Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft
File: SxEEihpJFuExuM4Iji1v5OXF49s.mft (raw, json)
Hash identifier: Ck6rzQkCBOg9YUFxfghwxOsttQuuVlwqYXz8Lr3N2Zw=
Subject key identifier: CA:A5:E2:12:7F:62:74:18:51:D1:9F:BA:B3:D0:DF:58:F8:8F:6C:C6
Authority key identifier: 4B:11:04:8A:1A:49:16:E1:31:B8:CE:08:8E:2D:6F:E4:E5:C5:E3:DB
Certificate issuer: /CN=4b11048a1a4916e131b8ce088e2d6fe4e5c5e3db
Certificate serial: 019D37F7A7F41B166DAB7A1359443B722C0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SxEEihpJFuExuM4Iji1v5OXF49s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft
Manifest number: 04CD
Signing time: Sun 29 Mar 2026 05:01:10 +0000
Manifest this update: Sun 29 Mar 2026 05:01:10 +0000
Manifest next update: Mon 30 Mar 2026 05:01:10 +0000
Files and hashes: 1: SxEEihpJFuExuM4Iji1v5OXF49s.crl (hash: HTv/BLD3vn3qemzWL5JjPZ2fcD45V6AY5dDrVnAKqs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft
rsync://rpki.ripe.net/repository/DEFAULT/SxEEihpJFuExuM4Iji1v5OXF49s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:a7:f4:1b:16:6d:ab:7a:13:59:44:3b:72:2c:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b11048a1a4916e131b8ce088e2d6fe4e5c5e3db
Validity
Not Before: Mar 29 05:01:10 2026 GMT
Not After : Mar 30 05:01:10 2026 GMT
Subject: CN=caa5e2127f62741851d19fbab3d0df58f88f6cc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:02:4f:f9:7e:b0:1a:d7:fc:8b:f8:8f:66:2f:
62:f1:d0:38:45:42:9c:af:1b:e9:5c:71:1a:4a:08:
33:2f:d0:51:42:cd:41:73:2f:d1:33:8a:d0:d9:71:
16:f6:06:b7:47:2b:f6:5e:bf:3a:c7:5d:d9:be:0d:
81:06:31:b9:23:50:fd:b4:d3:57:f6:fa:e4:ec:5e:
d4:ba:78:4b:9d:28:92:5c:e1:61:f4:6e:af:e1:61:
85:39:a7:ea:12:ea:e3:62:8c:cc:e2:30:31:6a:26:
dd:17:b1:9d:07:e2:fb:70:59:1a:c4:f6:0b:e5:f6:
f1:5f:1a:9e:b0:0e:12:fa:8c:be:5e:ff:1f:60:1a:
11:3c:71:a7:83:68:0f:19:ed:5f:fa:0e:f0:78:85:
52:41:35:d5:db:54:a5:78:2c:fe:98:0f:cb:1f:24:
ae:2c:da:0f:33:5e:d4:de:ac:1f:76:0c:97:f7:ab:
89:06:f6:00:5f:f8:86:fe:21:10:78:e1:26:db:56:
ef:54:c3:30:74:4d:3e:07:7d:fa:eb:c0:d2:59:38:
3d:7b:1d:66:16:d9:7a:c9:ba:f5:05:77:2b:d0:71:
6a:58:7b:bc:dc:7d:c4:70:0e:e9:b6:3c:64:e9:b1:
26:ed:69:d5:48:31:53:ab:c8:60:8c:64:99:08:83:
a4:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:A5:E2:12:7F:62:74:18:51:D1:9F:BA:B3:D0:DF:58:F8:8F:6C:C6
X509v3 Authority Key Identifier:
keyid:4B:11:04:8A:1A:49:16:E1:31:B8:CE:08:8E:2D:6F:E4:E5:C5:E3:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SxEEihpJFuExuM4Iji1v5OXF49s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/d3a228-fc4f-40b2-88b2-e484611a9621/1/SxEEihpJFuExuM4Iji1v5OXF49s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:69:35:cb:c2:6e:ab:85:fa:b0:6b:64:16:0c:cd:9d:d1:f8:
71:73:59:74:71:f4:b9:ed:48:9a:4b:67:b3:0d:ec:c6:cb:ab:
1e:4b:74:d8:1e:c1:c4:8c:88:a1:e9:5b:76:4d:12:14:02:a9:
25:15:c5:f6:d4:78:e7:68:41:bf:8d:80:ca:b9:a6:9a:ef:17:
37:7c:16:3c:dc:80:5b:a8:12:4a:d8:ac:1d:03:5b:40:0a:1e:
3f:3d:98:70:d2:05:c8:a5:2d:29:79:07:5e:b6:a4:c6:ae:7f:
4b:54:e6:15:c2:ea:bd:98:2a:dc:3b:b4:2b:21:45:13:44:8b:
0f:4e:f1:7d:81:48:73:7f:25:f5:e7:39:13:25:c0:39:ee:33:
c3:25:9b:99:c7:52:d3:78:52:da:6d:81:e2:d9:c6:3e:c1:c7:
0b:f1:00:ab:fa:e9:94:0d:4c:21:b6:18:d0:72:df:e7:e8:6f:
01:f4:b9:01:a4:19:03:c4:30:1f:a9:95:ab:75:97:e4:d8:f2:
12:30:4b:d7:c8:94:43:ea:65:ce:7b:b1:f2:ad:97:70:bb:e4:
36:1a:9f:b9:5e:7e:e5:8c:f7:e0:4e:92:77:d0:bd:4a:66:7e:
41:6d:67:4b:43:16:ee:03:8f:bf:d3:06:d3:95:86:80:dc:d0:
90:50:59:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:54 2026 by rpki-client