Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
File: 6ocBJxa2bugiZCwvChuQFItceyk.mft (raw, json)
Hash identifier: c5yB7jAcxVoE3eRUt39jDrkHGuik9IWmYwzFpfEhPdU=
Subject key identifier: 35:13:8F:AF:96:90:8D:B2:61:74:0F:AC:0E:CE:51:76:73:3A:94:76
Authority key identifier: EA:87:01:27:16:B6:6E:E8:22:64:2C:2F:0A:1B:90:14:8B:5C:7B:29
Certificate issuer: /CN=ea87012716b66ee822642c2f0a1b90148b5c7b29
Certificate serial: 019D38664F7FFB49B3A6CA3C5D007F5EB0D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
Manifest number: 0FDE
Signing time: Sun 29 Mar 2026 07:02:02 +0000
Manifest this update: Sun 29 Mar 2026 07:02:02 +0000
Manifest next update: Mon 30 Mar 2026 07:02:02 +0000
Files and hashes: 1: 6ocBJxa2bugiZCwvChuQFItceyk.crl (hash: tzhhWMgPX5hVWGrKjPpXKf5MNK0JuvfPoMu+NocCyLU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:4f:7f:fb:49:b3:a6:ca:3c:5d:00:7f:5e:b0:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea87012716b66ee822642c2f0a1b90148b5c7b29
Validity
Not Before: Mar 29 07:02:02 2026 GMT
Not After : Mar 30 07:02:02 2026 GMT
Subject: CN=35138faf96908db261740fac0ece5176733a9476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:72:b3:44:44:27:bc:b7:3b:fe:59:78:a8:fa:
95:59:9c:33:5d:85:11:ed:5f:87:5a:51:34:9b:22:
50:e8:c2:3e:a7:64:58:ae:cd:56:d5:30:f5:57:e6:
77:a4:23:46:8e:c7:9f:97:21:41:67:e4:e0:a6:8a:
e1:cf:89:af:eb:d5:00:c6:d2:f5:7a:34:e4:f0:2a:
4e:ea:63:5d:9e:3c:77:e3:31:2d:28:41:8f:c7:e5:
d6:f7:ed:c7:0f:fd:74:a9:bc:4d:3f:24:31:2b:0a:
7e:c7:c1:d8:c7:a3:d4:68:a3:42:8c:49:c7:98:06:
57:7b:bf:a4:14:db:a3:98:6a:fc:bd:47:62:cd:ec:
94:e1:87:d1:84:f6:ca:2b:46:3c:4d:61:a3:80:af:
64:e0:9c:ce:3c:7b:0a:31:dd:87:05:2e:4d:e2:7a:
5b:62:71:ba:e8:25:dc:78:73:47:cc:65:86:c9:87:
64:73:dc:0f:71:75:cf:93:01:84:c4:9a:18:c3:df:
e4:fd:e0:e8:9e:6d:93:df:d0:86:78:dd:fb:eb:c7:
7c:20:21:1c:b1:1f:7e:35:bb:3f:42:64:94:6a:45:
27:75:a3:a0:16:db:67:a3:b2:e3:85:74:c6:32:e1:
e4:03:f6:a4:c0:72:32:ed:86:d5:9c:df:db:2c:28:
9d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:13:8F:AF:96:90:8D:B2:61:74:0F:AC:0E:CE:51:76:73:3A:94:76
X509v3 Authority Key Identifier:
keyid:EA:87:01:27:16:B6:6E:E8:22:64:2C:2F:0A:1B:90:14:8B:5C:7B:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6ocBJxa2bugiZCwvChuQFItceyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/729fcd-704b-4081-8d25-c9ff1ee6ad95/1/6ocBJxa2bugiZCwvChuQFItceyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:01:16:1b:d9:91:d9:d7:2e:46:f6:6e:86:70:c7:ed:76:f1:
0d:39:ce:03:fa:06:62:0c:d5:d9:53:71:a7:c8:da:d7:81:7c:
7b:04:86:17:34:11:f2:47:ea:f8:26:02:cd:5a:71:40:c5:df:
ff:bf:c4:e7:61:82:89:b5:0d:66:35:87:42:df:4b:aa:77:a7:
8c:27:1f:47:df:96:85:b0:5d:99:c8:fd:fc:0e:86:83:59:3c:
ae:c4:66:eb:93:45:89:6e:2d:ca:b6:37:df:2c:1a:e3:f4:82:
04:61:f5:e8:46:8a:0c:39:0d:26:83:b2:39:3f:99:2c:90:16:
cc:89:88:39:00:7c:89:9a:9b:ae:7b:2e:bd:b3:10:81:c9:0a:
db:77:85:f5:84:ca:df:9f:87:70:b1:3b:8e:d2:d4:22:da:e2:
42:f8:16:a1:83:66:1d:ed:d4:a9:7c:4e:40:fd:ea:ce:10:a1:
3f:77:7a:3c:cb:76:34:60:bb:d2:af:a8:57:7c:cc:64:0a:a0:
52:11:7a:93:00:07:7f:c9:e7:ff:fc:5f:59:ce:97:ce:04:33:
2e:53:1f:a4:61:9e:da:aa:ba:bb:56:05:17:59:a4:4d:a1:f9:
b1:3a:b3:f3:c7:c2:3b:98:98:b1:65:a4:48:b9:03:4b:84:4e:
30:1b:4d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:44:39 2026 by rpki-client