Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
File: mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft (raw, json)
Hash identifier: TTUzSRqsG+er6HMwpbjIHG8OF8dLDX+TFGf9apfnRWQ=
Subject key identifier: B9:A4:5A:4B:5E:A7:41:C6:4D:C1:BE:95:8F:24:D6:92:08:3F:2B:78
Authority key identifier: 99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
Certificate issuer: /CN=99f4973e524b08717582577630d33193e53b67c9
Certificate serial: 019D38D33281BBF6FDEBFC7AC77ADB537535
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
Manifest number: 0741
Signing time: Sun 29 Mar 2026 09:00:58 +0000
Manifest this update: Sun 29 Mar 2026 09:00:58 +0000
Manifest next update: Mon 30 Mar 2026 09:00:58 +0000
Files and hashes: 1: mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl (hash: esIsjexGoha1GdbZhonTptU0ZZwmjuXfqIoi+z0wN18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:32:81:bb:f6:fd:eb:fc:7a:c7:7a:db:53:75:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99f4973e524b08717582577630d33193e53b67c9
Validity
Not Before: Mar 29 09:00:58 2026 GMT
Not After : Mar 30 09:00:58 2026 GMT
Subject: CN=b9a45a4b5ea741c64dc1be958f24d692083f2b78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ec:26:3a:43:65:63:9e:90:7d:65:9c:b3:40:
63:0c:3c:c3:24:0b:0a:aa:c5:76:ed:f1:7f:d2:31:
08:50:20:20:5f:8e:90:f0:f4:66:bc:cb:24:3c:3f:
28:f9:dd:53:8a:8e:fd:ea:4d:10:b3:44:d1:5b:44:
2a:bb:1f:c4:3a:e9:bf:ba:37:b8:dd:4e:c1:dd:cf:
e7:60:ce:af:7d:4b:60:45:e8:06:93:38:8d:ad:53:
a0:b7:12:c7:12:fb:e6:1b:a2:c9:7b:18:1f:0d:07:
25:48:92:66:d0:96:c5:44:0d:24:6b:09:3e:9b:3b:
77:c5:45:80:5b:b5:5a:c6:86:d0:c5:56:99:91:30:
20:2e:27:92:ba:f6:88:9e:e6:45:d2:89:a1:bb:ef:
70:96:ac:11:92:c4:b2:89:09:59:33:c6:4d:43:8c:
ba:36:21:8f:63:38:c4:ab:1d:9e:aa:28:8a:b4:57:
0b:34:09:fb:62:ba:79:f3:cf:da:67:ab:e8:a0:34:
71:32:76:22:c0:32:2e:5b:f5:a5:4b:43:d8:93:8d:
3e:00:21:94:46:36:e1:48:15:e4:04:b7:52:37:df:
71:60:11:4c:3b:c9:a2:c0:b1:ad:3b:30:0e:dd:b5:
f2:4b:04:b8:ca:83:29:b4:29:a0:73:d5:99:c0:76:
63:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A4:5A:4B:5E:A7:41:C6:4D:C1:BE:95:8F:24:D6:92:08:3F:2B:78
X509v3 Authority Key Identifier:
keyid:99:F4:97:3E:52:4B:08:71:75:82:57:76:30:D3:31:93:E5:3B:67:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mfSXPlJLCHF1gld2MNMxk-U7Z8k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/3c4a64-4b35-41d2-82a5-f30303f3f2f5/1/mfSXPlJLCHF1gld2MNMxk-U7Z8k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:6b:87:42:9a:f0:a4:40:00:2e:de:77:39:8c:0a:0d:aa:37:
a9:fb:f7:25:ed:b4:06:5f:f4:f7:07:94:94:c6:86:cb:f1:09:
d2:08:de:71:6b:df:21:19:a4:bb:c8:86:12:0b:6a:3d:d0:a7:
7d:27:98:12:ec:33:8e:ce:8b:af:37:1b:78:bb:a5:61:75:53:
e7:e1:70:17:67:27:54:34:f3:28:6c:a1:70:ec:a8:8c:6f:bf:
18:90:e3:36:be:72:da:b8:0a:4c:bc:ee:6d:81:59:af:4d:00:
a5:75:3f:06:9f:e4:a1:14:38:ce:25:3a:3f:f1:c2:0b:8b:14:
fc:b7:ba:02:39:1b:89:b8:f0:c1:ce:a8:72:b7:74:18:25:30:
41:8c:1a:5c:f0:82:ce:39:ac:e1:fc:36:e2:04:e9:df:16:73:
d6:4f:86:33:ec:7f:05:21:23:48:73:60:2c:ee:13:89:b9:be:
70:c1:6d:7e:48:7f:2c:b0:9c:09:8f:1b:32:45:1a:ca:67:6e:
35:cd:29:63:8b:74:2f:11:c4:8b:ef:d0:09:72:e2:2e:01:86:
f2:a0:ce:a0:b9:be:e2:c4:1e:d3:9f:ac:ac:8c:e6:67:cf:22:
0c:9f:4b:77:d6:10:19:dc:25:86:6c:5d:58:00:7b:3d:05:3c:
65:67:38:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:50 2026 by rpki-client