Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
File: fJ1n8CerKw_yajV1FHOa_ogDesk.mft (raw, json)
Hash identifier: d0u3kCPHfBs1Hdi9/dJ17xQn7neu4hpu0VbxuDSi058=
Subject key identifier: C1:BD:84:0D:8C:F5:1C:4D:41:1B:45:45:5D:84:E6:E3:F6:85:D6:3C
Authority key identifier: 7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
Certificate issuer: /CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Certificate serial: 019D3752714F4189593C8922E710679AF838
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
Manifest number: 17A5
Signing time: Sun 29 Mar 2026 02:00:42 +0000
Manifest this update: Sun 29 Mar 2026 02:00:42 +0000
Manifest next update: Mon 30 Mar 2026 02:00:42 +0000
Files and hashes: 1: fJ1n8CerKw_yajV1FHOa_ogDesk.crl (hash: aeDU4Y976U1Rj+ae0SpzZ0ul9AEvJQ6LsB8Or41j064=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:71:4f:41:89:59:3c:89:22:e7:10:67:9a:f8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c9d67f027ab2b0ff26a357514739afe88037ac9
Validity
Not Before: Mar 29 02:00:42 2026 GMT
Not After : Mar 30 02:00:42 2026 GMT
Subject: CN=c1bd840d8cf51c4d411b45455d84e6e3f685d63c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:f2:83:ab:1c:46:ac:7d:cc:2c:21:be:54:40:
1a:58:19:22:ed:3f:3f:b6:db:33:66:b5:b6:3d:c0:
e5:e5:0c:66:e2:d0:4c:08:a5:8b:c9:63:74:82:23:
d8:16:23:10:b3:48:05:23:83:be:5c:16:20:81:fe:
b7:61:b3:6b:d3:7c:3d:9e:47:69:89:95:a8:d0:6f:
8c:0f:3d:66:5c:8e:44:9b:93:36:0a:a0:c9:c1:c8:
1b:7c:31:96:65:98:c1:8d:c0:55:7a:36:05:7b:88:
28:16:c6:2c:86:3f:ce:2c:44:7f:27:15:f0:eb:dd:
e2:06:84:fb:25:48:a6:c9:02:d2:f2:85:86:88:d1:
93:e4:f3:55:f3:e5:b7:a0:4b:41:55:70:ac:76:d5:
62:4c:7a:45:dd:24:f2:f2:6f:f4:dc:50:1f:36:b2:
ea:e2:50:c6:a7:1b:a7:dc:fc:00:5f:04:5f:7b:95:
bd:65:5e:bf:9f:0d:7d:b0:40:f1:62:b8:01:83:97:
83:e2:97:ce:04:13:f2:85:bd:76:a1:ee:6e:cf:c5:
cf:1f:32:88:63:ae:8a:57:76:17:f4:94:52:20:f8:
71:b5:df:ed:12:c5:f8:f6:c5:b5:34:88:8a:e4:33:
52:12:86:07:07:33:0e:bb:14:36:f0:00:17:95:d5:
6d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:BD:84:0D:8C:F5:1C:4D:41:1B:45:45:5D:84:E6:E3:F6:85:D6:3C
X509v3 Authority Key Identifier:
keyid:7C:9D:67:F0:27:AB:2B:0F:F2:6A:35:75:14:73:9A:FE:88:03:7A:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fJ1n8CerKw_yajV1FHOa_ogDesk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/698fe8-5f69-4d37-bd58-65eb1ba6e337/1/fJ1n8CerKw_yajV1FHOa_ogDesk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:6d:b1:c1:35:fe:4f:fd:e2:18:18:7a:ea:44:2f:12:7f:28:
26:8d:23:bd:ef:37:db:ba:53:b6:7a:9e:c1:57:b2:c7:41:15:
2b:91:a2:e7:be:93:1f:9c:4f:02:f8:62:8d:eb:eb:74:6a:ab:
68:dd:fc:3c:af:27:05:de:25:7b:ef:be:90:64:68:78:91:ef:
2e:0c:c6:f8:f2:77:d3:2c:93:77:98:17:2f:ab:bf:16:d9:cb:
c6:da:59:eb:05:86:1a:1e:29:34:f9:9b:c6:20:4b:a8:d1:7b:
4f:3b:19:ab:f3:45:17:1a:df:97:ab:d2:0a:06:b1:71:19:bc:
f2:82:2e:35:0b:85:3b:ea:84:3b:bb:eb:38:0c:33:f5:c6:a9:
e4:fa:ce:2c:93:1b:90:21:75:f4:80:81:4b:20:b4:01:e9:96:
4c:6a:ef:e6:ac:7f:aa:34:26:c9:21:85:3f:3c:b5:f4:47:94:
1c:54:ae:7d:df:2f:6b:dc:1f:1f:08:fd:36:04:a1:b8:2d:47:
9e:ca:b8:44:17:2f:63:c2:47:54:28:95:7e:23:52:fc:79:a9:
45:ce:10:bf:04:eb:cf:0d:ab:c2:44:78:e9:90:36:75:69:18:
79:91:9a:1c:a6:c1:e8:c9:12:41:46:f5:70:2f:f6:0e:3e:2f:
56:f2:a0:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:08 2026 by rpki-client