Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
File: rRIanMsoPqIejQoHCi4LakDph30.mft (raw, json)
Hash identifier: yYnCoXDQcDgiwG/GKsLaISe1A36VsBur6lqR+pQmt5E=
Subject key identifier: A7:D9:01:DF:07:03:19:D0:0E:9B:BD:F9:1E:22:99:34:F2:F5:4D:53
Authority key identifier: AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
Certificate issuer: /CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Certificate serial: 019D38655839E6B88358EAE07D1CC31BF9AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 07:00:58 +0000
Manifest this update: Sun 29 Mar 2026 07:00:58 +0000
Manifest next update: Mon 30 Mar 2026 07:00:58 +0000
Files and hashes: 1: rRIanMsoPqIejQoHCi4LakDph30.crl (hash: NQCpI01o2PDhbeIFCeo2b0aKI9vlLeet58Ltzikaf8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:58:39:e6:b8:83:58:ea:e0:7d:1c:c3:1b:f9:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Validity
Not Before: Mar 29 07:00:58 2026 GMT
Not After : Mar 30 07:00:58 2026 GMT
Subject: CN=a7d901df070319d00e9bbdf91e229934f2f54d53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:3b:a3:d6:70:87:86:86:70:2b:e6:5d:e0:31:
8e:a5:0f:db:31:e8:1a:d5:44:45:0e:1b:83:64:26:
f6:21:43:22:74:64:75:c8:cf:02:6d:0a:31:70:e3:
ed:ac:01:7d:bf:0c:ea:3e:c1:17:18:eb:c6:0f:c1:
d4:ae:9e:d8:31:90:cb:d8:ab:10:7b:fd:8f:0b:bd:
f2:ec:34:37:4e:0c:60:4c:11:b8:ad:50:c8:7b:ad:
75:68:38:63:45:4a:e8:9d:05:3a:7e:f1:22:ff:c6:
f2:79:43:3d:f1:9d:b3:81:64:28:6b:ff:a1:b6:79:
dd:48:02:4b:08:88:83:09:93:3d:49:75:5c:a6:52:
53:4e:c1:ef:79:40:90:11:3b:18:93:20:4c:e6:07:
ef:a9:73:3f:30:5d:01:68:21:11:79:70:27:fe:36:
9a:f6:68:27:9f:c6:9e:44:b9:fd:ff:62:bf:fa:4a:
d5:ea:41:7f:7f:11:e6:5e:77:ba:be:13:b7:4e:d1:
dc:ed:84:ff:1d:20:f3:4c:e0:d2:e6:22:b0:a6:cf:
47:7a:26:1c:c9:4c:b4:d5:77:3f:c2:39:34:4a:08:
ae:2b:f3:67:36:87:4c:3a:1e:e5:65:54:e2:4a:64:
9c:1b:c8:ef:f9:6f:23:84:a5:c5:c9:01:60:a0:8a:
23:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:D9:01:DF:07:03:19:D0:0E:9B:BD:F9:1E:22:99:34:F2:F5:4D:53
X509v3 Authority Key Identifier:
keyid:AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:cb:19:c4:74:40:84:c5:c9:39:1f:e4:b3:a1:fb:b7:05:f2:
4f:5a:1b:9e:fe:14:6f:0a:c4:4b:4c:fb:72:f4:b9:c7:e4:b9:
c9:cf:7b:82:3b:23:c9:25:2c:46:94:ad:0f:44:65:5d:97:f9:
51:28:c0:41:67:e5:16:ad:51:0d:a4:a9:bb:01:67:56:13:be:
04:99:7d:8b:71:7f:84:87:c8:fe:d1:82:c6:1b:f9:e1:c4:b2:
49:ae:3b:12:42:2e:c7:42:a9:d3:31:a6:c1:9f:a1:3c:f9:38:
90:3b:af:51:1c:d0:52:3d:8b:c8:3b:96:62:37:ef:34:8d:4a:
1f:d0:4b:5d:3d:d7:93:c5:36:b9:3f:44:31:f4:00:e1:33:e7:
8b:d9:93:a0:5b:1c:e8:0c:1c:44:a7:0c:ca:93:2b:91:d3:4f:
cb:5f:59:bd:91:e5:48:82:c0:aa:4d:4d:d8:70:8a:13:88:a2:
f6:a1:88:1d:dc:60:58:ce:db:13:a7:55:b5:c8:46:4f:6c:ce:
d2:59:50:b2:89:29:56:8d:c6:d9:06:90:3c:62:8c:f3:9e:fb:
bf:7b:4c:e0:b5:ad:76:df:58:16:b7:79:8f:a1:28:35:7b:59:
08:7f:fb:f7:c7:bd:2e:af:78:15:6e:51:75:f5:e1:d2:10:d2:
a4:79:e9:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:14:26 2026 by rpki-client