Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
File: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft (raw, json)
Hash identifier: aphEVEqM+sh847w723LfyfCv6rD6AQpm0nHDxoYFWsI=
Subject key identifier: 7C:9C:C9:0D:21:F0:5E:EE:08:48:21:30:41:7E:DB:51:0E:36:70:DF
Authority key identifier: D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
Certificate issuer: /CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Certificate serial: 019D38658CCE2BEDE4724F89634FF8E39ABB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
Manifest number: 0765
Signing time: Sun 29 Mar 2026 07:01:12 +0000
Manifest this update: Sun 29 Mar 2026 07:01:12 +0000
Manifest next update: Mon 30 Mar 2026 07:01:12 +0000
Files and hashes: 1: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl (hash: ImwzT6hKi2G3oaTue6/9ZyAbQxTWXUMNYZAd9p8+xRU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:8c:ce:2b:ed:e4:72:4f:89:63:4f:f8:e3:9a:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Validity
Not Before: Mar 29 07:01:12 2026 GMT
Not After : Mar 30 07:01:12 2026 GMT
Subject: CN=7c9cc90d21f05eee08482130417edb510e3670df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:76:3f:85:cd:7f:69:9f:de:a2:1e:c9:43:1a:
0c:07:ef:05:2c:53:96:c9:1e:e9:9f:d8:6e:c4:ab:
0c:65:d5:12:9c:a5:3d:50:ea:46:42:1a:e6:42:1d:
6b:4c:50:9c:67:b4:13:9f:aa:36:eb:b1:a7:1e:03:
37:e3:a8:88:95:1b:70:3e:da:9a:3b:0b:7a:bc:ba:
b6:80:51:a2:79:4a:e8:db:89:39:ea:08:5e:8f:f7:
82:58:72:fa:3a:e7:a8:1d:9d:6d:04:2a:bf:1a:9f:
34:63:66:cd:e9:d8:cf:9b:2b:c8:52:00:29:6c:bc:
3e:fa:c5:5f:c5:06:7e:db:bd:58:fd:d2:d3:ee:65:
52:f8:00:f4:69:2e:95:f0:bc:c8:b7:74:0b:12:ca:
0f:95:93:a0:f6:58:66:90:0f:bf:34:2f:13:b4:6d:
3b:9c:5d:6a:f1:94:48:be:46:df:d6:31:a2:80:1b:
cf:30:19:d3:21:4c:89:b6:ed:63:49:2b:df:aa:4b:
e4:6d:5c:45:0f:8d:6e:89:07:dc:a5:3f:3d:7a:6d:
8b:cb:0f:44:c7:68:25:94:22:43:60:d5:5a:77:29:
68:c6:01:1d:44:b3:9a:3d:52:12:85:24:0d:4d:1e:
c1:b4:47:8f:2e:3a:9e:1a:e6:7e:41:88:91:00:35:
b2:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:9C:C9:0D:21:F0:5E:EE:08:48:21:30:41:7E:DB:51:0E:36:70:DF
X509v3 Authority Key Identifier:
keyid:D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:d9:ec:3f:9c:f8:6e:9c:84:a1:26:5e:58:e6:51:2f:66:69:
68:e8:fe:8b:99:d1:69:92:48:ee:dd:b0:d6:d1:64:b3:60:7b:
79:9d:55:c2:53:62:5d:c5:e9:e0:b6:e2:5f:41:5c:f5:cd:c1:
98:ab:8a:05:6e:87:b0:8b:1a:aa:24:5f:06:50:ec:85:6a:68:
4f:42:5d:b2:eb:83:b5:a1:26:f0:28:84:18:eb:5a:ff:24:b9:
87:88:41:4e:41:43:a4:ee:b9:7a:56:81:28:66:7d:34:03:ce:
e8:ab:35:3d:eb:85:76:a9:cd:04:26:ad:bb:13:ec:77:88:e6:
88:68:59:44:19:0b:87:96:1c:e9:9a:e4:8c:5f:73:4e:0f:67:
0b:a8:51:91:bf:70:37:af:5d:1d:19:d6:be:81:18:94:ed:0b:
8a:7b:5d:6d:12:3f:20:03:8a:07:a1:8d:7c:8c:5c:0d:81:b5:
02:5e:c2:68:99:da:45:55:be:a8:c7:0a:c9:67:1c:89:c2:19:
7d:da:bc:a7:c9:8a:10:ff:3a:bd:4c:5a:2d:23:29:e2:e4:1b:
a2:4a:6b:b4:33:8a:77:1f:c5:72:7c:88:35:90:68:13:cd:b0:
c8:1c:09:5b:5c:73:76:98:9c:22:22:8d:10:1d:cc:ec:83:6d:
10:61:42:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:41 2026 by rpki-client