Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
File: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft (raw, json)
Hash identifier: cL5rSrwFfRkweOf03Gr8UMhYB/4J2x2nxViyExuM4nI=
Subject key identifier: C2:32:33:FB:4A:A2:76:2F:CC:D5:FA:11:B7:C6:0F:DF:36:36:E9:D3
Authority key identifier: B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
Certificate issuer: /CN=b284cdf0507443e16e509d57a229e914f73566a4
Certificate serial: 019D37C0869584521FB1FF20DFB0FBF148E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
Manifest number: 1735
Signing time: Sun 29 Mar 2026 04:00:57 +0000
Manifest this update: Sun 29 Mar 2026 04:00:57 +0000
Manifest next update: Mon 30 Mar 2026 04:00:57 +0000
Files and hashes: 1: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl (hash: dRqfv8DZX/D8pdSXirJ9RgwpHvJW3yD/ZJmL6dOYToA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:86:95:84:52:1f:b1:ff:20:df:b0:fb:f1:48:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b284cdf0507443e16e509d57a229e914f73566a4
Validity
Not Before: Mar 29 04:00:57 2026 GMT
Not After : Mar 30 04:00:57 2026 GMT
Subject: CN=c23233fb4aa2762fccd5fa11b7c60fdf3636e9d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ed:a0:cf:ed:2a:b3:41:a7:4f:71:ff:be:d1:
e5:c4:50:0d:cd:3d:2b:ba:77:24:c4:7d:72:0a:cb:
83:86:3a:b2:da:92:1e:c8:e1:88:a1:cb:97:78:66:
40:60:1d:e2:6c:14:6b:eb:eb:55:a4:37:1e:46:cc:
60:58:49:7c:bd:43:f9:26:3a:4b:9e:41:9d:e6:cf:
53:33:4c:48:26:40:f1:05:f8:6d:07:46:2f:ff:f7:
1e:55:64:f5:ef:f0:fd:fd:dd:64:57:8d:09:67:36:
1d:ca:f0:2d:85:75:8e:f3:e7:74:2b:df:9f:80:10:
cb:9c:22:f1:1e:92:6d:49:d9:79:5f:49:0f:99:c3:
d9:fc:c8:28:b9:d1:ae:fe:c6:4e:9c:59:55:7a:7b:
32:91:31:50:f0:ab:03:5e:08:4d:78:75:58:71:86:
d2:86:78:83:89:a0:ab:7d:5a:13:15:e8:eb:a7:ae:
46:24:7c:0d:05:96:8c:27:95:2b:4b:93:16:8a:09:
37:72:b0:4d:0a:af:c3:41:7b:62:63:c9:29:81:45:
12:33:b6:7f:19:23:4d:4e:db:76:b3:8a:89:4c:b4:
72:2f:7e:66:3f:52:fa:e8:f2:0c:4a:87:74:3b:d3:
c2:fc:be:5a:cc:85:2b:11:0c:5f:b5:bf:c9:87:7b:
31:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:32:33:FB:4A:A2:76:2F:CC:D5:FA:11:B7:C6:0F:DF:36:36:E9:D3
X509v3 Authority Key Identifier:
keyid:B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:ae:6a:06:86:60:bb:92:06:f6:61:76:67:7d:49:7b:9a:de:
00:b2:ca:f1:4d:33:6e:71:db:5b:b9:ec:ff:e7:34:e5:d7:bc:
fb:9f:a4:c5:e6:8d:b2:32:7a:bd:4c:eb:4a:9b:7f:72:ae:b6:
16:f9:05:e3:4b:53:7d:91:9b:14:65:b5:d5:9a:2f:d9:8c:8f:
69:2f:8a:3a:d3:77:f2:68:d9:97:4c:1c:04:f5:4c:3b:b1:04:
4e:f6:cf:7c:4a:bf:b0:e8:90:3d:2b:fa:18:e1:ff:a7:9f:22:
d8:d8:7d:1f:69:c3:2e:cc:ca:54:db:83:d6:06:e3:98:71:3d:
7c:6c:93:e5:ae:fc:87:82:a0:5f:4b:b2:33:b1:c0:cc:81:ff:
91:cc:9e:1c:e8:ac:4d:c3:09:f1:ed:8a:8a:13:33:1a:00:ef:
b0:de:ef:ed:9d:13:d1:fd:fe:5c:e3:3d:85:eb:22:47:c8:44:
00:d8:6a:a3:94:9c:05:fe:66:79:ae:9f:af:7f:08:28:92:fc:
af:98:48:58:d2:24:18:34:a9:d2:c0:99:18:8d:2a:b7:fe:ca:
9e:b6:51:47:d9:22:ac:57:9f:86:ae:01:2e:5d:59:d4:15:b7:
9e:25:00:d0:91:88:53:2e:e6:ac:39:0c:e8:1c:5b:e0:81:21:
8a:32:9a:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:18 2026 by rpki-client