Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier: 37CxiRxvkZWzLGKXW6BxGwQO0ddW1VUjOIzqePQeFKw=
Subject key identifier: 96:EF:70:41:22:66:7A:F9:A9:F9:E2:57:54:3C:0D:06:1A:97:52:48
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial: 019D3A538A0D418B28AC08499A36DACD35E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number: 0FBB
Signing time: Sun 29 Mar 2026 16:00:46 +0000
Manifest this update: Sun 29 Mar 2026 16:00:46 +0000
Manifest next update: Mon 30 Mar 2026 16:00:46 +0000
Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: WMWPUzXnZBtIJEQIPD/A4Lwf49Y4BFKAcuwdaZx/f+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:8a:0d:41:8b:28:ac:08:49:9a:36:da:cd:35:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Validity
Not Before: Mar 29 16:00:46 2026 GMT
Not After : Mar 30 16:00:46 2026 GMT
Subject: CN=96ef704122667af9a9f9e257543c0d061a975248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9d:88:38:05:03:7f:18:29:6f:e8:63:25:5e:
79:8b:f8:2e:24:9d:0c:39:96:ee:5b:c3:7a:1c:f4:
6b:f9:b6:75:00:2e:cd:8c:45:2c:fe:13:0a:0b:66:
75:75:42:45:32:6b:fe:22:6e:73:0e:8b:7b:d6:7c:
e0:60:55:98:17:d3:00:8f:5c:2e:ff:3a:83:4a:65:
d1:19:a7:35:13:3f:15:a2:4d:86:2f:29:a4:ba:51:
2e:1e:99:01:18:1a:f0:ad:f9:d4:e5:e1:ea:5d:63:
2f:3d:bc:f4:2e:27:ac:d2:89:e9:5e:6a:5c:d9:80:
35:c3:5f:84:97:62:39:c6:5e:11:e8:d7:f5:5d:ab:
38:91:d2:aa:27:80:0e:4c:23:ca:1c:38:59:37:d0:
0c:21:89:d2:a8:30:7b:b9:c3:61:61:c7:fe:3d:b7:
92:db:e3:3b:91:96:83:c0:2b:13:0e:ec:03:c0:74:
4e:f5:1a:0a:85:a2:ba:8b:43:c3:fe:cf:44:97:8a:
c9:61:39:d1:39:ef:7d:03:e8:38:cc:2d:1e:25:16:
e0:8c:b6:1d:94:26:44:1f:85:bf:cc:51:27:35:6b:
50:ff:a0:14:04:47:57:63:6e:5a:b5:3b:24:e0:fd:
d6:46:9b:88:cb:8b:b4:8e:7e:33:12:91:36:a0:c4:
88:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:EF:70:41:22:66:7A:F9:A9:F9:E2:57:54:3C:0D:06:1A:97:52:48
X509v3 Authority Key Identifier:
keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:ac:98:48:5a:98:c2:64:ae:d4:27:ff:d6:a8:bc:8c:29:ed:
2f:57:c3:2b:9e:1f:bf:c4:dd:ca:11:73:b5:85:49:f7:6e:5c:
52:cd:6a:7c:09:91:71:85:11:48:a9:be:3b:5e:0d:4b:d7:dd:
05:bc:80:44:a0:66:e1:6b:45:8b:21:1c:6e:03:e2:2c:38:40:
91:f7:99:ee:b9:10:6a:fb:8e:3b:c7:b7:a2:53:2a:a5:1f:e7:
a1:21:2f:d3:6d:59:3e:cc:a0:f3:e4:94:d8:40:d9:f4:25:43:
68:7c:e5:9b:bb:dd:f5:26:26:4a:6f:67:f0:31:f2:46:94:7b:
a4:70:29:59:9f:db:05:cf:01:66:d7:68:20:bd:da:db:10:07:
17:b0:d2:a7:be:f8:55:75:a2:35:f2:0f:d5:9e:c5:d1:5c:9a:
23:7d:30:80:06:f9:43:0f:7b:84:2f:09:b6:99:8c:b6:84:e5:
93:bf:d5:de:29:4f:99:4f:2a:25:55:32:2c:5e:66:9f:7f:4d:
45:41:fe:96:42:d2:a2:06:42:a1:b7:94:53:ed:75:7d:ef:00:
56:dd:12:bb:cd:29:17:55:f9:d6:35:98:44:f5:6d:da:7e:a9:
4b:32:43:d4:81:67:19:88:9d:4f:f7:35:ef:8a:24:df:5f:60:
27:07:72:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:06:12 2026 by rpki-client