Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
File: 1MiI65YKABkAwnleiq-iaPYC2EI.mft (raw, json)
Hash identifier: fAX3DQ0r8EpbblRctDJQT+lQ7IRx9j3zpMHFQnAEbbk=
Subject key identifier: 37:B0:FC:76:80:CF:76:6F:4C:BC:36:B7:C6:97:92:38:7E:13:4A:BA
Authority key identifier: D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
Certificate issuer: /CN=d4c888eb960a001900c2795e8aafa268f602d842
Certificate serial: 019D38661E0E9131816216385288B7E0CF1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
Manifest number: 0D9B
Signing time: Sun 29 Mar 2026 07:01:49 +0000
Manifest this update: Sun 29 Mar 2026 07:01:49 +0000
Manifest next update: Mon 30 Mar 2026 07:01:49 +0000
Files and hashes: 1: 1MiI65YKABkAwnleiq-iaPYC2EI.crl (hash: JulMNEZaA3lVGtLAUd2U+Fze9IhnO+mp7Zzj5LIFjyg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:1e:0e:91:31:81:62:16:38:52:88:b7:e0:cf:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c888eb960a001900c2795e8aafa268f602d842
Validity
Not Before: Mar 29 07:01:49 2026 GMT
Not After : Mar 30 07:01:49 2026 GMT
Subject: CN=37b0fc7680cf766f4cbc36b7c69792387e134aba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:09:6b:43:61:18:55:dc:3b:2c:db:33:f0:8d:
4a:5b:6e:0f:36:30:7b:6f:6f:a2:3c:b2:c1:e5:df:
23:6a:4a:bf:c5:80:98:d9:20:1e:73:b7:e0:3f:49:
04:c9:89:0e:40:46:e5:2b:3f:1c:07:95:f9:0a:12:
03:fa:41:84:38:89:a4:13:ad:d7:5a:10:95:b5:13:
f9:e0:bb:88:45:0f:62:ba:60:cd:52:b4:9e:f4:9c:
66:f2:79:67:49:41:63:96:53:5e:f3:00:c5:bc:1e:
e9:e5:e2:cb:ee:36:4c:73:af:01:4a:08:36:09:33:
2b:3f:bc:54:05:df:20:70:f5:26:7d:00:3a:a7:33:
15:03:d6:9e:23:fc:ea:78:1c:0c:96:15:8b:3a:f4:
fb:96:87:c9:58:5a:e1:09:79:c0:f6:75:4d:8d:48:
d1:2f:95:55:db:7c:88:96:ee:96:96:b3:a9:54:6a:
03:66:c1:a8:78:7d:0c:fd:01:12:8a:4a:a8:89:5e:
4d:4a:f4:75:82:ac:e5:a4:4a:cb:09:29:8c:fd:18:
29:40:a6:2c:36:a5:45:2a:b0:42:85:81:ca:8c:61:
fb:66:e3:7a:6e:94:41:04:f5:a2:c0:b7:f1:b3:1f:
70:b5:dd:6d:bc:87:af:98:51:ed:44:0c:b0:10:49:
3b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:B0:FC:76:80:CF:76:6F:4C:BC:36:B7:C6:97:92:38:7E:13:4A:BA
X509v3 Authority Key Identifier:
keyid:D4:C8:88:EB:96:0A:00:19:00:C2:79:5E:8A:AF:A2:68:F6:02:D8:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MiI65YKABkAwnleiq-iaPYC2EI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/2d734f-aa8c-4735-ac71-15d7691f4a2a/1/1MiI65YKABkAwnleiq-iaPYC2EI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:43:07:38:9d:e4:f6:6d:bc:e7:98:ef:2f:00:a7:14:f7:61:
8a:31:57:fd:d2:36:0c:cd:92:77:dd:47:22:10:6f:eb:79:71:
16:c3:de:16:8a:97:3a:47:f0:fc:49:93:6e:d2:d3:1d:d4:bc:
ee:b0:74:1e:b4:87:5c:77:24:b2:da:47:e9:cb:f9:c8:03:ae:
af:7e:26:59:eb:68:1c:ad:ad:75:c8:01:ec:68:e1:53:97:13:
96:3a:5f:eb:cf:53:2a:e1:e0:a1:26:48:c6:36:05:0f:15:43:
f2:6e:c4:56:6b:91:46:dd:80:ab:c3:d8:a3:d2:b2:5a:94:49:
4a:47:7d:6e:79:4e:63:ab:79:1c:f3:be:2e:2b:20:25:fb:89:
d6:70:0e:34:62:95:7c:16:6c:00:67:73:e1:62:c2:92:b6:8c:
a3:fd:ed:92:f2:ac:ed:31:4b:7f:cf:08:ba:0a:a7:5a:cc:43:
50:9b:6c:04:e4:ef:50:d0:5c:28:92:c2:65:1e:18:6f:d8:39:
f7:67:77:ed:c1:de:e6:fb:87:bc:45:01:26:ad:1f:5a:99:27:
f4:8a:19:1a:0f:8f:10:7e:2a:e7:47:e8:29:3e:a6:1f:4c:3e:
85:f3:04:04:54:a1:b5:f6:7c:c7:fe:27:8f:17:a3:06:d9:cc:
74:8c:7b:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:41 2026 by rpki-client