Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
File: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft (raw, json)
Hash identifier: YmdmgQmy1G4wgMeg3jcXZB5LPvjgDiLAe7sRV5FlDrk=
Subject key identifier: AF:2C:F1:FA:16:78:98:CC:F0:1A:A7:45:7B:5B:C9:D5:48:F9:26:8E
Authority key identifier: 98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
Certificate issuer: /CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Certificate serial: 019D39AE91B131FBE35C1883309811EB9BED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
Manifest number: 0FC4
Signing time: Sun 29 Mar 2026 13:00:35 +0000
Manifest this update: Sun 29 Mar 2026 13:00:35 +0000
Manifest next update: Mon 30 Mar 2026 13:00:35 +0000
Files and hashes: 1: mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl (hash: GvptCm4wDxYeypnMQ0EyE1pl2Yb1PA3BVQ8shXXXY6w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:91:b1:31:fb:e3:5c:18:83:30:98:11:eb:9b:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98241aac9eda7bef69089f647b5d8f774ff43a26
Validity
Not Before: Mar 29 13:00:35 2026 GMT
Not After : Mar 30 13:00:35 2026 GMT
Subject: CN=af2cf1fa167898ccf01aa7457b5bc9d548f9268e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:25:0b:df:ea:09:2d:8a:ab:54:e5:1f:9a:6a:
99:31:38:82:f9:0f:53:6e:cd:5e:87:e5:62:74:e4:
78:b3:72:e0:9c:a9:a0:58:e5:17:4a:98:0e:9c:e7:
e6:0a:2d:ac:c2:4c:30:63:25:2d:76:8d:ef:0c:cb:
0e:79:fa:ea:54:d5:11:cc:a0:49:63:04:66:4d:84:
37:81:8b:7a:e3:b1:7e:5a:7f:7f:d2:42:77:b8:6e:
21:a0:e2:cc:bc:e4:5e:fa:ac:1c:2b:e9:65:a2:54:
9e:aa:a4:37:1d:9e:ee:61:4c:24:d7:4c:c4:6f:0d:
5c:6f:af:bc:26:61:86:19:a1:af:72:bd:48:17:4d:
f7:93:57:af:0a:84:0b:67:44:1a:2b:3b:d0:15:9e:
dd:e0:10:77:e2:37:a9:94:09:8b:16:22:4b:bb:81:
5d:6c:36:0b:fd:60:63:b2:dc:8e:d7:ff:21:e2:c2:
8d:bc:5c:da:ea:51:d4:70:b7:69:c3:a4:1e:51:b1:
97:59:02:86:17:1f:7e:1a:1c:c6:21:d6:0a:89:4a:
e1:ff:9e:87:da:a8:df:d5:0b:98:99:32:9d:2d:e7:
e0:eb:af:3a:fc:60:ad:31:b5:52:c2:93:7a:ea:02:
b2:04:58:92:e5:f0:ea:3a:ea:75:24:ff:ca:4c:af:
9c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2C:F1:FA:16:78:98:CC:F0:1A:A7:45:7B:5B:C9:D5:48:F9:26:8E
X509v3 Authority Key Identifier:
keyid:98:24:1A:AC:9E:DA:7B:EF:69:08:9F:64:7B:5D:8F:77:4F:F4:3A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/cda958-3cab-4b23-916c-35de384c0982/1/mCQarJ7ae-9pCJ9ke12Pd0_0OiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:5d:92:1f:cc:4b:92:bd:e4:08:35:bd:76:09:f0:92:31:51:
55:51:05:bf:a4:bc:d0:2d:ed:ec:ec:88:80:50:50:40:0d:3b:
4d:f8:00:82:0b:0e:22:6b:d8:7f:41:11:aa:34:56:8f:b9:e3:
2c:9e:31:e5:66:0e:1b:47:e4:14:be:34:ff:31:09:ab:92:a8:
ec:df:38:1e:ee:13:83:a0:dc:a6:9f:72:93:77:fd:ed:ae:8c:
3d:f4:52:c4:0e:52:e0:0a:38:3b:c4:a0:d6:41:2d:57:9c:25:
35:d0:54:4d:4c:37:f7:a3:e2:0f:8a:8a:3e:42:6e:20:e6:9a:
d8:9d:0b:7e:ef:f1:f4:c5:f8:24:10:2a:a5:9e:26:40:75:69:
f4:19:10:7a:7a:6e:40:38:60:92:35:46:55:9b:20:18:6f:0e:
65:c0:cf:8a:68:a7:1d:dd:92:b7:11:42:f8:c3:49:d8:3a:c9:
d6:fa:81:eb:d4:90:c5:3b:cb:9b:02:70:f4:4a:5f:e3:74:58:
4e:cb:02:e6:f8:1c:df:01:53:06:be:85:10:2e:0f:82:f1:21:
b2:ae:32:bf:5e:4b:0c:f2:c0:29:0b:24:86:23:b6:73:e9:c6:
1f:19:31:ba:49:1d:29:a8:e1:31:7a:f6:1f:1c:bd:74:54:15:
b0:af:8e:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:19 2026 by rpki-client