Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
File: 1bFX6mgu908PHvZ_oekWDRfNLpM.mft (raw, json)
Hash identifier: hu47I35KPO75WOMz+z47VWereTmTzb+8yxgpdhRMN0k=
Subject key identifier: FC:51:8F:FE:F5:5A:20:98:EC:BE:6A:12:7F:0C:A3:41:2A:63:B0:6F
Authority key identifier: D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93
Certificate issuer: /CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
Certificate serial: 019D38657B63CC048C9FBDF6A0B6A67DA91A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 07:01:07 +0000
Manifest this update: Sun 29 Mar 2026 07:01:07 +0000
Manifest next update: Mon 30 Mar 2026 07:01:07 +0000
Files and hashes: 1: 1bFX6mgu908PHvZ_oekWDRfNLpM.crl (hash: FNBRp8V+gjAhTSx1b9YJJumh62D5I3FP4PeO7Zgtiyc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:7b:63:cc:04:8c:9f:bd:f6:a0:b6:a6:7d:a9:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b157ea682ef74f0f1ef67fa1e9160d17cd2e93
Validity
Not Before: Mar 29 07:01:07 2026 GMT
Not After : Mar 30 07:01:07 2026 GMT
Subject: CN=fc518ffef55a2098ecbe6a127f0ca3412a63b06f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a4:db:6e:4d:93:c4:83:f2:b9:8d:df:a7:ad:
5a:f7:79:dd:14:c3:10:14:57:30:5a:06:cc:73:b8:
ea:aa:4c:e0:d9:69:e8:58:23:6f:c5:1a:a2:0a:e6:
4f:b1:60:6f:1b:cf:fc:2d:37:56:b5:15:71:0d:6d:
f5:3b:c4:9c:3b:58:74:25:8d:ee:10:90:a0:6a:f4:
63:c2:49:15:d2:1a:55:aa:19:dd:ff:61:2f:ca:38:
8b:34:c7:2f:14:c9:33:d3:d7:cf:51:32:c9:1a:de:
28:f9:9d:4a:78:17:09:f6:d0:ab:b9:c4:45:bf:fb:
4b:76:51:25:8c:c9:ab:51:f7:84:09:39:a2:4a:d5:
fb:d0:37:f7:a5:f8:cc:04:06:7b:c3:cb:ce:1d:0b:
f8:3f:fa:cd:c9:7d:79:5a:4e:ee:17:01:94:88:f4:
80:f4:a2:f3:04:e2:ad:93:42:a0:1b:b2:ff:97:99:
03:af:29:a5:5f:d6:31:37:43:0f:40:af:4b:cc:09:
8b:93:e1:69:9f:5b:f6:66:cb:de:11:f2:c6:e6:87:
16:4f:47:2a:59:fc:0d:0b:48:84:3b:28:55:bf:ec:
9a:43:8a:c7:1c:b6:2a:6d:be:a1:7a:f5:71:23:64:
e0:64:b0:6e:51:5d:3b:96:ed:8e:45:0e:e6:d4:c8:
a4:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:51:8F:FE:F5:5A:20:98:EC:BE:6A:12:7F:0C:A3:41:2A:63:B0:6F
X509v3 Authority Key Identifier:
keyid:D5:B1:57:EA:68:2E:F7:4F:0F:1E:F6:7F:A1:E9:16:0D:17:CD:2E:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1bFX6mgu908PHvZ_oekWDRfNLpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/f76e8c-82b3-47d4-b4b6-021c9eec0077/1/1bFX6mgu908PHvZ_oekWDRfNLpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:a8:4a:2c:27:a0:8d:4f:86:3c:b6:6b:7a:04:6d:4e:1f:23:
ac:70:71:ce:10:5c:37:13:aa:7c:e7:74:c1:10:15:6b:d7:fc:
b9:0e:2e:3a:f2:05:c7:6f:81:a8:14:ad:12:d7:d8:8a:a7:0e:
dd:12:a4:8f:1a:47:5d:c2:54:1e:39:46:44:9b:10:91:fe:a6:
94:99:40:ba:1e:e9:b9:0f:fe:fb:f6:2e:dd:d1:c5:da:c1:23:
14:b0:91:34:ac:4e:7b:3d:c3:f9:b4:ae:e9:7f:bf:67:08:a0:
b3:7a:16:fd:aa:37:49:99:76:29:14:95:70:4d:51:dc:85:ef:
1c:5c:9e:e5:79:28:60:fe:17:2e:be:2d:c6:2e:83:26:93:95:
1b:03:17:8f:fa:17:67:8f:01:f1:d2:d7:af:4a:63:b9:c2:76:
49:c2:33:3e:b5:3d:85:07:57:84:b4:bd:cf:11:9e:20:45:00:
15:cd:eb:34:80:9c:fd:b3:fa:04:0f:ea:81:b9:0e:d5:89:e3:
07:3a:87:e5:93:22:62:c3:af:b7:e0:61:61:da:2f:15:c0:25:
e6:c2:cc:98:76:d0:2e:fb:96:ab:47:19:db:11:ff:7a:8e:a5:
7c:69:72:f8:5a:3b:37:2b:d3:7a:a0:ac:81:a2:b6:6c:79:b2:
9d:45:f4:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:58 2026 by rpki-client