Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
File: tY6n73bYACz8pmxSD3ybYIo5XZU.mft (raw, json)
Hash identifier: /zSf998ksq2YOLLq0iQCODsGNqdUdUzF+br4BdMU0h0=
Subject key identifier: 55:B5:FE:00:EC:A6:C4:0A:9F:2A:AE:6B:A9:71:07:6D:28:0D:20:25
Authority key identifier: B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
Certificate issuer: /CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Certificate serial: 019D984FD43FDB6ACFA0079C290EA6B422F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
Manifest number: 0851
Signing time: Thu 16 Apr 2026 22:01:01 +0000
Manifest this update: Thu 16 Apr 2026 22:01:01 +0000
Manifest next update: Fri 17 Apr 2026 22:01:01 +0000
Files and hashes: 1: tY6n73bYACz8pmxSD3ybYIo5XZU.crl (hash: ghkCTLlJ9daJNw6ONAsOh+Y+D0+dTBqxCeGcQdz8xcw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:4f:d4:3f:db:6a:cf:a0:07:9c:29:0e:a6:b4:22:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b58ea7ef76d8002cfca66c520f7c9b608a395d95
Validity
Not Before: Apr 16 22:01:01 2026 GMT
Not After : Apr 17 22:01:01 2026 GMT
Subject: CN=55b5fe00eca6c40a9f2aae6ba971076d280d2025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c1:92:a0:87:67:ec:55:3f:ac:6a:ed:b9:85:
92:09:5e:62:38:c1:60:55:bc:27:4d:19:be:c2:ea:
88:de:bd:5f:35:5a:b9:76:5d:a9:67:51:0e:a0:39:
90:b8:91:66:e8:1a:42:5d:24:52:c9:01:ae:02:69:
67:92:19:b4:10:e3:21:c2:cf:f2:b2:83:cb:e9:c4:
70:cd:60:5e:fa:0c:33:ca:b6:fc:46:92:2c:a5:5a:
41:31:c8:5e:99:01:80:b4:17:97:ed:85:81:e1:16:
ba:b5:ff:30:1a:65:88:05:ba:f6:c6:ca:cd:fe:cc:
b7:9f:09:62:97:ba:95:d6:60:d0:0c:28:3f:a4:88:
6d:d7:d2:f7:79:c1:36:a1:81:05:3e:16:1c:5c:d8:
28:bf:52:b9:d1:c3:11:d1:2a:ed:3e:4c:ff:55:c6:
47:5c:ee:21:21:d5:d1:52:b6:48:23:c6:4d:d7:3e:
e6:9c:55:f4:ad:b2:b5:01:84:18:12:e9:1b:e0:ca:
15:52:cd:ed:b3:fc:a1:78:34:a0:66:19:f9:d2:f2:
2b:81:a1:f7:7d:fb:c1:e4:eb:d8:a9:a1:1d:95:b8:
98:4e:7a:6c:22:91:23:70:a5:31:97:3c:5f:6a:d2:
28:80:6f:68:28:76:93:da:bb:cb:c1:e4:6b:64:4d:
71:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B5:FE:00:EC:A6:C4:0A:9F:2A:AE:6B:A9:71:07:6D:28:0D:20:25
X509v3 Authority Key Identifier:
keyid:B5:8E:A7:EF:76:D8:00:2C:FC:A6:6C:52:0F:7C:9B:60:8A:39:5D:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tY6n73bYACz8pmxSD3ybYIo5XZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/4d95ba-99fc-493e-a5c4-6b9ff2cfa07f/1/tY6n73bYACz8pmxSD3ybYIo5XZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:18:e7:c3:2b:2c:1a:75:7f:f6:31:2b:94:aa:cb:89:2b:6b:
1b:1a:61:40:4c:43:9c:57:f3:70:2f:c9:c1:cc:2a:ad:2f:61:
2e:b1:e4:19:a9:c3:38:f2:12:22:7b:d9:b9:65:9e:ae:a3:6f:
52:b9:e9:b7:ac:84:db:93:11:c4:a9:52:26:dc:10:48:94:5b:
e6:27:06:f7:87:9e:79:14:e9:31:3a:b4:9e:be:4d:1c:aa:7a:
d4:70:20:f4:d1:59:da:d5:e1:c1:7c:15:7f:2f:7b:f8:c3:cd:
08:92:af:de:dc:fb:c0:35:08:b7:5e:33:f2:6b:2f:07:18:d2:
11:a8:a8:a0:1f:61:60:1a:67:54:e9:72:79:40:04:e2:09:98:
e2:87:78:6c:4a:bb:32:ce:4b:62:cc:e0:74:34:d4:90:e5:b7:
fb:20:6d:05:5f:62:76:7e:9f:b5:4b:4f:98:ef:66:36:b8:c3:
69:5c:0b:b4:be:60:89:1d:ff:15:aa:b9:f3:20:c7:e8:71:22:
8a:18:45:0e:82:3d:69:b4:2e:4e:93:ee:87:8e:07:ae:d9:ef:
e0:09:73:d9:ae:1a:d1:6d:c4:87:23:58:14:7e:09:c5:5e:3e:
ea:4e:f5:36:1b:b7:e1:b2:5f:c0:dc:6a:4b:73:82:30:8b:7e:
cf:a0:11:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:48:40 2026 by rpki-client