Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.mft
File: mpVYgYJyucVAD8XaGIE6zOkXWI0.mft (raw, json)
Hash identifier: Rxhwu5VL5ntu/7VXqPf+Cry9oSbW2fMdaBiyzJWY6L8=
Subject key identifier: CA:0F:E3:80:04:67:E2:7E:96:64:15:2C:A6:85:82:45:64:41:28:C4
Authority key identifier: 9A:95:58:81:82:72:B9:C5:40:0F:C5:DA:18:81:3A:CC:E9:17:58:8D
Certificate issuer: /CN=9a9558818272b9c5400fc5da18813acce917588d
Certificate serial: 019D3A5386B43A90A8B711BBED8AD510D62B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpVYgYJyucVAD8XaGIE6zOkXWI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 16:00:45 +0000
Manifest this update: Sun 29 Mar 2026 16:00:45 +0000
Manifest next update: Mon 30 Mar 2026 16:00:45 +0000
Files and hashes: 1: mpVYgYJyucVAD8XaGIE6zOkXWI0.crl (hash: IhyCADZrOdCyVloijRhpCIMBTBM0iyXyo7tzRy8TKds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/mpVYgYJyucVAD8XaGIE6zOkXWI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:86:b4:3a:90:a8:b7:11:bb:ed:8a:d5:10:d6:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a9558818272b9c5400fc5da18813acce917588d
Validity
Not Before: Mar 29 16:00:45 2026 GMT
Not After : Mar 30 16:00:45 2026 GMT
Subject: CN=ca0fe3800467e27e9664152ca6858245644128c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c7:9b:c0:c1:bd:40:86:13:61:ae:b3:ac:92:
1d:3a:83:d0:73:8c:84:ad:5a:36:49:67:cf:12:84:
4e:fd:21:2b:c3:cb:22:04:45:75:53:08:ef:a9:24:
f7:5f:41:48:ac:a3:cf:29:31:b2:0f:51:45:50:da:
27:dc:45:ee:8c:d3:72:a1:bf:f9:2a:5a:f5:f7:45:
02:87:16:4c:93:10:9d:32:3d:d6:40:82:82:04:4a:
45:5d:f4:c6:6e:6c:7e:8e:b0:7d:8c:34:51:7e:ea:
3d:fb:73:d3:97:c2:de:6e:57:c2:56:80:09:5f:dc:
48:f2:27:2d:ca:f0:5f:ca:aa:8d:bf:f4:2e:aa:8c:
57:92:d5:44:2f:e9:5e:79:0e:b1:3a:34:50:a6:11:
fd:5b:52:87:9c:1d:c9:69:a2:53:cc:7e:ae:90:61:
22:e1:0e:bb:86:2e:ad:6b:a1:3a:a8:86:10:20:29:
17:8b:35:39:95:d9:23:0d:14:67:22:5c:19:fe:c5:
ae:33:54:5c:74:ff:b5:11:94:91:2c:58:a0:e6:65:
54:10:a0:13:91:86:b6:11:c5:dd:5b:61:1c:e9:c6:
35:06:07:e6:a1:7f:4e:6e:93:ef:b5:eb:79:6c:9f:
18:58:e7:4a:a1:bf:0c:ec:a7:06:ff:ba:f9:fb:3e:
ce:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:0F:E3:80:04:67:E2:7E:96:64:15:2C:A6:85:82:45:64:41:28:C4
X509v3 Authority Key Identifier:
keyid:9A:95:58:81:82:72:B9:C5:40:0F:C5:DA:18:81:3A:CC:E9:17:58:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpVYgYJyucVAD8XaGIE6zOkXWI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/233d82-938e-4f35-aa48-d4e9cf26ee10/1/mpVYgYJyucVAD8XaGIE6zOkXWI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:a4:00:e7:68:ee:97:f1:af:1e:f5:ea:3e:bc:84:ad:4e:13:
64:1c:3d:fe:42:a1:40:a2:30:65:b5:77:67:ef:52:07:d6:41:
cd:37:fd:47:95:20:b2:c0:26:be:66:6a:59:d2:71:31:3b:ab:
7e:06:cc:d7:52:97:1e:e6:95:d4:6f:54:fb:d7:da:cf:c6:de:
6f:27:09:c8:b0:f3:21:9d:4c:eb:b2:7e:c0:13:df:66:77:00:
5d:8b:3f:96:4d:66:53:e6:2d:fb:09:a0:2f:98:aa:c4:01:41:
8d:c2:a7:26:70:8d:5f:ef:82:fa:3d:28:0c:e6:10:92:8a:6f:
26:f1:6d:48:5f:31:16:f9:3b:35:bb:7e:04:70:eb:09:ad:72:
d9:ad:5c:e8:e9:8e:2a:ab:50:dd:36:05:3c:ae:7a:15:07:21:
61:2c:ae:42:ca:06:27:47:ea:43:93:b9:48:10:46:3e:ee:26:
a6:16:27:55:ff:f3:98:2c:70:6e:c1:21:13:d3:03:43:34:a9:
6e:74:1c:7e:12:82:f1:d8:ef:13:9f:b0:b1:0a:2b:bc:4c:3a:
7d:ef:7a:8f:77:c4:64:10:26:59:7d:d1:32:30:b7:6c:ee:58:
2a:ab:7c:bc:3b:1f:01:4d:dc:fe:24:0d:ab:d3:4c:c0:4d:75:
76:a9:de:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:34:19 2026 by rpki-client