Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft
File: tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft (raw, json)
Hash identifier: r6uhCqmFsbjWPZNxU3NJuiVKlqtbU+4LHe8zwiZt+/g=
Subject key identifier: 8F:1C:B1:4C:68:CD:DA:82:BF:E9:D5:CE:F4:5B:E3:22:A3:65:33:B9
Authority key identifier: B5:1F:4F:D2:F4:EB:47:E4:A0:9E:9A:0A:0A:91:EC:C4:A5:A9:30:F5
Certificate issuer: /CN=b51f4fd2f4eb47e4a09e9a0a0a91ecc4a5a930f5
Certificate serial: 019D382E28E89EFF1686F901422D2A53B86B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tR9P0vTrR-SgnpoKCpHsxKWpMPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft
Manifest number: 013B
Signing time: Sun 29 Mar 2026 06:00:42 +0000
Manifest this update: Sun 29 Mar 2026 06:00:42 +0000
Manifest next update: Mon 30 Mar 2026 06:00:42 +0000
Files and hashes: 1: tR9P0vTrR-SgnpoKCpHsxKWpMPU.crl (hash: 4iS59dq7OwxEMrGPReMbGm4Uv0LK0wJ0qF0XHi5pJD4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft
rsync://rpki.ripe.net/repository/DEFAULT/tR9P0vTrR-SgnpoKCpHsxKWpMPU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:28:e8:9e:ff:16:86:f9:01:42:2d:2a:53:b8:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b51f4fd2f4eb47e4a09e9a0a0a91ecc4a5a930f5
Validity
Not Before: Mar 29 06:00:42 2026 GMT
Not After : Mar 30 06:00:42 2026 GMT
Subject: CN=8f1cb14c68cdda82bfe9d5cef45be322a36533b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:19:59:f3:60:09:07:59:45:fa:b4:23:80:84:
ee:46:23:4a:58:5c:a8:49:2e:84:a8:51:7f:98:fd:
5d:be:68:34:76:20:41:12:e4:76:54:f2:d9:21:b3:
8f:85:11:98:fa:f2:df:2f:74:55:ca:7b:0a:31:a9:
89:d2:e9:cd:bf:ab:0e:d4:e3:61:b5:5c:3f:36:b7:
1e:5f:c8:f2:bf:a1:50:93:0c:4c:50:e4:98:7a:40:
79:cc:85:cd:a8:ce:29:5c:df:5e:f3:dc:d2:0e:72:
44:76:79:a6:c6:06:11:dc:c0:78:ef:01:d8:47:39:
da:55:7f:ad:a0:76:7d:fc:c3:08:b0:c6:a6:81:54:
52:3c:ad:29:b9:5c:72:bf:3e:79:74:1d:5f:e2:79:
90:3b:79:c9:24:14:06:2a:f4:3f:bb:22:27:a4:9a:
0c:22:38:08:38:5f:f1:d3:0a:55:de:5c:6e:87:1e:
89:15:75:4e:6b:dd:82:45:bd:76:69:6d:fb:82:8c:
e7:46:b0:46:2d:ae:4c:23:69:9d:0c:4d:de:9e:de:
ac:7a:a4:a3:66:7b:89:f8:23:69:1c:08:e6:7f:e8:
e5:1b:3d:c9:bb:29:d7:3f:89:d4:09:d3:69:22:b9:
61:f2:bc:ba:c4:87:74:2d:47:8e:27:d8:78:cd:c2:
02:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:1C:B1:4C:68:CD:DA:82:BF:E9:D5:CE:F4:5B:E3:22:A3:65:33:B9
X509v3 Authority Key Identifier:
keyid:B5:1F:4F:D2:F4:EB:47:E4:A0:9E:9A:0A:0A:91:EC:C4:A5:A9:30:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tR9P0vTrR-SgnpoKCpHsxKWpMPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/65502f-5af6-4056-88bd-1eccd1a832e2/1/tR9P0vTrR-SgnpoKCpHsxKWpMPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:1b:44:9a:dd:7a:b7:eb:94:04:93:c3:26:9a:52:03:c8:8d:
d6:56:ba:08:d1:8e:b2:13:59:7d:6c:93:34:59:55:13:19:87:
62:56:78:24:f6:aa:49:38:16:f6:8a:d7:e7:1b:a2:8f:ed:a8:
0f:a0:42:aa:46:27:17:5f:1e:b0:ad:4a:d1:24:fa:53:20:b0:
49:52:78:e3:f0:a5:60:ce:0e:5e:56:6e:fa:99:03:db:c2:57:
8b:78:a6:fb:f4:86:e5:42:3b:04:6c:70:f8:e9:70:08:a5:ec:
f9:be:e0:42:71:f3:23:1b:63:c9:56:51:eb:58:46:de:d8:b1:
3e:e8:f1:71:7a:87:ba:2d:35:e6:2d:fc:0a:d9:a3:61:83:2e:
20:c9:33:30:86:8b:b9:39:e3:63:fa:37:90:9e:4f:94:e8:34:
cb:de:90:91:ee:5b:63:c3:0b:6c:0b:25:8a:2b:ab:94:b7:7c:
2c:c2:91:40:c0:df:ba:a2:8c:e4:5b:b5:94:92:ce:b5:40:10:
4b:a0:db:16:eb:66:0c:b4:bb:fa:f6:a5:47:ed:54:0d:f3:14:
0a:ba:8c:82:6c:26:33:41:0f:b9:3e:a1:93:13:1c:23:8c:c8:
c9:cb:84:57:e4:69:90:5b:9f:e6:c6:b8:35:7b:e3:46:61:af:
05:fd:df:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:49 2026 by rpki-client