Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
File: YMjVd0f3KXAO8vVhT2397I0Rny0.mft (raw, json)
Hash identifier: XXA+EeYN73iXlKpERrwKYa4uakncAWLXkxYh0GtrtuI=
Subject key identifier: 05:F0:FA:D6:C2:90:4A:53:65:AD:D9:CA:34:84:6C:C2:EF:75:23:AE
Authority key identifier: 60:C8:D5:77:47:F7:29:70:0E:F2:F5:61:4F:6D:FD:EC:8D:11:9F:2D
Certificate issuer: /CN=60c8d57747f729700ef2f5614f6dfdec8d119f2d
Certificate serial: 019CAA592E38323E29815EE3267705A4BD1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
Manifest number: 1123
Signing time: Sun 01 Mar 2026 17:01:37 +0000
Manifest this update: Sun 01 Mar 2026 17:01:37 +0000
Manifest next update: Mon 02 Mar 2026 17:01:37 +0000
Files and hashes: 1: YMjVd0f3KXAO8vVhT2397I0Rny0.crl (hash: mPNA5glEJN6a9wG1bqCTOdgI1dBcEDw1p1Q/bt6EHzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:59:2e:38:32:3e:29:81:5e:e3:26:77:05:a4:bd:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60c8d57747f729700ef2f5614f6dfdec8d119f2d
Validity
Not Before: Mar 1 17:01:37 2026 GMT
Not After : Mar 2 17:01:37 2026 GMT
Subject: CN=05f0fad6c2904a5365add9ca34846cc2ef7523ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9d:3b:f9:98:f6:80:2d:8b:6f:5e:ef:68:f7:
d5:95:ed:15:c5:1f:ee:91:0f:8c:ad:6d:4b:1b:3b:
d5:f8:9a:d4:e6:5f:e6:ee:b0:37:66:f5:0c:9c:40:
2a:75:0c:50:63:5e:84:88:76:9d:8c:49:6e:90:d2:
35:1c:95:4a:d0:32:c4:88:e0:d6:f2:f0:dc:54:c8:
74:dc:60:99:e3:5d:92:51:31:05:c7:7f:c9:0b:9e:
75:4b:52:ca:03:42:84:dd:e3:9e:4e:0d:e3:25:34:
2e:99:bf:99:6e:16:3e:44:1d:70:72:8c:6c:52:69:
b1:13:49:73:16:19:5f:46:24:61:d6:a1:10:eb:fa:
fc:74:d5:8c:f5:d0:12:80:9a:50:67:33:b0:33:fa:
a9:85:55:fe:0e:33:84:5f:31:2a:8f:b5:e2:d1:44:
54:19:0e:cb:e3:b6:c2:44:3f:fe:59:98:0c:06:a7:
af:f2:c7:c1:43:c7:30:4c:5b:0c:e1:0f:46:bf:4b:
79:4d:1c:0a:51:c8:f6:6d:fc:55:3d:bc:10:05:83:
0f:82:72:6e:27:8f:0f:ee:c1:c7:0c:ef:16:94:d5:
52:85:9d:ff:3a:19:b2:f0:0b:26:e2:71:47:e5:ea:
51:a0:ca:5f:4e:c8:f8:4a:7e:9d:ee:f1:01:be:b0:
c3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F0:FA:D6:C2:90:4A:53:65:AD:D9:CA:34:84:6C:C2:EF:75:23:AE
X509v3 Authority Key Identifier:
keyid:60:C8:D5:77:47:F7:29:70:0E:F2:F5:61:4F:6D:FD:EC:8D:11:9F:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YMjVd0f3KXAO8vVhT2397I0Rny0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/39d734-6fb1-4dc0-a128-d75f595fa7c3/1/YMjVd0f3KXAO8vVhT2397I0Rny0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bd:9d:c4:33:93:e6:02:64:09:ef:b9:f9:80:24:92:9a:73:86:
63:36:94:ee:c3:c5:fc:f1:52:4b:bd:b3:d4:5c:41:43:77:ff:
b7:bf:87:e2:22:69:25:9c:11:3c:6c:f8:fb:63:3d:36:54:a8:
9a:dc:d3:d3:97:05:95:9c:70:50:19:ad:89:a0:67:f4:8a:46:
ac:f2:1c:e9:bd:1f:65:e1:3c:d3:60:48:7f:0e:5e:a9:1a:98:
95:01:fc:0a:7e:53:1d:4f:92:2b:5b:bd:7b:b9:79:03:7b:1d:
a1:c9:59:bb:b4:41:02:8a:4f:48:8e:42:dc:e1:73:ab:70:33:
03:b0:08:a8:ab:47:37:27:9e:be:92:29:1d:74:b7:ed:fd:ce:
a4:d1:28:19:16:50:e8:6e:bb:6e:f8:90:8b:c1:9b:50:ba:61:
db:a9:5f:2f:1d:e4:07:27:00:e7:44:fd:0b:0a:f8:cb:02:c0:
d2:47:3d:33:d2:23:94:6e:d4:81:0f:f9:f4:cf:c6:7f:29:52:
08:47:19:53:5b:e3:2f:68:d2:e6:1e:b2:55:54:8a:54:90:58:
a8:6f:a2:9c:5a:91:bf:45:2c:c4:53:d2:4c:8b:9e:f9:2c:12:
87:1a:81:a5:99:39:f6:aa:69:b7:77:ca:86:ed:42:cd:21:14:
ef:75:75:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqWS44Mj4pgV7jJncFpL0dMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwYzhkNTc3NDdmNzI5NzAwZWYyZjU2MTRmNmRmZGVjOGQx
MTlmMmQwHhcNMjYwMzAxMTcwMTM3WhcNMjYwMzAyMTcwMTM3WjAzMTEwLwYDVQQD
EygwNWYwZmFkNmMyOTA0YTUzNjVhZGQ5Y2EzNDg0NmNjMmVmNzUyM2FlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt507+Zj2gC2Lb17vaPfVle0VxR/u
kQ+MrW1LGzvV+JrU5l/m7rA3ZvUMnEAqdQxQY16EiHadjElukNI1HJVK0DLEiODW
8vDcVMh03GCZ412SUTEFx3/JC551S1LKA0KE3eOeTg3jJTQumb+ZbhY+RB1wcoxs
UmmxE0lzFhlfRiRh1qEQ6/r8dNWM9dASgJpQZzOwM/qphVX+DjOEXzEqj7Xi0URU
GQ7L47bCRD/+WZgMBqev8sfBQ8cwTFsM4Q9Gv0t5TRwKUcj2bfxVPbwQBYMPgnJu
J48P7sHHDO8WlNVShZ3/Ohmy8Asm4nFH5epRoMpfTsj4Sn6d7vEBvrDD5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAXw+tbCkEpTZa3ZyjSEbMLvdSOuMB8GA1UdIwQY
MBaAFGDI1XdH9ylwDvL1YU9t/eyNEZ8tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWU1qVmQwZjNLWEFPOHZWaFQyMzk3STBSbnkwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi8zOWQ3MzQtNmZiMS00ZGMwLWExMjgt
ZDc1ZjU5NWZhN2MzLzEvWU1qVmQwZjNLWEFPOHZWaFQyMzk3STBSbnkwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi8zOWQ3MzQtNmZiMS00ZGMwLWExMjgtZDc1ZjU5NWZhN2Mz
LzEvWU1qVmQwZjNLWEFPOHZWaFQyMzk3STBSbnkwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvZ3EM5Pm
AmQJ77n5gCSSmnOGYzaU7sPF/PFSS72z1FxBQ3f/t7+H4iJpJZwRPGz4+2M9NlSo
mtzT05cFlZxwUBmtiaBn9IpGrPIc6b0fZeE802BIfw5eqRqYlQH8Cn5THU+SK1u9
e7l5A3sdoclZu7RBAopPSI5C3OFzq3AzA7AIqKtHNyeevpIpHXS37f3OpNEoGRZQ
6G67bviQi8GbULph26lfLx3kBycA50T9Cwr4ywLA0kc9M9IjlG7UgQ/59M/GfylS
CEcZU1vjL2jS5h6yVVSKVJBYqG+inFqRv0UsxFPSTIue+SwShxqBpZk59qppt3fK
hu1CzSEU73V1lw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:55 2026 by rpki-client