Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.mft
File: WZypahnO8ifMM7NFhZaqRV0rePg.mft (raw, json)
Hash identifier: M2+Z454XkR9i1UqyT4xe1ltd6HmbbpcWmXUtwnXbVOc=
Subject key identifier: 1A:E1:CD:C4:EB:19:3C:BE:2D:6E:03:D9:ED:00:45:4E:4A:CA:D8:69
Authority key identifier: 59:9C:A9:6A:19:CE:F2:27:CC:33:B3:45:85:96:AA:45:5D:2B:78:F8
Certificate issuer: /CN=599ca96a19cef227cc33b3458596aa455d2b78f8
Certificate serial: 019D389C1C9C82D876E81EEFE7FCF57E8067
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZypahnO8ifMM7NFhZaqRV0rePg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.mft
Manifest number: 07ED
Signing time: Sun 29 Mar 2026 08:00:48 +0000
Manifest this update: Sun 29 Mar 2026 08:00:48 +0000
Manifest next update: Mon 30 Mar 2026 08:00:48 +0000
Files and hashes: 1: WZypahnO8ifMM7NFhZaqRV0rePg.crl (hash: eqEKsRgIZQnl19yJaAdow1CObJ9R2zma5gUHvgIHa0M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.mft
rsync://rpki.ripe.net/repository/DEFAULT/WZypahnO8ifMM7NFhZaqRV0rePg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:1c:9c:82:d8:76:e8:1e:ef:e7:fc:f5:7e:80:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=599ca96a19cef227cc33b3458596aa455d2b78f8
Validity
Not Before: Mar 29 08:00:48 2026 GMT
Not After : Mar 30 08:00:48 2026 GMT
Subject: CN=1ae1cdc4eb193cbe2d6e03d9ed00454e4acad869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:18:3b:5c:21:42:ad:0d:bf:20:c3:5d:61:43:
cf:4e:c6:72:f1:cf:8a:1f:b1:08:fa:9a:0b:90:f8:
3d:e3:dd:c3:d3:65:2a:5c:94:cf:d7:29:5e:fb:9b:
04:dd:79:cd:e5:dc:11:cd:5c:01:03:1c:c4:ca:9f:
32:3b:90:39:f8:11:da:9e:7f:f9:c9:c3:07:88:cb:
d3:9e:66:ca:0d:84:a4:41:4a:97:e7:e5:33:55:bb:
bc:89:06:fd:23:f0:2b:58:58:cb:f5:d2:88:15:b7:
22:69:20:8c:cd:83:59:a6:e4:6b:95:66:c6:c2:77:
10:0f:30:22:1a:28:cb:94:98:c9:98:f9:62:ea:57:
97:54:cd:86:31:3b:1e:5c:fb:98:2b:e2:cb:87:f7:
91:d6:d9:61:2b:0b:4c:55:cb:8a:c0:54:39:a0:82:
19:5d:9f:a6:be:e2:b7:bf:9a:da:13:cf:a1:41:1a:
b1:da:c0:e4:2c:b1:8d:5a:74:81:41:22:a5:b3:eb:
07:9d:c4:48:23:74:bf:9c:85:79:52:d7:c3:af:50:
0b:90:55:32:31:b8:ed:32:ad:e5:e2:21:79:41:5e:
ab:6b:7b:11:6c:31:41:e4:24:ec:88:97:63:1f:1f:
16:74:02:c8:0e:62:00:01:47:a8:19:d4:19:18:0b:
ca:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E1:CD:C4:EB:19:3C:BE:2D:6E:03:D9:ED:00:45:4E:4A:CA:D8:69
X509v3 Authority Key Identifier:
keyid:59:9C:A9:6A:19:CE:F2:27:CC:33:B3:45:85:96:AA:45:5D:2B:78:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZypahnO8ifMM7NFhZaqRV0rePg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/af2dd5-3f6e-45d5-b10e-b55f70fb1142/1/WZypahnO8ifMM7NFhZaqRV0rePg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:08:90:2e:a2:94:75:0c:f6:d1:fa:b4:34:88:a4:26:32:b7:
73:5a:c1:48:e2:82:97:76:d8:de:88:72:f1:5c:ab:3e:70:f4:
df:36:35:da:73:40:61:25:99:dc:09:f1:40:17:a6:d6:9b:d4:
cc:c2:d3:7a:16:cc:b6:4e:e8:e2:32:0d:a5:9e:3c:1f:7b:d2:
8c:3e:5d:11:d6:e2:ac:3c:eb:60:c0:45:28:6c:7b:45:61:d9:
04:fa:6c:b1:aa:36:57:4a:cc:06:d6:25:d8:98:58:3c:59:48:
b3:ed:b0:82:28:7b:4b:66:92:9b:5b:41:35:db:1e:18:01:88:
ec:5b:3a:e6:dc:94:15:ac:5f:f6:04:60:58:5b:5c:06:2b:67:
94:5c:cd:9e:a0:c8:87:89:0f:e3:6f:58:c6:ae:aa:37:bc:69:
18:32:d6:15:32:85:88:b6:f2:4c:0f:78:a9:81:92:7d:42:d3:
84:37:53:85:23:fe:10:07:b4:a5:ef:c4:6a:82:c1:35:55:1a:
46:06:5a:d3:b1:7a:06:c5:c1:48:b1:78:3d:a6:d3:6f:c1:95:
2d:3e:f1:a2:5d:18:61:fc:a3:78:a0:e4:86:87:d1:ac:a7:ed:
b9:6c:6c:df:4e:5f:91:0c:bc:ef:7d:be:2e:61:00:dd:8b:6f:
b2:5c:8d:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:31 2026 by rpki-client