Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
File: tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft (raw, json)
Hash identifier: xkG1yFo5YmM87259qF2bGAjrgPwQKvWjWCZ0TWiVExA=
Subject key identifier: BD:34:7C:73:CF:30:7B:E4:9C:9F:2B:36:7E:B4:8E:28:39:05:3E:BF
Authority key identifier: B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE
Certificate issuer: /CN=b57c8ac055c574d8cf13522b964b92314d211eae
Certificate serial: 019D37529FDD31A5FBF5EF6F34F22571409A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
Manifest number: 15DB
Signing time: Sun 29 Mar 2026 02:00:54 +0000
Manifest this update: Sun 29 Mar 2026 02:00:54 +0000
Manifest next update: Mon 30 Mar 2026 02:00:54 +0000
Files and hashes: 1: tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl (hash: D124iBxqyp6GepmrlvIn0kf4WYlvqw7lz5NwpthHT1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:9f:dd:31:a5:fb:f5:ef:6f:34:f2:25:71:40:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b57c8ac055c574d8cf13522b964b92314d211eae
Validity
Not Before: Mar 29 02:00:54 2026 GMT
Not After : Mar 30 02:00:54 2026 GMT
Subject: CN=bd347c73cf307be49c9f2b367eb48e2839053ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7a:b8:4d:cf:a8:c9:fc:b0:ac:1d:f3:be:f0:
20:e5:9a:01:05:56:a1:75:d3:cb:f8:ef:c6:81:ea:
a5:8e:7b:5b:60:e8:b1:75:af:4b:b9:d4:41:d0:3e:
15:ed:bf:81:e2:c4:f0:ca:b2:3e:af:1a:6c:a9:e4:
bb:48:34:e1:07:87:3f:b5:6a:96:bd:42:13:da:2b:
a1:92:d1:ac:aa:87:fc:fa:5c:0d:1b:ff:17:14:65:
8f:cc:cf:ab:22:65:ef:dd:f4:89:22:af:b8:ee:ff:
9b:07:66:8f:70:71:22:72:a4:c0:fd:78:15:04:fc:
a8:cb:bc:b0:8a:69:8c:8b:ba:bb:e6:34:aa:92:c1:
a0:f3:f5:32:7e:c2:53:8e:98:8d:47:39:01:ac:f3:
23:30:97:17:0e:97:66:8c:1f:e4:a4:e0:93:fb:0a:
f0:10:79:1c:dd:4c:1d:c4:36:7e:d4:ff:5c:a9:75:
78:ea:ea:ee:63:3e:6c:0a:cd:6f:2b:6c:72:81:0c:
9f:b0:4d:05:4b:08:17:fb:15:88:95:33:32:83:4a:
e8:6f:31:4c:4e:ef:15:8b:cf:a3:0d:5e:0a:1c:9c:
75:8a:42:b6:37:7d:05:46:4f:f2:d7:67:bb:6e:b0:
55:e7:2a:fe:d7:40:af:27:29:c0:7a:57:05:95:14:
59:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:34:7C:73:CF:30:7B:E4:9C:9F:2B:36:7E:B4:8E:28:39:05:3E:BF
X509v3 Authority Key Identifier:
keyid:B5:7C:8A:C0:55:C5:74:D8:CF:13:52:2B:96:4B:92:31:4D:21:1E:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tXyKwFXFdNjPE1IrlkuSMU0hHq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/289f40-a233-4c63-b93e-8e4c7c7b6504/1/tXyKwFXFdNjPE1IrlkuSMU0hHq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:5b:1c:0b:97:70:1e:b4:03:86:21:ad:d0:47:78:4f:7f:30:
2d:9a:d8:4c:9e:54:ae:7b:22:9c:d4:a9:f0:fb:7f:2a:38:5e:
5d:6e:06:e5:8c:63:70:3f:7d:4c:ef:02:a2:fb:30:60:12:15:
f8:63:8f:97:18:6f:a1:1a:18:05:50:98:86:df:64:ee:80:6b:
58:17:8a:91:ea:53:9e:dc:8a:68:96:37:b0:e2:29:01:68:fe:
58:fd:29:75:9a:67:58:6a:bb:53:02:0c:b9:f7:bb:38:b9:5d:
66:d6:84:85:26:47:6e:8f:fe:c4:be:e4:41:6a:60:b6:6d:9c:
3c:2f:6f:3f:1f:57:70:7c:83:9b:cb:07:b6:af:20:4b:de:02:
63:f7:72:cf:93:e5:60:a1:d9:a6:9c:d3:5d:78:6e:0c:74:c0:
71:47:37:d0:2d:8b:c6:f7:bc:59:32:da:7f:b5:97:39:ee:ec:
93:8f:c0:01:bb:94:1c:8e:b3:0b:7e:4f:80:3f:a0:45:65:c7:
fc:ef:dc:d6:03:a3:db:1a:f4:af:24:55:6c:c9:f1:5a:13:9c:
65:d8:16:74:df:b6:c4:60:41:94:1f:6f:ff:d5:cc:bb:16:5f:
97:28:dd:2b:a7:b9:b8:df:a4:2e:7a:66:dd:e0:40:56:e7:b0:
ac:e3:0a:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:58:15 2026 by rpki-client