Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
File: y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft (raw, json)
Hash identifier: W9yAb82ObPaokU9f9Z63LnRMS/lUptwDhYrIyVgl2x4=
Subject key identifier: EC:52:F1:BE:D5:A2:CB:AE:8D:92:96:41:FF:FD:4E:39:FF:3E:2D:B9
Authority key identifier: CB:55:6A:B1:29:90:F1:87:1A:9E:1E:E7:43:96:9A:A8:A2:79:9F:CA
Certificate issuer: /CN=cb556ab12990f1871a9e1ee743969aa8a2799fca
Certificate serial: 019CAD5A4AC375E91B607C72B4C91EE46F2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
Manifest number: 17A9
Signing time: Mon 02 Mar 2026 07:01:41 +0000
Manifest this update: Mon 02 Mar 2026 07:01:41 +0000
Manifest next update: Tue 03 Mar 2026 07:01:41 +0000
Files and hashes: 1: y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl (hash: pOOu13Jo3U+pZDzn6zLZ0LVNQl8MgIWwUUrrGKX33pI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:4a:c3:75:e9:1b:60:7c:72:b4:c9:1e:e4:6f:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb556ab12990f1871a9e1ee743969aa8a2799fca
Validity
Not Before: Mar 2 07:01:41 2026 GMT
Not After : Mar 3 07:01:41 2026 GMT
Subject: CN=ec52f1bed5a2cbae8d929641fffd4e39ff3e2db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e5:e6:f1:f5:c7:6c:9f:7f:3c:d7:de:82:9c:
c3:e0:d9:18:2c:a4:90:a7:a9:de:1a:e7:e3:2c:74:
20:cd:2b:c2:67:29:33:a5:37:31:ae:e2:47:46:89:
1f:31:70:01:64:03:30:13:5d:7b:a7:c3:cd:16:f2:
63:ca:83:aa:2d:40:6e:bb:e7:2a:a8:76:60:27:b4:
53:3e:b6:83:f8:a6:93:db:56:b7:f4:61:96:91:a0:
85:65:bf:e7:9c:81:ad:03:8a:f2:0e:9e:41:01:c3:
2d:f4:2c:f2:3d:da:9f:82:8c:4a:e2:18:46:63:46:
74:c2:a5:41:6b:f3:e2:d4:71:79:72:52:a5:51:62:
f1:0b:84:e0:0a:85:fb:6b:8b:03:94:3a:86:27:d4:
ef:3a:29:2c:4f:31:52:aa:2c:dc:42:31:eb:e5:f2:
99:85:45:98:26:5a:94:ac:50:8f:09:b0:ea:bd:98:
68:2e:f6:c6:1d:0b:36:47:25:0a:b4:53:86:0a:94:
9a:bf:9a:b4:05:95:f6:cb:55:3c:63:7b:06:ff:10:
66:96:85:2f:49:0a:e9:74:a6:de:f2:03:65:bb:2f:
3d:ab:79:7e:92:24:0c:23:e6:3c:ca:68:64:b9:47:
81:d9:a0:7e:5d:95:dc:b2:aa:3f:1c:3e:dd:12:ed:
ab:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:52:F1:BE:D5:A2:CB:AE:8D:92:96:41:FF:FD:4E:39:FF:3E:2D:B9
X509v3 Authority Key Identifier:
keyid:CB:55:6A:B1:29:90:F1:87:1A:9E:1E:E7:43:96:9A:A8:A2:79:9F:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b9686e-6580-450d-9c22-9c581591ec91/1/y1VqsSmQ8Ycanh7nQ5aaqKJ5n8o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:2d:21:df:1a:ec:d1:d4:07:a1:de:51:7a:6a:60:bf:02:e1:
ef:e9:4b:b4:54:26:9e:90:da:70:1a:f6:87:57:82:ea:a1:ef:
3c:e4:60:a5:31:34:7b:1e:bd:27:06:7c:e1:03:4c:bd:d9:53:
42:9c:aa:de:43:c7:6c:3d:7f:42:48:e4:72:55:68:44:d4:5b:
5a:de:29:6e:e4:ac:14:b8:da:21:10:c2:7f:9b:40:49:b4:74:
f3:dc:1f:00:f2:bf:6d:da:38:8a:85:18:b0:d4:f0:88:6b:c0:
e5:ce:0a:c0:6c:59:40:f7:4c:be:6d:b7:3b:bc:b1:dd:37:fc:
8b:fe:bf:0c:4a:07:f0:6b:79:bc:c8:68:34:29:7a:07:f9:e3:
77:10:ae:bd:81:7e:78:26:0c:cb:b3:b3:0e:b8:f9:b9:2e:36:
ce:4a:cc:49:59:84:f5:79:c1:0f:7b:53:db:2d:08:04:34:43:
4b:96:2b:6e:33:56:15:53:70:d7:c9:e6:5d:c9:c4:10:a1:72:
48:38:a7:10:d3:05:ba:e5:58:9f:12:e6:0d:9f:ae:52:19:9f:
96:73:19:04:b4:e6:17:62:46:16:c1:4a:16:be:c5:0b:3f:61:
d6:80:cf:80:6a:1f:3c:7c:af:b3:e3:20:5c:cb:31:27:4a:af:
24:98:42:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:42:55 2026 by rpki-client