Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
File: _l28QbEed7xEvSxzVVS1tCWNDDM.mft (raw, json)
Hash identifier: xQ2Iqyz0/aSayTulS0uOgyeoVfkoPDdlhPf9S/8vvjU=
Subject key identifier: D6:52:BE:DB:DA:3C:0E:8F:70:7F:45:D9:80:89:23:A0:BA:12:D2:41
Authority key identifier: FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
Certificate issuer: /CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Certificate serial: 019D38659B9EA017696F0A0A1C1594F999A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 07:01:16 +0000
Manifest this update: Sun 29 Mar 2026 07:01:16 +0000
Manifest next update: Mon 30 Mar 2026 07:01:16 +0000
Files and hashes: 1: _l28QbEed7xEvSxzVVS1tCWNDDM.crl (hash: 4EDO7KG7gmlTi/DuMKW+GraK6zELSVMXvTLE9p8O3Gw=)
2: vzX0LpiRwEQlpNTtMNXqGCdmemM.roa (hash: KNuGavq6SzPf6J1CyBPc8g7thzHVaBolgWDilffZwwY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:9b:9e:a0:17:69:6f:0a:0a:1c:15:94:f9:99:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Validity
Not Before: Mar 29 07:01:16 2026 GMT
Not After : Mar 30 07:01:16 2026 GMT
Subject: CN=d652bedbda3c0e8f707f45d9808923a0ba12d241
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c1:55:d1:03:0d:63:28:4f:72:c3:86:67:27:
f3:a7:a7:cb:b9:92:9a:60:39:23:9c:40:9a:a6:39:
b1:b2:63:1c:79:9f:8d:97:f3:aa:b1:9d:f6:be:af:
26:82:cd:e5:75:07:31:68:68:1e:d7:fa:3e:de:e4:
91:bd:9c:4f:09:d9:b8:61:9e:b3:0e:94:97:f4:43:
0a:78:3c:ce:c0:4c:0f:0f:4b:fb:18:2a:ca:8c:b8:
d0:2d:81:ef:59:e7:87:b8:a3:a6:93:30:cb:6e:3c:
b5:6d:20:32:1d:69:8f:59:69:45:0c:35:e5:2c:de:
a1:35:23:89:89:79:40:1a:53:42:b9:35:4c:cd:8d:
a1:48:a8:59:21:60:47:aa:96:9e:fa:e1:40:1e:f4:
a4:5c:5c:7e:5c:a8:32:82:64:b1:5b:23:ba:31:aa:
79:09:4d:22:fc:f2:fe:4d:b4:25:69:d9:96:57:18:
cc:21:c2:f9:1f:2c:1b:62:67:73:14:49:6a:d2:42:
bb:07:46:3c:ca:48:ba:8f:f3:c9:cc:1d:9f:06:b3:
0c:13:49:66:eb:55:89:5b:ca:45:e9:fd:58:54:e7:
45:8c:ff:75:af:03:eb:80:92:76:81:f6:d7:97:4a:
bb:12:62:a2:e2:b4:32:7b:96:5f:af:a7:4d:7e:a0:
65:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:52:BE:DB:DA:3C:0E:8F:70:7F:45:D9:80:89:23:A0:BA:12:D2:41
X509v3 Authority Key Identifier:
keyid:FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:1e:54:cf:c7:fc:69:d2:e0:10:86:9b:34:f0:bd:44:dc:12:
64:5f:8b:bd:b1:64:ba:85:08:b4:d4:e1:5d:77:83:02:72:5b:
d8:74:8c:e1:80:5a:c7:02:19:3f:cc:2c:e6:57:b1:4f:66:79:
9f:22:d1:10:54:61:a1:a8:0e:96:7b:25:a3:2f:ab:a5:1f:d2:
ab:2c:c2:49:42:ec:f2:55:15:2a:6f:c9:08:01:31:5a:69:3a:
89:5d:5f:2b:52:98:47:b4:9a:b4:1b:17:a9:b6:ca:d4:b9:b7:
76:16:51:d9:bd:8e:da:40:29:1c:46:0b:10:61:48:19:e5:52:
52:b6:da:9d:6b:5a:d5:4a:d2:9b:01:3b:e0:17:a8:ec:36:f1:
8f:46:bb:d0:76:ce:f9:d1:c7:45:40:43:89:5e:fa:40:ce:cc:
64:cb:ca:1c:8c:c5:b7:e2:34:71:4a:f5:72:5e:a3:03:fd:1a:
ec:a3:39:59:8c:93:ff:fc:0f:70:db:8e:5c:74:f0:f7:00:bd:
80:3c:8f:c7:0b:ab:b2:37:4d:d3:7b:36:42:a1:f1:28:ee:cf:
9d:d3:2e:f6:00:5b:d6:f8:c0:2a:c0:21:cd:45:26:bf:9f:e3:
ff:6a:2d:8a:6a:bb:15:0c:e9:d4:1d:3f:c3:22:67:36:c8:21:
b2:93:cf:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:47 2026 by rpki-client