Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
File: Cl9hKRQr0Kncad_UAkif8l9bPvI.mft (raw, json)
Hash identifier: tG6gBCVxkt4zCqKqsbMHtwKsQY/U/S//XMwx8ID4J58=
Subject key identifier: 8A:89:E6:E6:81:2C:94:60:1E:30:6D:D1:81:43:FB:41:25:87:1C:0C
Authority key identifier: 0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2
Certificate issuer: /CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2
Certificate serial: 019D371B2BFD48CA8792AB6D1272E4F3738F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 01:00:20 +0000
Manifest this update: Sun 29 Mar 2026 01:00:20 +0000
Manifest next update: Mon 30 Mar 2026 01:00:20 +0000
Files and hashes: 1: Cl9hKRQr0Kncad_UAkif8l9bPvI.crl (hash: IMr8IonxI2Tz539GqSTOUnsmIN/Vp6HgUoWdc24sG2w=)
2: sPT_dPM8M-1DZ37Rs-G1BW6_lkg.roa (hash: rvqXHRiB6yIq5Ga7UKUI3l/uI3IYPLJIYXXxgzP0H8o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:2b:fd:48:ca:87:92:ab:6d:12:72:e4:f3:73:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a5f6129142bd0a9dc69dfd402489ff25f5b3ef2
Validity
Not Before: Mar 29 01:00:20 2026 GMT
Not After : Mar 30 01:00:20 2026 GMT
Subject: CN=8a89e6e6812c94601e306dd18143fb4125871c0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:20:74:01:71:d0:d8:82:ca:3a:52:49:6a:4e:
ae:5b:44:fb:c1:50:a6:72:67:2c:14:f6:af:c4:6e:
df:98:ed:da:93:8e:06:a2:4a:0a:4d:65:e0:8a:62:
8f:c6:e9:c1:7e:c3:a8:3c:21:68:b4:f2:49:6f:d3:
45:c5:a6:f7:0a:f6:c4:b4:6b:95:50:91:6e:90:4d:
fe:59:20:36:f7:c1:82:29:e2:29:10:d3:95:de:db:
7c:d1:11:4e:9e:44:6e:9b:19:68:fd:3a:63:fb:5d:
92:3e:90:a1:c4:f9:b9:8a:dc:7c:63:53:b5:a3:8b:
c6:f0:11:0a:2d:ab:b2:36:c6:38:c7:62:2d:14:d7:
8b:69:4d:29:0f:c1:d5:a7:c3:46:c7:70:32:f8:00:
f2:44:fc:05:a7:95:cd:10:2f:f1:f0:26:ba:e1:84:
b1:74:7a:c0:b8:66:4a:19:57:fe:f4:73:84:78:4b:
3a:14:94:56:f0:4a:fe:e2:bf:18:c8:49:ae:55:96:
44:b0:26:28:2a:c7:3e:af:1a:2e:c0:ae:95:c6:4d:
29:6f:33:eb:18:c0:e3:8f:11:75:49:ef:d3:82:69:
61:a0:87:00:99:31:2b:53:4b:2a:dc:e7:4d:c5:35:
24:2c:f0:56:3b:b6:a2:4f:f8:1a:24:5b:83:7b:5f:
ed:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:89:E6:E6:81:2C:94:60:1E:30:6D:D1:81:43:FB:41:25:87:1C:0C
X509v3 Authority Key Identifier:
keyid:0A:5F:61:29:14:2B:D0:A9:DC:69:DF:D4:02:48:9F:F2:5F:5B:3E:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cl9hKRQr0Kncad_UAkif8l9bPvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/0ad264-3a50-4563-a35a-0d2bbe58c145/1/Cl9hKRQr0Kncad_UAkif8l9bPvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:18:45:17:52:a0:92:14:c4:42:d2:3f:1d:be:c4:9a:da:bc:
a3:7e:08:28:f2:32:f7:8a:aa:f6:81:94:80:42:31:c2:fc:6b:
d9:d4:7f:86:05:02:9f:f8:85:ff:1f:5b:8d:2c:cf:5b:23:b2:
30:89:fe:eb:53:77:5b:17:23:fe:df:54:32:aa:03:8a:d6:40:
9c:28:4e:04:c5:ae:24:68:00:2d:63:4c:c9:01:fd:40:05:1b:
75:91:0b:6c:67:f7:82:97:f3:9d:f7:ef:af:ac:c1:08:5b:ff:
a9:06:17:44:59:73:76:fa:64:b9:5b:bf:d4:4f:ca:c7:41:50:
df:de:87:0f:9e:dd:c8:a9:6b:df:39:25:dc:a7:db:df:d1:f9:
fa:f4:a5:c5:f5:11:06:e8:af:a0:0d:cd:fe:44:d3:48:0b:f1:
3e:3a:7d:79:d1:1c:14:3c:05:a9:26:6c:e4:99:54:31:7a:44:
4a:c7:4a:ea:62:83:91:c7:6a:99:0b:22:74:c3:80:24:e1:0e:
9b:41:9c:5b:32:39:13:86:7a:87:f6:cc:d1:5a:d2:ac:83:38:
87:8a:b3:e7:cb:0f:c3:67:e9:49:23:6c:25:78:ef:c1:e3:d0:
7a:86:88:7e:c8:88:38:c1:ce:aa:91:55:9a:00:63:e9:ff:11:
96:ff:e1:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:31 2026 by rpki-client