Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft
File: dWXhJLHEG5OxTX7eBda4B3eYmv0.mft (raw, json)
Hash identifier: st0ngwfMSeW/PgFWUkUTHWyrOIf1P7kRy9KESufPPHs=
Subject key identifier: 63:90:8A:D1:45:36:11:C0:7F:17:29:CD:AC:CA:F3:4C:AF:AF:2E:CB
Authority key identifier: 75:65:E1:24:B1:C4:1B:93:B1:4D:7E:DE:05:D6:B8:07:77:98:9A:FD
Certificate issuer: /CN=7565e124b1c41b93b14d7ede05d6b80777989afd
Certificate serial: 019D378910CB1AF72F49BC2A5DD0FF0CC661
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dWXhJLHEG5OxTX7eBda4B3eYmv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft
Manifest number: 1633
Signing time: Sun 29 Mar 2026 03:00:22 +0000
Manifest this update: Sun 29 Mar 2026 03:00:22 +0000
Manifest next update: Mon 30 Mar 2026 03:00:22 +0000
Files and hashes: 1: dWXhJLHEG5OxTX7eBda4B3eYmv0.crl (hash: x/AXYeEKmUulmuXcK9Q21tn+cie0pdWTZ4/tai+FFi4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/dWXhJLHEG5OxTX7eBda4B3eYmv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:10:cb:1a:f7:2f:49:bc:2a:5d:d0:ff:0c:c6:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7565e124b1c41b93b14d7ede05d6b80777989afd
Validity
Not Before: Mar 29 03:00:22 2026 GMT
Not After : Mar 30 03:00:22 2026 GMT
Subject: CN=63908ad1453611c07f1729cdaccaf34cafaf2ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5f:1b:64:da:40:a8:36:80:48:99:9a:7e:11:
a5:64:40:a4:eb:1f:94:0b:24:ae:e3:ca:48:e9:c9:
bd:63:ee:0f:99:fd:15:81:6f:e8:ea:84:a2:7f:74:
28:30:50:44:84:99:b6:87:5e:c1:ce:f2:ca:ca:4f:
a2:4e:8c:7c:7a:bf:2d:a0:f2:79:fd:11:09:0d:56:
ae:91:cf:27:d2:de:4f:26:95:86:f5:a1:4a:20:df:
8f:76:4b:ab:d0:ad:13:54:96:c7:2f:21:b1:5c:e9:
bb:1d:22:06:a6:58:27:f9:70:17:12:39:01:69:e5:
e9:f0:ac:d1:58:5b:3d:9e:0d:ce:8d:18:53:51:c9:
34:cb:e9:71:f9:01:1d:63:60:09:50:f5:e6:3b:09:
56:d2:45:77:b7:f9:28:b9:f3:41:5e:d1:49:43:c6:
f9:8d:ca:a6:69:72:7c:a2:46:f9:8d:1d:2f:9d:ee:
9d:50:6c:53:e0:73:99:bd:52:a2:4f:89:eb:91:8e:
cd:40:7d:67:55:3a:f7:62:46:56:eb:e2:5b:6a:e6:
e8:89:da:e2:2f:e2:5a:70:fe:10:81:b8:eb:0e:0b:
5a:af:b6:96:2e:81:a7:00:95:30:4f:6a:d8:24:79:
02:8e:75:3b:5e:33:a8:56:74:64:87:6d:2e:fe:91:
81:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:90:8A:D1:45:36:11:C0:7F:17:29:CD:AC:CA:F3:4C:AF:AF:2E:CB
X509v3 Authority Key Identifier:
keyid:75:65:E1:24:B1:C4:1B:93:B1:4D:7E:DE:05:D6:B8:07:77:98:9A:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dWXhJLHEG5OxTX7eBda4B3eYmv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/96952b-79b8-4e04-bc4a-29e445de2459/1/dWXhJLHEG5OxTX7eBda4B3eYmv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:42:fc:d9:84:11:09:7e:87:2e:ab:cc:2a:76:25:b8:32:fb:
c6:af:21:b8:39:5e:16:38:16:cf:a6:5c:7d:19:b9:d4:40:21:
3b:13:9d:33:9b:e7:3d:9e:95:45:49:09:ec:7f:3f:c7:27:fd:
4c:f0:7e:19:b6:e8:0b:66:12:c7:8b:da:b5:06:1f:2a:b5:7d:
7b:07:d2:af:72:aa:c5:77:4f:84:51:2f:89:ed:71:51:4a:84:
2f:40:e8:bf:84:33:dd:d2:f5:b8:b6:6f:75:bb:8f:a5:6a:3a:
99:b4:14:66:4e:2f:7e:87:95:2c:75:c0:22:4e:82:bf:c4:02:
79:8b:f5:96:50:05:51:a5:c6:87:b2:45:57:cd:5d:04:16:50:
e0:3d:7c:9e:96:df:c6:a0:4a:e8:1e:dd:0a:c5:d1:fd:06:79:
60:fb:ce:45:36:6d:c2:a5:8f:38:ac:5c:82:cd:c8:04:01:ce:
62:a5:93:b6:d0:e3:62:30:45:1a:54:24:f8:54:4e:53:be:27:
53:83:de:72:70:96:6d:57:fe:7b:75:92:80:4e:48:86:f6:d5:
86:25:0b:82:28:d5:fe:f8:d2:1c:37:62:72:3e:a4:92:72:6a:
a1:38:12:d3:99:a4:89:82:5a:99:11:20:72:c3:a1:61:6f:a6:
cc:2d:c7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:01 2026 by rpki-client