Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
File: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft (raw, json)
Hash identifier: 9B+AaBPR+c/YJVHygECWit/BlJp5czXFTS+zBndrGbo=
Subject key identifier: 27:F4:04:57:A6:72:D4:D1:51:38:2E:66:04:D2:BA:D2:85:54:99:6A
Authority key identifier: D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
Certificate issuer: /CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Certificate serial: 019D38D396CAD8CBEF39E1CC01473AE85B6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
Manifest number: 05A7
Signing time: Sun 29 Mar 2026 09:01:23 +0000
Manifest this update: Sun 29 Mar 2026 09:01:23 +0000
Manifest next update: Mon 30 Mar 2026 09:01:23 +0000
Files and hashes: 1: 1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl (hash: AAqi9BI1p1i4P3mZfMdxEBr0qbw9aQtWmFG8vBe1j/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:96:ca:d8:cb:ef:39:e1:cc:01:47:3a:e8:5b:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d42cc40267e3592e1b52f0f0096cb1f2f0af167d
Validity
Not Before: Mar 29 09:01:23 2026 GMT
Not After : Mar 30 09:01:23 2026 GMT
Subject: CN=27f40457a672d4d151382e6604d2bad28554996a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ae:df:48:ff:40:38:f0:96:a5:c8:92:24:c5:
dd:1e:15:70:59:38:63:ea:77:fb:75:11:c6:3e:21:
63:84:94:f3:3d:e1:7e:07:eb:7f:1d:72:9a:72:9d:
83:ff:bd:19:c4:2e:1e:6a:9a:7c:8a:bd:96:20:57:
4b:f3:94:3e:c3:a8:ec:cc:5d:16:a8:97:1e:4d:0c:
ab:fd:4c:b7:51:89:fd:cb:5e:16:3c:7e:c1:31:f6:
c5:d6:7a:b3:79:95:17:c5:3f:bd:b2:6a:a0:d9:8d:
0e:bc:04:68:a6:9e:4a:7b:7b:37:ac:6a:8c:57:ea:
d9:43:7e:fc:5f:92:9d:05:7f:05:92:bb:bc:e5:25:
66:6e:75:d5:ba:65:1a:e2:48:1c:51:5f:89:f0:28:
06:64:b9:13:fb:4b:a0:87:b8:a0:c0:88:82:30:4c:
cd:b7:fc:73:1b:3a:3b:a7:ce:ce:98:00:62:f5:f0:
3e:e4:cc:ff:d4:48:7e:36:6a:60:3a:f4:c3:a7:1a:
11:98:15:84:9f:a0:38:f8:e2:fe:19:68:b1:f9:64:
20:37:b5:94:e3:3a:c9:c9:71:0a:8e:e4:e1:65:49:
36:43:b1:b1:e8:d0:6e:fd:7f:d2:2a:e6:d6:ac:1f:
1a:ac:ad:d1:93:59:cf:60:eb:a5:e9:d1:57:59:75:
dd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F4:04:57:A6:72:D4:D1:51:38:2E:66:04:D2:BA:D2:85:54:99:6A
X509v3 Authority Key Identifier:
keyid:D4:2C:C4:02:67:E3:59:2E:1B:52:F0:F0:09:6C:B1:F2:F0:AF:16:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CzEAmfjWS4bUvDwCWyx8vCvFn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/71345d-2f2d-4b59-9e67-16e1308737b0/1/1CzEAmfjWS4bUvDwCWyx8vCvFn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:07:87:03:99:b0:06:a4:b1:a7:be:02:80:35:54:37:19:16:
bf:aa:fa:ad:9f:ec:13:05:33:09:39:55:20:e9:c7:b2:8b:74:
d2:1d:74:df:fe:9a:c7:57:0e:0e:14:f0:59:8d:78:d2:ec:9c:
52:5b:31:64:ce:b0:5e:64:a4:d5:d4:3b:d2:fd:49:dd:94:d0:
a9:2d:1b:13:6e:e4:06:4f:fc:c1:3a:8f:46:ae:05:dd:d7:c6:
bf:aa:13:5b:3a:9c:4b:0c:59:23:35:7d:1e:c6:ca:32:51:8b:
04:fe:51:53:39:67:7b:de:1b:48:04:05:99:76:c0:fa:5c:6e:
92:13:2a:d3:71:e0:d7:96:25:86:6c:64:70:92:d2:46:18:03:
c4:6f:f7:44:66:cb:43:2e:f8:f0:37:66:46:ca:fd:dd:80:25:
a6:89:18:45:97:03:fc:13:22:91:49:04:ad:92:6c:b6:b9:fd:
7a:8c:65:17:24:b2:b9:b4:bb:81:57:06:18:17:44:97:ea:15:
fa:f0:ed:06:d1:b3:de:00:73:03:7d:38:59:f9:2b:9f:a2:9a:
07:c9:b9:e5:6b:ba:59:8a:58:ec:2c:15:7c:78:cf:10:ef:b8:
c4:80:80:5a:12:64:89:97:50:e0:d7:47:c3:53:20:60:d6:74:
67:de:d6:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:59:57 2026 by rpki-client