Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
File: yVcXmb2ok6GGC0phbFYnivXsksU.mft (raw, json)
Hash identifier: Yll3E0sJnHJc0zD7mcnsBpeZl2PTvRysn4QieiesCNI=
Subject key identifier: 40:02:CF:78:7E:2D:70:4E:56:45:C3:01:53:6D:F5:E3:07:86:C6:73
Authority key identifier: C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5
Certificate issuer: /CN=c9571799bda893a1860b4a616c56278af5ec92c5
Certificate serial: 019CAAC673B98A8D5A5A5B9AD772D07F64A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
Manifest number: 0D4A
Signing time: Sun 01 Mar 2026 19:00:58 +0000
Manifest this update: Sun 01 Mar 2026 19:00:58 +0000
Manifest next update: Mon 02 Mar 2026 19:00:58 +0000
Files and hashes: 1: yVcXmb2ok6GGC0phbFYnivXsksU.crl (hash: JnX6igloaMfbVL2A1VE3E6xaTWaieqwi75S764fwPBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:73:b9:8a:8d:5a:5a:5b:9a:d7:72:d0:7f:64:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9571799bda893a1860b4a616c56278af5ec92c5
Validity
Not Before: Mar 1 19:00:58 2026 GMT
Not After : Mar 2 19:00:58 2026 GMT
Subject: CN=4002cf787e2d704e5645c301536df5e30786c673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:de:0f:cd:64:42:1b:91:46:06:e7:8a:17:78:
26:63:ce:7a:f0:d4:86:c1:ca:89:c8:10:35:23:02:
2a:f0:b9:8e:1d:29:bb:df:5c:16:0a:2d:35:fe:95:
dc:26:c9:7d:fc:6e:da:68:65:7c:16:45:dd:c5:ea:
e8:d3:3f:7a:c9:b0:e2:2a:ac:c9:2f:9b:77:cf:f9:
d5:69:24:fc:05:18:d8:00:bb:b0:a3:98:c1:bb:4c:
37:4b:2f:78:ed:67:8b:43:eb:8f:07:82:6c:81:d8:
3c:8f:b3:dc:27:84:dc:93:62:64:c2:fe:8a:08:2d:
f7:5b:50:2a:c5:99:e1:7b:03:b0:39:70:bc:50:5e:
10:f0:9c:ee:1e:f2:00:ab:86:e4:56:62:00:55:c2:
f7:81:24:f3:12:1d:98:ce:7b:47:8a:ba:e6:a2:df:
5e:01:39:3e:60:51:c0:50:2a:e1:8d:d5:07:c9:34:
9e:a2:06:bc:4f:07:fb:bf:56:d0:a8:f3:ab:3d:f7:
b9:da:e3:fb:a4:09:d4:37:e1:ca:63:7b:d6:32:6b:
ba:b4:26:61:4e:86:cd:d1:47:47:19:7d:43:dc:8f:
bf:94:2c:8b:0d:96:2f:ba:a4:9b:8b:75:35:ac:8e:
f2:0a:f0:99:36:49:8c:dc:f6:93:41:af:da:41:7f:
38:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:02:CF:78:7E:2D:70:4E:56:45:C3:01:53:6D:F5:E3:07:86:C6:73
X509v3 Authority Key Identifier:
keyid:C9:57:17:99:BD:A8:93:A1:86:0B:4A:61:6C:56:27:8A:F5:EC:92:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yVcXmb2ok6GGC0phbFYnivXsksU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/08ef87-cf55-4b5d-9821-03746d7bd294/1/yVcXmb2ok6GGC0phbFYnivXsksU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:b4:aa:cd:85:8d:60:f1:35:0e:9e:8b:3b:fd:c7:d4:76:e9:
cc:fb:85:1b:75:ec:9e:00:e0:a0:a5:ca:32:cc:1e:b5:48:d3:
02:41:92:08:18:fa:3b:e1:f5:d9:ea:6f:73:c7:67:7c:06:b8:
32:b4:b0:63:fc:89:1f:f4:d6:51:b0:3c:84:1a:34:73:eb:35:
06:c6:41:22:a6:78:d8:ec:24:ea:98:d4:1f:99:de:80:bf:ac:
58:3e:3d:28:a1:e7:74:47:e1:10:f3:62:04:64:a9:9d:13:3e:
f2:6b:81:e7:51:f9:77:c8:a3:b2:40:51:ff:0d:f0:af:ab:06:
29:6d:26:f3:a6:b5:d6:3d:39:dc:80:6a:19:6c:0b:41:ee:72:
6d:f9:97:87:d1:9d:0a:75:59:d2:69:f3:dd:3a:4c:81:e2:4a:
d9:59:da:cb:c7:fc:b8:83:ac:fa:57:6b:2f:73:ca:f4:d3:cb:
d0:20:66:6c:8a:33:96:83:df:17:14:d1:75:e2:c7:b8:4b:85:
64:f6:f7:e0:2a:d8:d0:76:6d:84:93:5b:c1:c0:7f:02:a5:0a:
3f:8a:c5:cf:b2:6b:37:60:3f:c4:95:23:b7:06:bc:43:8b:49:
18:21:4c:9b:10:b9:31:e9:72:15:d3:61:e7:42:5c:59:e3:95:
73:30:64:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:38 2026 by rpki-client