Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
File: xDzur3eV-33zSLBLIn5QpJoaG3w.mft (raw, json)
Hash identifier: QDy2LhylkFJJFId3qhK/eSrdP2iCQJguohSJBg9aWlY=
Subject key identifier: 5F:7F:EA:37:E0:EE:06:2E:87:54:65:BF:C3:20:9A:32:C8:0E:AA:25
Authority key identifier: C4:3C:EE:AF:77:95:FB:7D:F3:48:B0:4B:22:7E:50:A4:9A:1A:1B:7C
Certificate issuer: /CN=c43ceeaf7795fb7df348b04b227e50a49a1a1b7c
Certificate serial: 019D3941547EA50E9FCE503D65CD3DC179F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
Manifest number: 15C9
Signing time: Sun 29 Mar 2026 11:01:15 +0000
Manifest this update: Sun 29 Mar 2026 11:01:15 +0000
Manifest next update: Mon 30 Mar 2026 11:01:15 +0000
Files and hashes: 1: xDzur3eV-33zSLBLIn5QpJoaG3w.crl (hash: f2lfwAQhS/KCdwQ48R3QrE0zxtO9pfZnmeDyFDdum4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:54:7e:a5:0e:9f:ce:50:3d:65:cd:3d:c1:79:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c43ceeaf7795fb7df348b04b227e50a49a1a1b7c
Validity
Not Before: Mar 29 11:01:15 2026 GMT
Not After : Mar 30 11:01:15 2026 GMT
Subject: CN=5f7fea37e0ee062e875465bfc3209a32c80eaa25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:e5:06:5e:fa:aa:9e:33:4f:5c:fe:e4:2c:f8:
77:ed:1a:5c:53:11:82:63:70:55:90:e0:9e:36:16:
d8:97:0a:1f:4b:4f:24:ae:10:07:d3:c2:75:2b:b9:
91:67:36:06:13:3c:6f:eb:7c:eb:69:b0:27:51:83:
90:10:dc:5d:7c:47:08:a9:64:70:dc:f6:d6:77:67:
b3:81:16:40:79:6b:4d:1b:59:e1:67:6a:21:8e:01:
22:51:2f:1a:f6:b4:5c:b6:4b:f7:e4:07:23:52:29:
57:45:7c:44:c9:d9:df:7c:38:cd:72:16:14:5e:eb:
8d:77:7f:39:d9:b6:29:71:b2:05:b3:1c:7b:1b:b4:
48:18:10:6a:ac:da:cd:7b:60:d6:d7:7c:b9:0c:7d:
06:98:a4:26:20:eb:0d:6c:63:9f:bf:c2:63:44:a5:
93:4f:80:5e:04:41:6a:55:3b:50:18:8a:48:82:e5:
d7:8f:ce:76:05:9e:31:83:e5:89:da:22:4b:8a:3a:
c5:18:21:f0:65:c0:6c:d7:81:61:02:05:55:93:78:
64:15:d0:0e:ef:9a:55:c7:2e:e7:44:5e:99:01:9a:
eb:f9:f9:7f:0c:a2:19:0f:30:19:40:3e:00:26:73:
9e:9b:36:d9:58:d1:06:6c:85:6b:28:72:64:87:79:
6d:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7F:EA:37:E0:EE:06:2E:87:54:65:BF:C3:20:9A:32:C8:0E:AA:25
X509v3 Authority Key Identifier:
keyid:C4:3C:EE:AF:77:95:FB:7D:F3:48:B0:4B:22:7E:50:A4:9A:1A:1B:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xDzur3eV-33zSLBLIn5QpJoaG3w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/8a8d3a-0804-44d7-8655-08bae3a54ff6/1/xDzur3eV-33zSLBLIn5QpJoaG3w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:00:f2:6e:1e:34:67:7e:1b:06:f8:a5:71:12:88:9d:f1:1d:
92:db:00:72:ea:46:67:b3:b5:c7:fc:7e:80:04:ad:1c:45:e2:
08:19:25:61:f1:05:5e:e0:8a:2d:1b:cc:b4:73:55:6c:81:73:
39:92:6f:98:2e:85:af:29:e7:f3:36:12:1c:16:54:94:d4:53:
f1:fa:a9:6a:2b:45:50:ff:12:82:82:10:51:53:73:1d:90:81:
06:fc:35:66:8e:34:b1:b1:68:6c:5b:68:b9:28:d5:21:de:f7:
a4:5e:78:ea:89:c8:94:57:f7:d8:3f:af:3c:87:5f:a9:af:68:
59:2f:61:bd:b2:9c:26:aa:71:44:1c:38:62:71:a3:8e:1e:51:
cc:f2:14:99:bb:66:3c:2b:cf:66:8b:68:91:38:df:c8:ab:73:
4d:0d:a7:e2:2a:a5:b3:15:3d:52:d8:c8:48:ba:30:66:e1:0c:
c2:8e:35:00:d6:be:24:b7:eb:40:24:b6:4f:7e:46:a8:a7:64:
e3:6c:53:21:1b:bb:83:c5:99:b1:0d:d3:e3:17:9e:ae:3c:cf:
88:b9:70:b7:28:14:1c:29:83:bd:bb:38:04:b1:95:f1:9a:ec:
40:69:b2:5c:69:da:e2:c1:19:2b:6a:50:0f:ba:c5:63:ad:be:
a4:e8:3d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:03:16 2026 by rpki-client