Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
File: RmSgU4XAYmgVApGX6xUGSF09bRw.mft (raw, json)
Hash identifier: 961GziHzOVnoDg7iqXSNDqlWUmAU4niW7zfj9DhgYPA=
Subject key identifier: AD:00:32:25:5E:CD:07:14:4F:B2:BF:ED:5A:37:C7:03:C1:A3:E6:01
Authority key identifier: 46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C
Certificate issuer: /CN=4664a05385c0626815029197eb1506485d3d6d1c
Certificate serial: 019D39AEE48B9FD4F8ECF1A8B18947358CDC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
Manifest number: 09E5
Signing time: Sun 29 Mar 2026 13:00:56 +0000
Manifest this update: Sun 29 Mar 2026 13:00:56 +0000
Manifest next update: Mon 30 Mar 2026 13:00:56 +0000
Files and hashes: 1: RmSgU4XAYmgVApGX6xUGSF09bRw.crl (hash: UMlj0Q9nkpVLsvWQpAQwH/CHMoWXZxvYxlM4/36auyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:e4:8b:9f:d4:f8:ec:f1:a8:b1:89:47:35:8c:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4664a05385c0626815029197eb1506485d3d6d1c
Validity
Not Before: Mar 29 13:00:56 2026 GMT
Not After : Mar 30 13:00:56 2026 GMT
Subject: CN=ad0032255ecd07144fb2bfed5a37c703c1a3e601
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a6:54:6b:f8:69:57:6c:46:6f:f4:e9:8b:df:
38:7c:63:dc:41:d1:0b:9e:8a:69:e4:d5:75:25:15:
1c:34:a2:d0:cc:83:6f:31:42:4e:6f:e1:ff:fd:8d:
ad:f8:09:43:a2:d8:38:8d:6e:02:62:34:40:a0:a5:
3b:fa:85:b8:ef:07:b1:8f:da:f3:0d:eb:3e:0e:5b:
ee:31:cd:43:34:62:d3:5a:05:51:00:46:2e:0a:35:
03:71:a3:f3:fe:43:cd:78:76:82:30:8d:8e:89:6e:
a7:e0:21:a8:7b:61:9a:1a:d9:19:06:0a:0d:10:2c:
75:da:c0:fa:78:df:e7:a8:2c:28:f7:9b:7f:0e:2c:
bd:51:1c:83:e5:56:e1:41:88:04:4e:85:7e:9b:68:
aa:fc:86:fd:28:ba:01:7b:a6:73:a6:be:bd:9a:11:
94:d1:0a:3e:f8:b9:8f:c9:03:9d:cd:e7:9b:9a:fd:
b5:a4:9a:c9:28:a1:12:c0:19:d8:ec:f9:88:a2:f6:
fd:14:1a:1f:df:c7:a9:04:9e:77:3f:87:e2:62:51:
8d:59:40:9b:5d:10:35:5b:5a:8f:fd:5b:8e:4e:ea:
a6:1e:5d:20:f8:e7:9d:7a:23:07:a6:ba:68:ea:f4:
72:40:2f:07:1e:e4:df:7e:54:76:4d:e0:e3:00:db:
a9:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:00:32:25:5E:CD:07:14:4F:B2:BF:ED:5A:37:C7:03:C1:A3:E6:01
X509v3 Authority Key Identifier:
keyid:46:64:A0:53:85:C0:62:68:15:02:91:97:EB:15:06:48:5D:3D:6D:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RmSgU4XAYmgVApGX6xUGSF09bRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/bd7646-add9-4859-9de9-9c8485483d59/1/RmSgU4XAYmgVApGX6xUGSF09bRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:5c:1b:11:27:39:31:de:45:c6:c2:6c:8f:41:b9:c7:de:ef:
8a:74:fb:86:f9:e3:21:76:d4:6c:24:d9:dc:19:b4:e7:d4:37:
06:e0:24:8f:6f:12:85:c3:10:7a:83:86:90:dd:bd:31:74:5a:
38:dd:b4:ae:5a:8d:ea:67:ee:1a:c1:5c:a8:cd:20:f9:ee:ef:
20:a9:78:bf:29:06:89:9f:8b:3c:12:ea:22:c6:6a:16:00:a6:
c2:0a:8b:01:c9:ff:93:fb:6e:da:d7:95:d1:71:d8:b0:53:ed:
f1:d0:73:8b:95:00:fe:b7:43:59:28:6c:e5:92:87:74:42:35:
c9:44:96:13:2c:52:e8:e2:a0:a1:0a:57:8b:3b:81:b9:0f:9e:
0a:5f:dc:da:91:66:65:ff:d1:30:07:8b:fe:05:06:2c:dd:01:
c3:25:e9:08:b3:a5:aa:fb:0e:3e:75:bb:2b:77:3c:3b:c0:55:
5f:dc:65:21:d5:7f:e2:9c:88:55:80:c3:2f:71:ab:44:a1:3e:
7a:1c:fc:27:13:ad:52:4d:3f:60:2b:b1:cc:31:26:e4:29:30:
08:ba:c9:df:a8:3f:bf:4b:1f:56:aa:8f:06:fa:20:de:96:4d:
43:f9:50:d3:5c:99:e5:c9:49:15:c6:07:9c:92:ac:c1:6e:e3:
45:2e:b5:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:35:30 2026 by rpki-client