Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
File: rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft (raw, json)
Hash identifier: WOR4HSjAQYWaBaLuWRYtWiGeDYcB95DqRFiCQ5b4n7w=
Subject key identifier: 9C:47:8C:54:14:FD:68:C2:6A:C3:2C:1C:F0:76:EC:73:F5:FF:8C:21
Authority key identifier: AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
Certificate issuer: /CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Certificate serial: 019D382E7734CADD7D4B2053628D39F943E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
Manifest number: 0D8C
Signing time: Sun 29 Mar 2026 06:01:02 +0000
Manifest this update: Sun 29 Mar 2026 06:01:02 +0000
Manifest next update: Mon 30 Mar 2026 06:01:02 +0000
Files and hashes: 1: rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl (hash: ZKCBePO8FGYIajYVQJDpvJkRf8cjtQpacajzFaFyuZ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:77:34:ca:dd:7d:4b:20:53:62:8d:39:f9:43:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Validity
Not Before: Mar 29 06:01:02 2026 GMT
Not After : Mar 30 06:01:02 2026 GMT
Subject: CN=9c478c5414fd68c26ac32c1cf076ec73f5ff8c21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e8:b9:56:cd:e3:f5:f0:1b:92:12:26:11:a4:
d9:5c:6d:6b:e6:d5:54:11:b3:e5:01:df:d8:b1:5e:
af:9a:e6:30:1f:c2:ac:60:25:6a:b4:e0:4e:72:c1:
bd:5b:6c:79:ae:d4:e3:29:ca:6c:bc:8c:0e:08:c2:
09:cf:ce:db:c9:ef:9f:ae:a4:48:5e:26:81:2f:12:
6e:4c:12:4c:7b:82:4f:4e:43:86:8e:4e:dc:ac:d3:
d6:15:b6:33:f0:be:f6:a0:18:28:2b:5b:a0:83:59:
12:a9:fc:3a:2a:fc:50:5d:c0:94:e1:da:8b:80:72:
aa:68:ee:87:a6:6b:97:a2:e1:07:af:81:a0:dc:81:
44:35:eb:0f:b6:e4:e9:bc:2c:04:19:c5:65:96:f3:
97:1e:c1:62:17:6e:23:17:9d:3b:89:c0:bf:7c:23:
c8:ee:75:56:78:12:8d:cb:0d:c7:80:e1:0e:36:0b:
fc:e0:49:a6:d0:64:10:30:2e:02:81:ce:70:5c:08:
2e:31:d2:86:47:17:e7:95:65:3f:8e:e9:ce:8a:68:
c3:5e:91:01:6b:d4:c5:7f:e3:1c:af:87:52:3c:ba:
ca:ee:a0:09:e4:c9:2a:83:3c:3e:a2:a7:19:40:6c:
07:ba:4e:97:16:51:4e:fc:8c:78:ba:4e:96:7d:d4:
38:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:47:8C:54:14:FD:68:C2:6A:C3:2C:1C:F0:76:EC:73:F5:FF:8C:21
X509v3 Authority Key Identifier:
keyid:AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:bd:f8:be:0a:a7:42:61:92:28:23:af:8f:4e:48:b1:5f:10:
c7:d9:96:ec:01:3c:f2:b6:54:31:a3:79:e7:85:98:3c:32:35:
8e:b9:85:03:90:78:5a:e4:68:b9:21:a3:8c:6f:4a:1c:f2:39:
f2:ce:70:25:51:59:80:5a:e9:6b:ef:8e:b3:1b:5c:6c:ba:96:
45:72:21:09:5f:23:bb:e7:52:ec:a0:1f:a1:d4:52:c7:58:7c:
a9:14:fa:83:aa:90:6c:4e:b2:d3:4e:35:80:dd:87:c1:99:2a:
c5:5e:56:1d:ee:ce:c3:f0:9b:ff:55:98:bc:9f:be:aa:2a:c9:
d9:84:5f:27:58:ef:c2:4c:39:7b:36:df:eb:b5:1f:2e:12:1f:
2b:0f:0a:91:66:e0:bb:7f:00:3b:6f:41:69:a0:f2:a3:e8:83:
0a:67:a4:49:d5:f6:a2:5f:02:57:d0:69:0a:da:8a:ba:df:f8:
37:e7:30:1f:28:17:1b:76:93:29:dc:a6:7e:d0:b6:cc:91:cb:
bf:6c:ff:fe:ec:60:d0:51:ad:80:41:bf:ea:6c:44:d1:78:ef:
3a:cb:b4:42:f5:50:4b:59:e3:de:63:e9:83:12:30:a1:b7:3a:
d2:90:5d:6a:a4:93:9a:f1:86:75:ab:ec:dc:ef:d8:35:6e:e3:
1d:a5:85:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:54:04 2026 by rpki-client