Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json)
Hash identifier: QLunNIMRpH2o3zx7iMPUPYvg9xyM8UALxn5OoAQMsVY=
Subject key identifier: 23:D0:B2:FA:7A:96:D0:D1:10:95:C5:8F:27:77:11:3A:1B:9F:15:59
Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Certificate serial: 019D386561977EC54D512E7EF374B1C9FFD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
Manifest number: 1474
Signing time: Sun 29 Mar 2026 07:01:01 +0000
Manifest this update: Sun 29 Mar 2026 07:01:01 +0000
Manifest next update: Mon 30 Mar 2026 07:01:01 +0000
Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: TfGbhQrMHa/NvgzU7+y/LUoR5WYf6JBGl0mXyDTB68g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:61:97:7e:c5:4d:51:2e:7e:f3:74:b1:c9:ff:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Validity
Not Before: Mar 29 07:01:01 2026 GMT
Not After : Mar 30 07:01:01 2026 GMT
Subject: CN=23d0b2fa7a96d0d11095c58f2777113a1b9f1559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:16:c0:b7:b6:9e:77:38:50:46:21:14:3a:14:
c0:bd:fd:2c:90:ee:c4:8c:0c:1f:4f:e2:5c:8e:3a:
cc:32:91:2a:ce:aa:ab:27:ab:48:af:80:fd:84:86:
62:08:b3:a4:9b:30:bc:43:32:81:42:80:a7:1f:54:
0b:6f:cc:ba:45:2f:19:a2:38:1e:ad:9d:98:42:fb:
bf:5c:e0:1f:b3:79:3a:44:87:52:02:aa:bc:8c:87:
fb:6f:d3:49:b9:ff:40:74:6b:1c:2d:4e:40:02:67:
44:e4:ff:c2:37:8a:d1:13:b3:b3:05:7a:37:3f:09:
37:37:10:94:c2:27:93:94:09:d8:52:f4:67:9f:76:
7e:5d:a0:67:5f:dd:bb:80:c7:9e:9e:ae:b1:0b:64:
4e:00:18:e4:0b:bc:4d:fc:89:5e:35:30:2b:f7:b6:
3d:3c:c2:05:ae:e1:27:42:f7:1d:5b:85:05:ab:d6:
09:5e:c6:87:aa:00:87:6a:58:63:e3:4c:6d:c2:ea:
e0:07:b3:c6:34:0d:95:dd:0f:15:ee:a9:02:ff:5f:
e1:09:68:c5:5c:70:25:91:a4:0d:9d:61:a5:af:57:
93:0f:a1:04:d5:94:d9:b1:82:a4:ac:31:76:8b:6f:
0e:5d:78:ea:dd:ee:ba:50:ad:e4:8b:fc:d3:b6:01:
0c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:D0:B2:FA:7A:96:D0:D1:10:95:C5:8F:27:77:11:3A:1B:9F:15:59
X509v3 Authority Key Identifier:
keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:dd:00:44:af:8e:74:b1:00:86:09:cf:f5:55:98:8b:a0:a9:
58:c5:db:6a:71:2b:4b:06:fe:00:47:47:e8:48:32:3b:37:9d:
b1:73:74:01:e5:20:6d:7c:ee:96:11:59:da:af:3e:90:6e:1b:
5b:0b:02:7d:91:dc:11:89:62:72:db:fc:75:75:10:ee:22:3f:
06:52:7b:41:6c:1e:34:a2:dc:90:cb:0e:22:d7:7a:2c:c1:5d:
ba:fc:67:45:2c:f0:99:af:e7:8c:5c:e8:ab:83:92:ab:03:1c:
3b:95:53:87:54:dd:7b:0a:1c:c6:57:82:dc:e6:67:73:0c:da:
3f:d3:fb:41:a5:80:f8:7b:d5:48:3b:d4:d5:04:6f:2e:57:c1:
d5:8c:10:d5:7d:ab:86:2a:81:af:73:9f:76:0b:78:5b:6d:89:
e9:7b:94:e2:59:a5:71:5f:60:8e:14:9f:09:7c:d9:f6:81:c9:
d4:27:8f:40:9f:30:1b:25:10:5b:67:c5:7f:bc:4a:70:8d:89:
d7:44:0d:a6:30:dd:b5:37:2c:e5:25:fd:88:57:c3:dd:22:78:
6c:2a:08:ef:ac:8a:a0:2c:88:49:77:4a:02:e4:08:54:46:34:
bd:dd:ef:73:60:d0:05:c8:24:21:d4:9a:03:17:47:be:3e:14:
1c:e5:fd:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:31:47 2026 by rpki-client