Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
File: USzy1zi8akeL64yogkEB_w_IGmE.mft (raw, json)
Hash identifier: Ugpbpu4sZqcRS/mImMQgwyYYFqDIfYaAk7ILWsrJvCg=
Subject key identifier: F9:8E:31:D5:33:B7:29:54:45:69:05:07:9E:EB:B5:3E:8D:6F:08:28
Authority key identifier: 51:2C:F2:D7:38:BC:6A:47:8B:EB:8C:A8:82:41:01:FF:0F:C8:1A:61
Certificate issuer: /CN=512cf2d738bc6a478beb8ca8824101ff0fc81a61
Certificate serial: 019D390A1FB8F2A4D267B48545077212A82F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
Manifest number: 0671
Signing time: Sun 29 Mar 2026 10:00:57 +0000
Manifest this update: Sun 29 Mar 2026 10:00:57 +0000
Manifest next update: Mon 30 Mar 2026 10:00:57 +0000
Files and hashes: 1: USzy1zi8akeL64yogkEB_w_IGmE.crl (hash: tAg34HgMvf96tBV0TjP7xnovDz5WeuTY26KhLYEjyFI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:1f:b8:f2:a4:d2:67:b4:85:45:07:72:12:a8:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512cf2d738bc6a478beb8ca8824101ff0fc81a61
Validity
Not Before: Mar 29 10:00:57 2026 GMT
Not After : Mar 30 10:00:57 2026 GMT
Subject: CN=f98e31d533b72954456905079eebb53e8d6f0828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f1:e7:63:25:1c:e2:ef:a7:d4:de:ae:3b:bf:
24:05:1d:c7:be:7c:cd:11:a6:6f:9e:2b:77:7e:b1:
fc:8e:26:32:9b:5d:b4:54:f8:31:30:8f:03:ec:2a:
b2:08:88:74:d0:45:b4:ea:8b:7f:0b:26:f3:88:60:
f1:29:8a:d2:1c:ad:1c:9c:03:71:53:36:05:27:0f:
e5:e2:d5:ee:47:d0:86:a8:75:1f:60:91:e3:4c:44:
71:7a:b4:9e:53:89:3c:f2:a2:a2:e0:92:00:eb:67:
01:ee:8f:8f:31:26:25:dc:ac:e8:a4:b1:38:31:55:
e1:de:f4:2b:c3:2b:d8:e4:d8:ab:8c:7b:31:ef:e4:
f6:61:08:7d:81:7e:78:c6:de:e0:f7:eb:4c:ff:ba:
a0:87:c1:22:67:90:92:2d:9c:b0:12:67:f3:b4:bc:
8e:16:59:e3:d2:44:33:b9:db:ba:28:c4:a8:9f:65:
e8:07:b7:9a:b4:87:b3:49:29:56:65:9f:76:10:be:
13:9c:ed:f6:2b:0d:cd:1e:5d:11:0a:c5:57:55:de:
ed:ad:20:de:bd:1e:d0:33:1a:88:b1:44:a4:3a:e1:
09:f7:ff:73:27:1c:a1:18:d4:01:74:b9:5e:72:2d:
48:c9:29:36:7b:6d:cc:4d:7e:1c:bb:d0:31:ce:5e:
2d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:8E:31:D5:33:B7:29:54:45:69:05:07:9E:EB:B5:3E:8D:6F:08:28
X509v3 Authority Key Identifier:
keyid:51:2C:F2:D7:38:BC:6A:47:8B:EB:8C:A8:82:41:01:FF:0F:C8:1A:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USzy1zi8akeL64yogkEB_w_IGmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/4a54cf-2414-4d6f-8ba5-7001baf775f2/1/USzy1zi8akeL64yogkEB_w_IGmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:88:21:44:d5:dc:89:99:42:48:eb:c1:3d:d4:6d:75:4e:1d:
ef:be:b9:8d:3d:85:32:9f:b0:4c:85:10:8c:6a:42:cb:38:ae:
86:8a:85:09:02:16:b7:33:bb:9d:4f:a7:42:31:28:e0:8a:22:
f7:b6:1f:8e:aa:41:3e:24:f7:d7:e2:b3:30:a2:96:86:57:24:
26:e3:50:d7:4a:c1:82:46:f1:99:cc:7d:79:c4:32:16:05:1b:
ec:38:2d:e5:c0:58:62:5a:4d:a6:d7:d8:58:81:65:d6:66:f5:
e8:4c:39:ae:3f:9c:09:b3:87:55:26:1b:d7:22:16:86:dc:73:
0b:9c:04:3b:f0:66:a2:7e:6c:41:03:cb:3c:88:8c:54:17:96:
84:f6:09:88:ea:eb:27:7f:a0:bb:b0:45:e2:50:03:0a:80:0a:
b9:b9:2a:3e:79:0c:43:c8:a3:79:19:f9:f8:41:b2:8a:03:48:
30:52:f0:35:70:2c:9e:de:84:ac:91:f9:dc:73:89:88:5c:2d:
38:64:dd:66:82:91:41:0e:40:45:bf:56:42:4c:36:17:97:b0:
2a:e5:50:57:3f:8f:ad:8e:88:0d:62:6a:47:1a:ea:29:cb:06:
09:fe:72:ab:b4:04:fa:5d:58:7b:52:2c:e2:6f:51:84:9c:67:
bb:44:c9:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:15 2026 by rpki-client