Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
File: mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft (raw, json)
Hash identifier: isUP2JF0fJ8J1DYvobqtk6VAaOwV6T1x0sugACTyqB0=
Subject key identifier: 36:C5:84:26:24:41:36:AB:66:BC:4F:95:C5:9D:B8:F5:9F:09:1F:8F
Authority key identifier: 99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
Certificate issuer: /CN=99f4973e524b08717582577630d33193e53b67c9
Certificate serial: 019E6BE2D5A76B5D265B5FD90C5268483DCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
Manifest number: 07E0
Signing time: Thu 28 May 2026 00:01:28 +0000
Manifest this update: Thu 28 May 2026 00:01:28 +0000
Manifest next update: Fri 29 May 2026 00:01:28 +0000
Files and hashes: 1: mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl (hash: ak0CP6EyHb97pfGYuzCwqqDVjtO7VvbfMc9AuLM98pU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 28 May 2026 23:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:6b:e2:d5:a7:6b:5d:26:5b:5f:d9:0c:52:68:48:3d:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99f4973e524b08717582577630d33193e53b67c9
Validity
Not Before: May 28 00:01:28 2026 GMT
Not After : May 29 00:01:28 2026 GMT
Subject: CN=36c58426244136ab66bc4f95c59db8f59f091f8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:44:4e:dc:26:79:70:af:af:14:4c:3f:49:fe:
0d:d7:b3:3a:58:a0:05:ad:d8:2c:1e:c4:2e:7f:a2:
0a:5b:ad:8d:76:c7:c8:5e:91:18:68:c9:a4:50:1a:
e5:82:6e:f1:92:fa:d8:06:77:06:d9:a7:55:0c:3a:
2a:21:29:e5:b5:3c:77:0b:e9:fa:2d:21:d9:13:06:
0b:5f:60:4e:3a:33:37:90:b2:92:87:e0:1d:67:aa:
68:aa:be:43:e7:6c:f1:34:a8:31:4b:e8:7c:74:89:
ed:8f:43:00:80:55:8e:f5:6c:4a:10:cd:8c:ae:cc:
4b:b0:76:a6:d2:6b:76:b3:af:76:fc:e8:c1:e9:99:
cd:d0:4c:06:3d:29:95:05:fa:cc:0b:c8:51:e0:a3:
05:56:9f:2e:44:0c:33:61:d1:5b:31:5d:6a:23:56:
fe:14:d8:93:23:18:e0:2a:aa:e0:d9:e1:87:ff:12:
b1:79:7a:fd:a5:d0:cf:e7:a5:39:1e:06:5b:0d:ad:
85:77:e9:4a:f5:23:20:85:72:fc:0b:0d:1a:2f:f6:
55:80:79:00:53:53:0a:c9:a7:c2:da:5b:2b:24:82:
83:d8:5a:41:ee:9f:8b:2e:2e:b8:2d:dc:de:77:e7:
c4:db:83:94:e2:20:83:01:c5:40:05:68:1a:1b:1e:
46:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C5:84:26:24:41:36:AB:66:BC:4F:95:C5:9D:B8:F5:9F:09:1F:8F
X509v3 Authority Key Identifier:
keyid:99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:30:61:ee:14:f9:39:cb:90:68:e0:94:7f:15:67:fd:17:27:
b9:1d:6c:dc:7e:93:5b:8c:12:2a:76:57:52:9f:3f:0f:80:3e:
76:5a:77:05:40:1e:16:22:c1:c2:0c:7d:fb:3f:39:3e:cf:f0:
0b:92:d1:e7:11:f3:76:d4:98:07:a5:76:8a:72:81:cf:2f:8b:
cf:29:d1:50:ca:a5:f7:f9:ee:8f:4c:66:b3:f6:29:88:c8:4e:
55:12:6e:c4:60:2d:63:a9:60:92:b6:5c:4f:42:98:6a:d6:bb:
b0:cb:53:dd:c8:e5:d8:47:5f:6f:27:8e:90:ff:9f:7e:64:5b:
21:29:2e:ca:5c:e6:86:9b:7d:02:db:3d:a2:e6:21:55:d4:62:
30:a8:76:38:9c:e3:a0:69:1a:5e:18:05:24:fa:05:1d:09:fc:
d9:8c:58:b7:57:75:0d:97:90:24:90:4b:34:26:1f:16:f5:e2:
85:b2:bd:7e:06:9e:04:ec:95:5e:c2:c1:99:89:5b:69:27:c4:
5a:40:7a:9b:49:48:8b:8c:1d:0e:11:7a:f1:eb:72:aa:56:cc:
16:71:0b:07:95:aa:ab:19:dd:ae:f7:67:9d:ed:a0:ad:4c:68:
86:0c:2c:a8:f0:b0:ec:cc:03:94:17:e1:84:c1:0c:18:73:87:
1f:13:61:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 28 10:19:28 2026 by rpki-client