Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
File: CUsU8URwOb33-d7l-ik4XB3OlZ0.mft (raw, json)
Hash identifier: iu+KK2UGsBE4nObi/AYGG8bQDnPzqZ47Et9EhlboidQ=
Subject key identifier: CE:43:4B:0C:35:AD:71:3E:86:97:33:77:7A:01:8F:FC:6D:51:BB:8E
Authority key identifier: 09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D
Certificate issuer: /CN=094b14f1447039bdf7f9dee5fa29385c1dce959d
Certificate serial: 019D38667B7DC0D6584CFEDCDFD16678ED65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
Manifest number: 181E
Signing time: Sun 29 Mar 2026 07:02:13 +0000
Manifest this update: Sun 29 Mar 2026 07:02:13 +0000
Manifest next update: Mon 30 Mar 2026 07:02:13 +0000
Files and hashes: 1: CUsU8URwOb33-d7l-ik4XB3OlZ0.crl (hash: 1uP0CYCdA6sgow68Ff86WkOUGgqjGiFSLNysjQjTHHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:7b:7d:c0:d6:58:4c:fe:dc:df:d1:66:78:ed:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=094b14f1447039bdf7f9dee5fa29385c1dce959d
Validity
Not Before: Mar 29 07:02:13 2026 GMT
Not After : Mar 30 07:02:13 2026 GMT
Subject: CN=ce434b0c35ad713e869733777a018ffc6d51bb8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:06:c5:89:84:d5:cd:db:e3:c3:16:5a:e8:39:
f9:0e:57:98:af:f3:a3:99:57:01:19:42:9a:95:8c:
d4:4a:91:a0:fc:4a:ce:a0:47:2f:df:eb:b5:58:26:
ab:a6:78:69:f9:3e:22:ef:ce:0a:29:2a:bc:4e:2f:
2b:e7:5e:a7:26:15:3a:45:d9:12:3d:0d:3b:e2:f2:
5c:30:cf:d2:bd:e3:40:71:7f:a0:96:64:4b:70:2c:
d5:db:e7:d9:59:08:34:4f:66:68:1e:a7:82:f0:4a:
4d:5e:47:9e:80:3f:b8:3b:9d:22:32:35:84:fb:4e:
2d:15:2c:50:cb:2c:86:15:f9:1e:f1:27:0b:c7:81:
f6:03:fe:3e:02:d5:72:8b:63:be:25:1a:d8:8c:8c:
fd:83:4f:ab:10:7e:31:10:f4:2b:65:9b:34:7a:dd:
b6:b5:eb:59:d3:ca:6b:e7:cf:a6:8c:ef:bc:a8:1c:
cc:ef:b0:ba:f8:8a:fe:46:19:46:6d:2a:4e:f4:fe:
2f:e7:76:9a:1a:62:78:cb:9a:9f:de:1a:db:a7:ae:
e2:39:aa:13:41:c6:79:1f:45:b5:4b:12:1a:5b:94:
8f:d4:4c:72:50:e4:b0:4e:98:13:66:23:e9:29:71:
31:3c:52:a4:92:77:d2:c5:ee:bf:31:ad:d3:79:07:
65:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:43:4B:0C:35:AD:71:3E:86:97:33:77:7A:01:8F:FC:6D:51:BB:8E
X509v3 Authority Key Identifier:
keyid:09:4B:14:F1:44:70:39:BD:F7:F9:DE:E5:FA:29:38:5C:1D:CE:95:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CUsU8URwOb33-d7l-ik4XB3OlZ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/606939-cc69-4cfa-843e-50b64cbd0fe1/1/CUsU8URwOb33-d7l-ik4XB3OlZ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:43:e7:66:16:75:d2:b1:3c:9a:a8:68:dc:6e:29:66:e9:da:
27:17:3a:33:d4:6e:3f:48:d0:4d:ee:19:bd:30:5e:03:a0:a5:
6a:a8:16:d2:cb:2e:c2:59:a7:16:2c:f7:2d:1a:77:36:c5:9f:
a9:b8:33:10:2a:96:3a:e1:84:ae:fa:c1:9b:a7:e1:20:e8:c9:
6f:f6:80:f1:89:dd:42:b8:09:09:a1:16:62:15:06:53:91:fe:
31:9f:2b:0b:e4:64:30:b2:f8:a6:5f:11:c5:46:12:7f:9f:68:
56:94:fd:32:7d:f4:2a:3d:23:f2:33:56:51:77:1b:2e:c2:d4:
42:a0:98:fd:fa:3e:21:b3:37:ab:17:69:2c:a6:0e:4d:93:f0:
0e:de:b7:8b:37:5a:bc:39:58:d8:78:f5:96:ad:a0:ac:07:5e:
dd:a8:0f:4f:1a:10:c3:42:cc:c8:36:7a:ae:ab:10:b2:75:ef:
a8:e1:c2:4f:b9:cf:d7:56:d8:cb:dc:59:10:fb:14:b6:72:2f:
ba:52:65:f3:86:6c:bb:1e:29:f2:e7:bc:a4:e4:33:ca:36:4b:
7f:44:2e:0e:e8:2e:65:5e:28:9f:b0:61:2f:50:42:39:0e:2c:
b9:a9:ad:74:a4:23:6e:25:25:30:9e:97:b4:3a:ec:f0:7f:e1:
f4:85:05:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:38 2026 by rpki-client