Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/435d45-bee2-491a-b287-65f42efe59de/1/rAsK5lTCnX8fDU4tNRarfe8Msp0.mft
File: rAsK5lTCnX8fDU4tNRarfe8Msp0.mft (raw, json)
Hash identifier: 18E52UCWmLh8nkfVz7qrcOOXxuRAAHx4/vVdZBX/cxg=
Subject key identifier: 85:73:01:8B:C8:4C:37:6B:A3:9E:D8:88:46:2A:C2:4C:BF:82:16:73
Authority key identifier: AC:0B:0A:E6:54:C2:9D:7F:1F:0D:4E:2D:35:16:AB:7D:EF:0C:B2:9D
Certificate issuer: /CN=ac0b0ae654c29d7f1f0d4e2d3516ab7def0cb29d
Certificate serial: 019D38D39192E3E6DDC74CD93E7D668A4FD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAsK5lTCnX8fDU4tNRarfe8Msp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/435d45-bee2-491a-b287-65f42efe59de/1/rAsK5lTCnX8fDU4tNRarfe8Msp0.mft
Manifest number: 07AE
Signing time: Sun 29 Mar 2026 09:01:22 +0000
Manifest this update: Sun 29 Mar 2026 09:01:22 +0000
Manifest next update: Mon 30 Mar 2026 09:01:22 +0000
Files and hashes: 1: rAsK5lTCnX8fDU4tNRarfe8Msp0.crl (hash: zbIFEgjDrYTuSYdC7L3/YvADwMR4RQKhqD/mFfw9LlQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/435d45-bee2-491a-b287-65f42efe59de/1/rAsK5lTCnX8fDU4tNRarfe8Msp0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/435d45-bee2-491a-b287-65f42efe59de/1/rAsK5lTCnX8fDU4tNRarfe8Msp0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rAsK5lTCnX8fDU4tNRarfe8Msp0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:91:92:e3:e6:dd:c7:4c:d9:3e:7d:66:8a:4f:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac0b0ae654c29d7f1f0d4e2d3516ab7def0cb29d
Validity
Not Before: Mar 29 09:01:22 2026 GMT
Not After : Mar 30 09:01:22 2026 GMT
Subject: CN=8573018bc84c376ba39ed888462ac24cbf821673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f6:f9:7e:a9:60:e7:46:aa:f5:d7:ef:92:96:
9b:ee:d3:fe:25:f5:ce:3b:17:83:89:11:28:96:44:
69:7e:fd:2e:32:84:91:0c:28:9a:bf:24:c7:3b:0d:
97:6a:1a:a8:7e:78:f1:a4:40:8d:2a:aa:21:98:84:
f5:33:96:cb:f1:08:b9:88:52:77:7e:c7:f9:69:e2:
eb:45:9a:ae:ac:d0:ab:dd:94:56:ff:3e:1e:e9:cb:
2a:07:94:41:c9:7f:66:19:6c:f9:1e:05:78:18:75:
46:08:1f:21:d2:4b:53:c3:7f:39:52:a5:52:29:18:
fb:60:d8:e5:88:b2:83:82:e5:65:98:91:69:4b:00:
1f:3c:bb:bb:b0:78:c3:a8:47:a0:fd:c0:99:46:d8:
64:c7:75:96:d9:07:3c:83:bd:e0:d8:0f:a9:7f:cf:
e5:8e:98:03:90:f9:ff:62:6f:6a:e7:96:12:61:64:
ae:14:e6:f1:37:66:4c:e2:48:e2:53:18:b6:10:85:
30:0c:60:aa:8e:7b:4e:69:ec:2e:3f:af:45:ed:bb:
0a:52:0b:1d:d3:a3:34:47:3e:d8:e0:cf:d8:a9:01:
0d:6e:24:c4:19:1b:fe:7e:72:be:2a:7a:e4:15:38:
fb:4a:4b:29:67:c7:a0:01:71:54:72:7d:48:e3:f6:
ad:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:73:01:8B:C8:4C:37:6B:A3:9E:D8:88:46:2A:C2:4C:BF:82:16:73
X509v3 Authority Key Identifier:
keyid:AC:0B:0A:E6:54:C2:9D:7F:1F:0D:4E:2D:35:16:AB:7D:EF:0C:B2:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAsK5lTCnX8fDU4tNRarfe8Msp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/435d45-bee2-491a-b287-65f42efe59de/1/rAsK5lTCnX8fDU4tNRarfe8Msp0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/435d45-bee2-491a-b287-65f42efe59de/1/rAsK5lTCnX8fDU4tNRarfe8Msp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:0c:a3:d7:e8:e2:37:b7:d9:7e:f0:24:fd:90:62:43:19:22:
e5:0d:05:cb:bc:7d:cb:39:66:a7:d7:b7:88:90:4b:48:0b:87:
72:29:c2:4a:41:ad:ec:fe:09:34:4a:2f:e9:8c:b0:8e:b7:c3:
72:32:2a:05:87:1a:b6:40:f0:39:3f:10:df:bc:d9:50:be:21:
93:df:fc:bf:39:bc:43:00:ed:98:44:6a:98:71:db:49:03:8b:
11:f9:c4:dd:d3:bd:c3:49:ae:5b:58:d3:99:3b:6e:f2:cb:60:
69:f2:29:0a:4c:bb:5e:2d:70:fe:76:49:73:fa:4e:51:8d:bf:
77:4e:d3:9c:7a:ef:27:0d:2d:ef:d8:13:6f:67:eb:04:8a:90:
17:1a:34:7c:ad:9f:c4:6f:22:22:50:7a:31:6f:19:e4:18:44:
f8:5b:10:13:7d:ad:ea:76:59:88:34:12:5d:46:6a:21:11:6e:
4d:d3:b9:95:15:c4:f5:56:c6:3b:ed:1b:15:e6:35:69:a1:e0:
fc:42:36:9f:16:36:2c:a5:a4:0d:fb:03:b0:c5:0c:1d:fe:e6:
e0:e8:f7:b1:22:f7:54:16:57:7a:a9:12:e7:c2:32:e5:25:ff:
fe:fa:ae:b1:8b:5b:48:7a:5d:d3:96:cc:1d:15:fc:8a:32:77:
47:ba:6b:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:59:57 2026 by rpki-client