Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
File: bSsrfHiimiI-pZxnydqj3H7bHnQ.mft (raw, json)
Hash identifier: a7GXx+m5Lu6OaVZ7fLLX8c5rPPkqafP5fRSbKLzfLys=
Subject key identifier: 76:95:92:92:6D:9E:D2:C4:11:21:03:F4:89:8A:55:2F:E7:24:8E:48
Authority key identifier: 6D:2B:2B:7C:78:A2:9A:22:3E:A5:9C:67:C9:DA:A3:DC:7E:DB:1E:74
Certificate issuer: /CN=6d2b2b7c78a29a223ea59c67c9daa3dc7edb1e74
Certificate serial: 019D390A09194011128A6FE615FD75E8EDBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
Manifest number: 0459
Signing time: Sun 29 Mar 2026 10:00:52 +0000
Manifest this update: Sun 29 Mar 2026 10:00:52 +0000
Manifest next update: Mon 30 Mar 2026 10:00:52 +0000
Files and hashes: 1: bSsrfHiimiI-pZxnydqj3H7bHnQ.crl (hash: xhHHzapwX4YXNaHaBVJj2mCWRgBLBHpXvhZKWRVeu5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:09:19:40:11:12:8a:6f:e6:15:fd:75:e8:ed:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d2b2b7c78a29a223ea59c67c9daa3dc7edb1e74
Validity
Not Before: Mar 29 10:00:52 2026 GMT
Not After : Mar 30 10:00:52 2026 GMT
Subject: CN=769592926d9ed2c4112103f4898a552fe7248e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:b8:cf:4a:3d:cb:49:70:13:82:1a:6a:32:3a:
48:84:d4:93:ab:29:6b:65:d9:c7:b2:71:b3:b5:ca:
ed:c4:6f:77:6e:1b:30:84:c2:fd:55:5d:b0:a9:11:
c3:67:37:dc:f6:bd:97:12:23:23:51:b1:3b:0d:48:
29:8a:38:25:70:be:1a:59:fc:36:ec:5e:28:64:cc:
22:7f:e9:99:8d:1a:36:33:a8:1a:b6:b7:87:70:c9:
58:a2:6d:04:52:6a:49:f4:55:59:b4:b5:61:d6:cd:
6a:5e:74:17:f9:79:13:3b:60:d5:a2:c3:40:5a:66:
4d:5f:de:b1:f0:57:02:63:8a:ae:2f:53:41:5f:fc:
98:31:db:fa:8c:c0:73:e3:85:48:14:1b:9f:f1:b1:
c7:48:27:d4:07:a5:cc:21:3d:08:99:85:84:cd:19:
83:04:92:a3:4a:c4:df:3d:4a:a5:ff:86:1c:12:92:
a2:55:73:4e:12:ee:b0:b1:40:05:16:e0:39:3e:25:
be:a2:f1:35:c5:6b:a2:c8:37:85:6b:75:9c:8f:b7:
93:6b:05:4b:82:29:87:0e:72:44:16:76:8d:80:25:
33:ae:3f:4f:4e:58:f5:a5:2a:44:96:63:b4:7e:bb:
3f:3a:9e:02:b0:a0:c6:9e:b7:9c:3f:d1:84:12:10:
71:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:95:92:92:6D:9E:D2:C4:11:21:03:F4:89:8A:55:2F:E7:24:8E:48
X509v3 Authority Key Identifier:
keyid:6D:2B:2B:7C:78:A2:9A:22:3E:A5:9C:67:C9:DA:A3:DC:7E:DB:1E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSsrfHiimiI-pZxnydqj3H7bHnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/e8a2f6-6c0f-4276-849e-0c52556e9865/1/bSsrfHiimiI-pZxnydqj3H7bHnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:e3:fd:ea:11:c3:13:7d:ff:6f:fd:a0:d3:eb:81:70:ef:9c:
ab:f1:35:13:bc:58:df:5a:07:b7:dc:05:57:b6:ff:42:3e:91:
c9:f4:37:63:c6:68:24:7a:40:33:57:aa:bf:8a:b6:00:10:7f:
f9:26:79:41:28:6d:5c:26:47:cd:4a:a1:25:fa:d9:08:47:8b:
56:d9:2c:95:5f:0e:b7:61:c1:e0:40:80:28:d0:6b:23:2c:86:
bb:84:bf:23:3e:47:1a:09:59:63:6d:6c:06:34:a5:88:a9:22:
2f:c1:30:ad:a8:96:43:e8:18:01:bf:89:c8:35:00:6f:6f:69:
fc:2f:66:fb:5b:de:54:06:df:9f:ea:80:f0:cc:7e:a7:24:d2:
4e:e9:80:35:62:24:e0:a8:8d:d3:9e:81:47:d4:01:53:8f:3c:
97:00:01:63:6c:3d:04:f5:e9:c7:3f:a2:d4:48:ac:c2:52:9b:
ce:a6:0f:a8:4c:c5:02:09:ef:a6:32:68:12:4a:6d:c5:69:66:
3e:5d:7d:06:bc:41:69:86:a6:0e:fc:76:d3:b4:07:c3:7f:5f:
02:72:a0:19:8a:6c:96:8e:77:ff:93:ca:e2:a8:8c:2a:69:d8:
0e:3f:67:d7:e0:64:8b:ef:23:3d:70:05:f2:f6:9b:96:96:c1:
e5:28:14:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:39:02 2026 by rpki-client