7:
fb:bb:bd:22:97:ca:02:46:eb:6e:44:6a:68:8d:61:38:0b:1c:
00:b4:ae:50:f0:8e:65:3e:3b:22:ed:03:f1:73:16:92:ff:45:
31:14:ab:2a:7f:06:b6:fb:73:fc:09:a5:c8:de:f1:aa:a1:fb:
4d:4b:4f:4a:78:d6:2f:64:40:91:d8:20:65:f0:91:ef:ab:49:
3f:4c:94:1b:6d:02:c9:eb:60:5e:5a:38:30:ce:fb:7c:ee:6d:
af:91:91:ff:4e:3c:1f:f1:a1:df:ec:21:51:9e:3a:c8:9c:68:
cf:80:fe:ce:e6:71:28:23:cb:73:fa:42:88:f1:e2:d6:81:66:
5a:ec:3f:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 03:25:41 2026 by rpki-client