Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
File: 9j_pwTQEHOvaVoufkI4q7zirf3U.mft (raw, json)
Hash identifier: L0A/KAww+BXskajohtml3LCsReXTVG0i4OrKUPCieKc=
Subject key identifier: 6A:FB:E6:44:00:7F:5C:0C:D9:A7:28:94:74:16:6F:BE:89:30:01:13
Authority key identifier: F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
Certificate issuer: /CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Certificate serial: 019D38665082E921A15933BA5E0E64225FFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
Manifest number: 0EE3
Signing time: Sun 29 Mar 2026 07:02:02 +0000
Manifest this update: Sun 29 Mar 2026 07:02:02 +0000
Manifest next update: Mon 30 Mar 2026 07:02:02 +0000
Files and hashes: 1: 9j_pwTQEHOvaVoufkI4q7zirf3U.crl (hash: XHCxcgCSanYXveVCBtReJVusSsIzoTXeE6OjzXJTzbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:50:82:e9:21:a1:59:33:ba:5e:0e:64:22:5f:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f63fe9c134041cebda568b9f908e2aef38ab7f75
Validity
Not Before: Mar 29 07:02:02 2026 GMT
Not After : Mar 30 07:02:02 2026 GMT
Subject: CN=6afbe644007f5c0cd9a7289474166fbe89300113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a8:a8:ca:d3:1e:bc:2a:62:0d:d3:94:1a:b6:
b3:d4:46:09:87:24:5b:51:43:4b:31:7e:91:ab:90:
ba:1b:eb:b6:3c:73:26:25:db:9b:0c:b9:55:26:5a:
89:51:73:50:a2:ce:82:a1:5c:80:4f:be:73:05:27:
7c:33:12:0b:5f:2e:c7:af:6a:be:6f:67:ca:ca:c4:
1b:03:03:f7:32:74:08:a0:9f:94:ac:ab:d1:31:e6:
3b:a4:51:4a:2c:bb:87:5b:8d:7e:c7:8c:52:7e:b2:
68:2f:a9:7a:49:4d:01:c3:e4:38:4d:e8:aa:11:0d:
aa:85:bc:74:31:0e:ee:97:0d:42:46:21:3d:1a:d2:
52:b7:9a:bc:51:59:9b:98:98:82:c3:15:a8:67:1c:
4a:af:29:02:d6:16:0d:ed:8e:ce:b0:e7:a6:51:01:
e4:8a:bd:47:10:83:19:ac:9c:b7:21:b0:2b:3e:07:
42:99:f3:cb:a6:99:9a:29:83:67:30:cf:33:ae:dd:
64:ee:ac:24:05:cc:fd:3a:73:b6:63:ac:52:1c:70:
ae:cd:f8:d7:18:23:4c:dd:5b:94:98:18:b4:7c:53:
61:92:cb:74:68:31:37:51:75:44:22:7d:bf:15:93:
16:d4:83:71:f7:a1:25:bb:71:04:37:9d:ef:68:b5:
44:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:FB:E6:44:00:7F:5C:0C:D9:A7:28:94:74:16:6F:BE:89:30:01:13
X509v3 Authority Key Identifier:
keyid:F6:3F:E9:C1:34:04:1C:EB:DA:56:8B:9F:90:8E:2A:EF:38:AB:7F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9j_pwTQEHOvaVoufkI4q7zirf3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b39d3a-2784-4255-9066-5aec766a49b4/1/9j_pwTQEHOvaVoufkI4q7zirf3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:4a:ed:a7:d7:c9:b6:08:3b:b8:07:72:d7:0b:43:ee:d2:c1:
93:54:7a:4e:e2:b7:8d:e8:35:4c:b0:b6:95:a7:ef:cb:71:b4:
b6:27:fb:10:ac:39:d0:82:70:1f:8f:de:c1:6d:08:f4:de:92:
49:ec:7b:43:5b:af:53:2e:51:f4:6c:7e:be:48:d6:5e:ae:e5:
57:af:b9:0e:63:de:1f:ea:92:b1:ec:b6:ad:6c:ae:89:dc:0b:
50:04:87:86:a6:00:d0:e9:68:5f:65:59:bc:2f:f7:06:fd:6b:
a1:f6:2c:c3:83:b4:6a:e5:c4:a9:79:45:7f:fe:2e:7c:17:d1:
7a:a4:ce:16:1c:5e:f2:50:e3:c6:1a:93:cc:0d:62:db:2b:65:
c6:e2:5c:94:1c:71:83:e3:07:13:15:91:21:d3:25:f3:a1:a9:
48:c6:25:29:d1:2f:ad:35:ee:97:38:f3:36:d0:be:e4:1d:de:
53:e2:fc:37:49:03:f4:d8:cf:fc:1b:60:68:48:7e:4a:06:96:
ab:0e:78:20:04:fa:1e:8a:99:b0:d9:b3:9b:e6:47:eb:72:91:
12:13:13:f6:67:52:c0:87:8e:8e:60:f6:46:db:15:94:99:1b:
c2:b6:d2:74:a0:ff:f1:9a:44:3e:fe:48:1b:4d:f4:32:a4:3e:
49:fa:17:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:31 2026 by rpki-client