Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
File: yKQR5q7CPK13xDcrTXsLH8gtXcA.mft (raw, json)
Hash identifier: KKV+L2Y7pTcVK/crivhJ7sUiksvoaeXSGDV+uUFY4b4=
Subject key identifier: B6:7A:30:72:7B:2C:22:96:BE:3F:CB:7F:67:77:8D:77:4A:3E:C1:9F
Authority key identifier: C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
Certificate issuer: /CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Certificate serial: 019CAA21963E5A6480974FDE85DE61913396
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
Manifest number: 1843
Signing time: Sun 01 Mar 2026 16:00:53 +0000
Manifest this update: Sun 01 Mar 2026 16:00:53 +0000
Manifest next update: Mon 02 Mar 2026 16:00:53 +0000
Files and hashes: 1: yKQR5q7CPK13xDcrTXsLH8gtXcA.crl (hash: FbmQZMZmNFJL/0jK3bdCcByE8Lu8uIeN+HlWf4jS48g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:96:3e:5a:64:80:97:4f:de:85:de:61:91:33:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8a411e6aec23cad77c4372b4d7b0b1fc82d5dc0
Validity
Not Before: Mar 1 16:00:53 2026 GMT
Not After : Mar 2 16:00:53 2026 GMT
Subject: CN=b67a30727b2c2296be3fcb7f67778d774a3ec19f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7e:69:b8:14:d0:7f:ab:78:22:b9:6d:1b:34:
5e:c7:2a:a1:93:e8:4f:5f:b3:5a:09:3a:58:a9:5a:
5f:7c:24:c6:4c:b4:1e:c4:7f:0f:fd:9c:7f:6c:cd:
60:75:ae:2e:7a:3d:ce:0a:3d:27:08:ad:a5:48:a9:
4f:6d:92:e5:dc:c0:4e:f6:ec:61:2f:4f:2e:c3:c5:
80:f2:d6:5d:67:f0:54:32:5d:7e:91:25:f9:6d:7b:
bd:30:e6:67:56:a7:ab:c6:92:d3:da:ba:07:39:ee:
b8:21:27:56:38:9a:b3:98:33:9f:6b:82:64:0e:0c:
e3:39:3a:04:c8:74:c8:e4:35:96:3c:b2:01:2d:57:
45:35:db:f8:70:4d:9c:d1:6e:7a:de:9c:f6:e4:3e:
59:7e:86:ba:a0:79:86:43:08:15:c9:b5:ff:2e:5e:
4a:27:dc:6a:ec:b0:34:9e:72:47:b8:fa:be:23:64:
f2:1f:55:5a:0f:e4:4a:04:af:49:72:50:54:fe:df:
fc:35:cc:52:08:ee:25:7b:5e:35:85:00:f0:8c:c6:
76:6e:2f:71:4e:2e:fc:df:17:37:a9:59:13:b3:46:
05:2a:49:90:0c:3e:f3:49:53:f0:26:1e:ee:48:03:
f2:a8:49:d5:74:93:aa:ee:3e:b1:6b:0e:bb:bb:19:
39:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:7A:30:72:7B:2C:22:96:BE:3F:CB:7F:67:77:8D:77:4A:3E:C1:9F
X509v3 Authority Key Identifier:
keyid:C8:A4:11:E6:AE:C2:3C:AD:77:C4:37:2B:4D:7B:0B:1F:C8:2D:5D:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yKQR5q7CPK13xDcrTXsLH8gtXcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/7b540f-b83a-40b9-ae6d-cdcee23a83b0/1/yKQR5q7CPK13xDcrTXsLH8gtXcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:db:54:b8:ac:00:85:35:c9:08:f6:60:f4:77:39:93:7f:09:
78:f6:fd:9b:98:44:91:47:19:93:c6:1b:3d:40:96:1f:e2:0a:
a8:fe:1f:1c:4c:a0:7d:8c:26:98:90:e1:39:b9:a4:38:98:ca:
b5:34:41:61:1d:98:d5:26:33:17:6e:3f:ed:06:70:84:72:de:
c3:37:8c:90:60:ca:10:f0:7f:ab:a1:4b:ce:9e:41:2c:10:20:
32:be:12:d3:e6:59:72:eb:ce:ff:df:a4:51:09:87:c4:54:79:
58:d2:4a:a4:52:14:32:87:03:cd:96:6f:18:59:53:72:89:80:
f8:6f:ed:ad:e6:b7:56:98:1a:e6:86:b2:42:d1:7f:f7:05:b4:
2d:d5:28:4a:08:5a:e2:06:00:35:1e:5e:b4:42:05:59:fa:7c:
34:46:45:42:dd:ad:b6:1f:a9:e9:9b:45:fd:af:60:98:c1:4f:
8b:8b:16:da:27:9d:45:bc:93:75:55:36:62:bb:fd:76:a8:c6:
c3:b2:49:44:d0:e3:5a:6b:0e:61:0c:fe:3d:c4:c4:0d:00:e8:
48:7d:f1:85:17:fb:07:82:56:98:ea:0f:8a:6a:3e:e6:5b:50:
05:27:40:0a:89:f9:83:aa:38:9c:f5:42:93:6c:ba:52:ea:1c:
87:09:95:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:19:48 2026 by rpki-client