Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/4cfd0c-8c20-45c2-97fa-4ac3a4ee4b3e/1/cM8vAv8fpzt72x-_g6u77C07HL0.mft
File: cM8vAv8fpzt72x-_g6u77C07HL0.mft (raw, json)
Hash identifier: 6NfFnYf7oGBTRP+pa452h3cAyKTwhBXh2VGeInxtuTs=
Subject key identifier: D9:27:88:28:4D:88:C7:1F:9A:0E:17:B0:B5:78:A2:2A:30:32:70:12
Authority key identifier: 70:CF:2F:02:FF:1F:A7:3B:7B:DB:1F:BF:83:AB:BB:EC:2D:3B:1C:BD
Certificate issuer: /CN=70cf2f02ff1fa73b7bdb1fbf83abbbec2d3b1cbd
Certificate serial: 019D3752FAB11ED5E3D83C1BD5A93D710F6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM8vAv8fpzt72x-_g6u77C07HL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/4cfd0c-8c20-45c2-97fa-4ac3a4ee4b3e/1/cM8vAv8fpzt72x-_g6u77C07HL0.mft
Manifest number: 0168
Signing time: Sun 29 Mar 2026 02:01:18 +0000
Manifest this update: Sun 29 Mar 2026 02:01:18 +0000
Manifest next update: Mon 30 Mar 2026 02:01:18 +0000
Files and hashes: 1: cM8vAv8fpzt72x-_g6u77C07HL0.crl (hash: ScRZMLRMGRdPsMAy2H2xYnJ4dUALHaQ7KLNhAuITAzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/4cfd0c-8c20-45c2-97fa-4ac3a4ee4b3e/1/cM8vAv8fpzt72x-_g6u77C07HL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/4cfd0c-8c20-45c2-97fa-4ac3a4ee4b3e/1/cM8vAv8fpzt72x-_g6u77C07HL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM8vAv8fpzt72x-_g6u77C07HL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:fa:b1:1e:d5:e3:d8:3c:1b:d5:a9:3d:71:0f:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cf2f02ff1fa73b7bdb1fbf83abbbec2d3b1cbd
Validity
Not Before: Mar 29 02:01:18 2026 GMT
Not After : Mar 30 02:01:18 2026 GMT
Subject: CN=d92788284d88c71f9a0e17b0b578a22a30327012
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:87:1a:1a:33:0b:fb:0e:01:0d:f9:bf:79:d3:
e7:f9:37:f8:00:7a:82:f3:f1:73:14:90:8a:d2:14:
54:3d:31:fe:c7:ae:a8:13:4c:90:5a:84:98:d8:41:
1e:72:c6:89:fc:04:03:95:e6:06:f1:87:43:48:c8:
2a:3d:28:8e:8f:8e:95:63:ae:2e:ca:88:c2:0f:cb:
a0:5a:d0:a1:e0:83:2e:a0:27:2a:39:fb:7c:8b:06:
90:58:dc:18:5a:1c:30:d4:f4:78:97:8b:fc:7d:68:
4e:7f:e0:2c:da:54:d2:34:92:f7:02:63:05:51:ba:
6c:03:23:ca:2b:90:fb:a9:04:c5:cd:fc:61:de:df:
97:09:ef:c9:6d:4f:26:cf:1f:71:b5:b1:b5:3d:88:
78:68:f1:68:b5:f8:e3:c5:af:24:a6:a2:0e:7a:42:
8e:13:8f:2c:78:0e:84:f2:83:ff:7e:c4:d9:62:db:
a3:c8:18:79:7d:b0:2f:9d:d1:65:3b:4a:fd:e7:03:
3d:07:c6:3f:06:f4:08:95:40:6e:39:55:de:9a:6c:
f5:1d:73:09:21:d3:44:cb:f7:65:26:c7:fd:10:e1:
79:ee:71:c9:3e:0d:8c:94:28:85:62:be:4d:54:11:
6f:69:fd:29:13:d6:05:7e:a8:49:3f:0d:91:14:f9:
2c:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:27:88:28:4D:88:C7:1F:9A:0E:17:B0:B5:78:A2:2A:30:32:70:12
X509v3 Authority Key Identifier:
keyid:70:CF:2F:02:FF:1F:A7:3B:7B:DB:1F:BF:83:AB:BB:EC:2D:3B:1C:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM8vAv8fpzt72x-_g6u77C07HL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4cfd0c-8c20-45c2-97fa-4ac3a4ee4b3e/1/cM8vAv8fpzt72x-_g6u77C07HL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/4cfd0c-8c20-45c2-97fa-4ac3a4ee4b3e/1/cM8vAv8fpzt72x-_g6u77C07HL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:37:5a:d1:61:6c:54:a8:0b:8a:67:75:c7:22:d9:23:7b:bf:
d3:5e:1d:01:ac:54:a7:83:88:57:65:a0:50:99:c8:3b:ec:2d:
ae:fc:f6:9e:43:e3:aa:de:07:97:7a:35:02:d7:df:05:82:c6:
ee:74:88:77:8b:28:0b:11:28:c8:8a:26:4c:33:1e:f4:42:2d:
6c:67:6b:12:a7:5e:75:78:04:c9:ba:20:5d:ac:43:60:a4:c0:
68:c6:8c:13:71:57:74:84:58:1f:7e:c2:a7:53:b2:bb:e9:d8:
f5:21:6d:2b:7c:12:79:d9:cb:c9:17:ea:e1:73:6c:5a:09:1c:
7d:ea:68:8a:44:c5:b3:01:31:bf:68:5c:e4:52:bd:09:f9:37:
72:1b:f9:59:bf:65:41:47:43:39:7e:e9:e7:2a:b7:46:f8:1b:
5f:a9:a3:f8:26:d2:d3:b6:20:78:c5:5a:2c:49:3c:4b:ea:a8:
08:57:9b:41:39:e2:18:82:10:0d:5e:3a:ca:f0:37:55:22:17:
dd:9a:58:bf:9c:9a:16:f5:22:10:50:ac:16:7c:69:23:80:2a:
ed:39:ad:09:96:1f:6e:57:92:05:3e:e5:e4:59:6d:2d:dd:1b:
11:d8:8f:c8:2e:3a:9f:71:87:21:c3:50:8d:09:bc:00:36:9e:
a5:d8:b6:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:36:07 2026 by rpki-client