Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft
File: MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft (raw, json)
Hash identifier: qqyA3VwPUlfaSo9zlMQt28MKts0UhnW23+F6/HJ1Dwo=
Subject key identifier: 75:2A:50:83:75:10:D2:CE:BC:D0:4F:81:3A:A2:CF:E7:C0:90:2C:9D
Authority key identifier: 31:74:AE:50:71:1E:1A:D5:F2:F8:2B:A2:0D:2F:73:CA:B7:09:DA:B8
Certificate issuer: /CN=3174ae50711e1ad5f2f82ba20d2f73cab709dab8
Certificate serial: 019D382E606D8D8662D8225C28E896E0E7D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft
Manifest number: 40
Signing time: Sun 29 Mar 2026 06:00:56 +0000
Manifest this update: Sun 29 Mar 2026 06:00:56 +0000
Manifest next update: Mon 30 Mar 2026 06:00:56 +0000
Files and hashes: 1: MXSuUHEeGtXy-CuiDS9zyrcJ2rg.crl (hash: s/TwN5audPuiXoASJuC0zcCnxlEPTUHauovAleuCdgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:60:6d:8d:86:62:d8:22:5c:28:e8:96:e0:e7:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3174ae50711e1ad5f2f82ba20d2f73cab709dab8
Validity
Not Before: Mar 29 06:00:56 2026 GMT
Not After : Mar 30 06:00:56 2026 GMT
Subject: CN=752a50837510d2cebcd04f813aa2cfe7c0902c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:39:b3:be:f9:7f:7e:99:f6:35:f4:89:e1:35:
d2:4b:a7:2e:37:1d:d2:5c:fa:30:03:44:03:9c:26:
0c:6c:de:f7:ec:61:cc:30:7a:8e:df:c9:0a:2a:ae:
6e:a6:67:aa:dc:8d:a1:8b:b2:dc:70:3a:b5:e0:d2:
45:22:dd:0c:06:c0:03:21:9a:d7:95:59:bd:77:64:
2f:a2:41:04:df:b2:6a:99:80:63:4f:26:55:5c:aa:
40:9d:1c:0e:8e:c3:ea:69:b9:39:81:15:66:6d:1b:
4c:86:db:2b:27:02:ae:80:68:6f:f1:9f:e7:66:4e:
16:54:9e:21:71:fc:51:8d:dc:4d:15:b7:76:7a:9f:
81:55:e7:61:18:bd:0a:31:6c:9f:04:bb:6c:03:56:
d3:cf:78:fd:78:0d:3a:d5:1a:e7:cb:8a:ae:b5:cf:
a4:46:ec:65:10:99:39:2e:d4:de:29:fb:e8:e2:86:
9e:7c:a8:c1:f6:27:10:1d:1f:ea:8a:7f:85:b6:24:
e2:9c:42:da:37:ca:0a:59:ab:dd:b7:33:e9:df:03:
3d:1b:2a:ae:42:f3:2c:e1:ba:ca:f7:3f:c0:6b:7e:
35:d9:89:14:b9:20:02:f0:ac:dc:d6:bb:3b:fe:90:
99:cf:9b:a1:5a:f1:fb:2f:84:20:52:a9:c2:80:fa:
51:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:2A:50:83:75:10:D2:CE:BC:D0:4F:81:3A:A2:CF:E7:C0:90:2C:9D
X509v3 Authority Key Identifier:
keyid:31:74:AE:50:71:1E:1A:D5:F2:F8:2B:A2:0D:2F:73:CA:B7:09:DA:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/7e75fd-865c-4240-be38-9e6822ca8899/1/MXSuUHEeGtXy-CuiDS9zyrcJ2rg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:20:da:be:7c:f8:15:58:c5:1b:5d:8f:25:ac:13:fc:84:cc:
52:3f:7b:62:0e:12:37:64:74:87:c4:12:78:32:12:35:5a:b7:
3a:f7:4d:7d:59:52:9b:6e:65:30:d8:25:17:83:fb:df:ae:50:
2b:d5:9d:33:de:00:86:1a:2f:61:80:cb:55:66:bc:55:24:99:
1b:80:4d:f5:f3:68:5c:cf:02:66:18:04:32:5d:b4:24:e5:8f:
6f:96:0f:a1:47:6a:e3:40:29:d7:56:1a:30:c3:a4:1e:1a:f5:
af:71:68:f2:d6:46:c5:c5:66:69:84:77:02:4e:1c:b7:8c:b3:
60:80:01:c1:7d:28:05:ca:1f:0f:6e:61:ec:cc:6f:ff:23:98:
f5:fb:be:58:58:3e:9b:d0:7d:bc:9f:95:77:05:02:db:01:a3:
fc:26:64:79:48:c2:75:1d:ff:8e:67:3b:e1:9a:61:17:7b:22:
f7:dd:03:76:e2:60:3f:4b:3b:ad:84:87:90:a2:31:a7:e5:0c:
97:dd:28:15:b0:c1:63:1f:7c:69:1f:a9:53:45:8c:b9:73:18:
95:5f:2e:b3:c6:b4:03:59:44:7a:08:99:c2:22:63:08:65:67:
5c:18:5b:11:c1:7b:39:c2:29:34:cd:8c:5f:80:20:1c:aa:c4:
ec:5e:03:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:38:52 2026 by rpki-client