Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier: nDV85pBLxOpQ9QJISkOgzMQIEcR8URw7Uw8hyro0J9Y=
Subject key identifier: 69:0F:A4:10:0A:0E:39:52:D9:72:EC:12:B2:9F:D8:7B:09:19:67:AA
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial: 019D3865EF5C292270C085236389E1C9FDFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number: 151F
Signing time: Sun 29 Mar 2026 07:01:37 +0000
Manifest this update: Sun 29 Mar 2026 07:01:37 +0000
Manifest next update: Mon 30 Mar 2026 07:01:37 +0000
Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: +tnXwg2uFkFKsPd1E/jgAY1t291ytP8LCBIDKd1b3mA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:ef:5c:29:22:70:c0:85:23:63:89:e1:c9:fd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=036847b297235faf071686fed2c1e910bf600486
Validity
Not Before: Mar 29 07:01:37 2026 GMT
Not After : Mar 30 07:01:37 2026 GMT
Subject: CN=690fa4100a0e3952d972ec12b29fd87b091967aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:fe:b5:29:49:08:9c:7b:d9:53:b1:91:98:c7:
8c:d5:5b:9a:6f:41:44:29:38:9f:14:2c:62:89:c4:
6b:72:2a:d2:95:0b:1a:fe:3f:06:14:d0:41:6b:76:
98:fd:61:0f:bf:6c:82:eb:69:d0:e0:b9:c8:b9:a5:
2d:09:22:59:45:3a:11:86:8f:68:e5:31:ba:36:4d:
07:6e:2f:e5:53:43:ff:7d:87:3a:7b:1b:f4:31:4e:
60:19:17:65:5d:b2:5b:e1:34:f9:b6:6c:29:6a:e7:
5f:7b:79:00:a9:9c:23:c1:bb:66:ae:b3:5d:15:ae:
10:0b:b0:26:18:57:03:a2:05:56:4c:c9:77:8c:84:
88:a8:dd:40:1b:dc:e1:41:9a:3d:08:f3:ee:49:c9:
39:c1:76:26:76:79:e9:07:a9:ff:0b:e8:73:e2:2e:
28:f2:c4:76:da:15:e4:f2:1e:a3:8d:31:cc:83:fb:
fe:32:fe:a4:b4:0f:c6:56:65:6c:3c:a5:5a:29:30:
7f:a6:12:ae:98:27:09:c5:ac:d2:35:40:4e:68:c1:
43:02:1d:9a:42:0e:4f:96:0b:02:fd:71:50:52:7b:
7b:27:ef:94:45:6f:32:06:6e:a1:f5:d7:0b:c0:75:
7c:20:7e:87:9d:ac:96:0b:14:3e:85:71:6a:46:22:
78:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:0F:A4:10:0A:0E:39:52:D9:72:EC:12:B2:9F:D8:7B:09:19:67:AA
X509v3 Authority Key Identifier:
keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:2a:34:8c:d5:f4:03:3a:ac:10:f8:e2:b3:6a:93:02:36:b1:
8f:dd:86:17:a9:c7:47:b9:05:41:25:14:11:05:1d:a0:f1:79:
02:af:3b:0e:00:c4:2e:84:4b:e3:4d:5b:4b:80:cb:ce:2c:3f:
97:08:ea:8d:00:9b:28:e0:de:2b:61:c8:c6:a6:af:62:13:38:
a6:c3:99:4a:ad:38:39:46:5f:68:5a:50:74:bb:ef:5f:7a:e7:
f6:16:10:c6:52:9d:1e:e9:52:08:ce:d1:4f:e9:59:ca:d8:8f:
d3:3e:ed:0d:e8:2d:4e:49:0f:22:bb:d1:04:bd:0d:5c:fa:75:
b3:bd:35:ce:b2:0b:9e:73:ef:17:4e:d0:d8:d3:c9:d7:1e:26:
bf:20:32:83:31:3b:ab:3d:6d:43:66:b5:bc:fb:08:d7:04:97:
52:ed:3d:09:6a:6d:0d:17:6d:8f:e1:d1:2d:5c:e5:5d:9e:3c:
49:75:db:6a:4f:e8:ae:d5:7f:6b:38:d3:c2:ed:e7:8e:2b:78:
a7:08:dc:12:e7:16:3b:61:c4:e3:26:b2:0c:65:3c:e3:6f:9a:
6c:68:28:16:aa:a3:6c:77:e3:48:fb:b0:d0:a4:15:c5:50:ba:
d2:b9:88:45:3a:4d:24:79:68:1f:66:d1:f0:a0:73:78:f5:af:
a8:f5:5b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:38 2026 by rpki-client