Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
File: cl3CBR5_PY1hf1UYng7m8xdNkto.mft (raw, json)
Hash identifier: Qa1/VibbmNblj9+bs1la4C10/hYNRVC9yACC39QPc7Q=
Subject key identifier: 35:A5:68:C8:59:91:BB:CC:A7:B7:98:07:B5:58:D2:95:C5:94:B3:97
Authority key identifier: 72:5D:C2:05:1E:7F:3D:8D:61:7F:55:18:9E:0E:E6:F3:17:4D:92:DA
Certificate issuer: /CN=725dc2051e7f3d8d617f55189e0ee6f3174d92da
Certificate serial: 019D38D3A7C97F43FD360EAB949EC3579791
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
Manifest number: 05B4
Signing time: Sun 29 Mar 2026 09:01:28 +0000
Manifest this update: Sun 29 Mar 2026 09:01:28 +0000
Manifest next update: Mon 30 Mar 2026 09:01:28 +0000
Files and hashes: 1: cl3CBR5_PY1hf1UYng7m8xdNkto.crl (hash: HKxloswW8uMrMUEvgd6xicpHte42LoYMIYwsWs4wD44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 09:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:a7:c9:7f:43:fd:36:0e:ab:94:9e:c3:57:97:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=725dc2051e7f3d8d617f55189e0ee6f3174d92da
Validity
Not Before: Mar 29 09:01:28 2026 GMT
Not After : Mar 30 09:01:28 2026 GMT
Subject: CN=35a568c85991bbcca7b79807b558d295c594b397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:81:56:fe:fb:7f:78:7e:bb:0a:f7:01:74:d2:
b3:66:50:cd:e1:c5:9c:de:fb:81:39:79:65:19:e3:
b1:fc:92:ad:f8:e3:46:03:6c:3d:c1:50:22:a4:71:
ed:45:91:2e:b8:a7:67:eb:0f:d6:77:2c:6f:23:34:
cc:e9:d4:17:e2:9b:0d:b1:c8:f8:b4:1e:f1:05:4d:
79:5e:67:2e:84:e4:81:4e:a0:91:2d:dd:7c:4e:c5:
34:fd:f6:55:19:95:e9:6d:a6:be:4b:7a:d0:25:52:
5a:1a:8a:79:f9:2d:15:d2:1f:be:39:02:01:ca:b7:
85:f6:5b:d9:9c:97:0a:bf:b3:f6:4f:44:51:bf:c6:
ee:8c:13:56:2b:55:4b:23:1b:19:7e:8c:2d:ae:be:
b2:dc:80:d9:57:56:74:2e:11:08:4d:e9:d7:e4:70:
55:b1:fe:b5:a8:80:05:3a:fa:af:32:9c:66:e0:dd:
ef:c0:0c:fb:ef:3b:ac:28:71:90:8a:ce:f4:9c:d2:
5b:50:99:0d:ac:6d:8f:83:70:9d:72:81:91:bd:57:
a0:4f:26:e0:b7:52:3d:1f:2a:b3:81:c2:56:93:32:
f5:48:ce:23:dc:8c:1d:88:ec:79:40:e6:b7:46:03:
7e:57:bb:4e:8e:4f:9d:df:58:08:4a:52:96:16:42:
f4:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A5:68:C8:59:91:BB:CC:A7:B7:98:07:B5:58:D2:95:C5:94:B3:97
X509v3 Authority Key Identifier:
keyid:72:5D:C2:05:1E:7F:3D:8D:61:7F:55:18:9E:0E:E6:F3:17:4D:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cl3CBR5_PY1hf1UYng7m8xdNkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/984111-6f7c-4e69-94c9-ff0f52633527/1/cl3CBR5_PY1hf1UYng7m8xdNkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:08:89:09:d1:fc:ec:3f:cd:c5:58:25:aa:97:ab:14:5f:d9:
0e:2f:c4:41:3b:da:a5:fc:2d:b4:9a:77:88:0c:c9:9a:ca:87:
2a:88:99:48:c9:90:b5:43:6b:11:e9:3a:bf:ff:e6:77:10:ea:
39:c8:0c:f8:7d:55:d7:ff:6f:6f:fa:3a:de:88:22:05:31:39:
fa:52:aa:b2:25:a2:cd:2d:63:3d:98:d2:9d:1f:7b:87:60:68:
ab:4a:66:3e:29:d1:2f:11:9a:c8:68:58:2b:4f:b0:af:6e:28:
72:43:9f:c1:72:5d:f6:ae:51:bf:f7:f3:7b:69:22:ad:d7:e9:
53:61:39:0a:46:73:6f:6c:05:f1:7a:ee:cb:4b:dd:4d:52:3d:
dd:17:16:50:8e:5b:c2:a7:f7:bf:f1:ef:40:a7:d8:bb:be:32:
13:6c:0c:ce:ae:f9:c0:74:d2:84:9b:a0:78:b9:13:b9:0b:3e:
dd:3d:ab:37:e6:a4:00:b3:a4:f3:83:e9:b6:ee:ce:df:81:9d:
76:89:da:d2:dd:47:a7:f7:e2:19:90:89:f0:40:d1:42:f9:14:
f5:d4:cf:97:5e:12:cf:85:7f:b4:f5:75:94:09:0f:a4:10:e1:
f6:a9:ad:51:3f:31:7f:83:86:2a:cd:2b:f6:f9:f0:7a:d4:a7:
ce:7f:03:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:01:51 2026 by rpki-client