Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
File: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft (raw, json)
Hash identifier: 3e97O7VSjOqDoCzjclCGnGOsuwjSmMGdeZ5eFxTcSr8=
Subject key identifier: BA:D8:8F:A0:5E:F2:3A:06:75:36:12:26:92:4D:88:1A:A9:30:D6:95
Authority key identifier: D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
Certificate issuer: /CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Certificate serial: 019E2F96A7B279BAA42491EAA28424D8BC3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
Manifest number: 07E5
Signing time: Sat 16 May 2026 07:01:02 +0000
Manifest this update: Sat 16 May 2026 07:01:02 +0000
Manifest next update: Sun 17 May 2026 07:01:02 +0000
Files and hashes: 1: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl (hash: cRs4CTWEalx636SVoSHSE7iNxaWCjGlwEQNm3CQRp5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:a7:b2:79:ba:a4:24:91:ea:a2:84:24:d8:bc:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Validity
Not Before: May 16 07:01:02 2026 GMT
Not After : May 17 07:01:02 2026 GMT
Subject: CN=bad88fa05ef23a0675361226924d881aa930d695
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:75:be:fb:c5:93:a2:b5:49:34:0a:c3:d0:2b:
dc:79:d7:65:16:ae:cd:5f:5a:74:a6:8d:80:63:98:
96:88:21:f1:a7:62:0f:17:a5:1b:6e:9b:3c:60:39:
20:94:55:d2:da:c3:a3:97:1f:6b:6c:37:9b:6b:cc:
fa:d4:01:f1:9b:32:57:b4:10:6e:c8:e5:a3:4a:d0:
fd:ca:95:c5:2e:09:f2:f2:1e:1f:58:c2:6f:9a:b2:
10:38:ed:3f:54:6d:90:81:c6:4a:61:00:7b:2e:d0:
4e:06:e7:73:75:2a:af:0b:54:ec:e0:13:a2:9c:6c:
4e:3e:cd:97:25:26:a4:84:56:10:52:d8:c2:69:13:
e7:dd:37:df:40:55:35:a3:06:a7:e9:fc:82:74:d4:
70:34:a8:7c:07:4e:2c:86:71:45:06:28:b5:ac:a4:
45:b7:3f:dc:9e:0a:8a:7f:20:82:9c:d4:ee:ba:72:
f2:4a:4f:e5:0c:10:47:12:e1:7c:ca:06:b6:85:a9:
3e:3a:0d:21:d4:5f:c5:5b:34:7d:ba:7b:e0:21:f0:
e2:5f:60:be:44:68:92:3a:d4:20:ff:c8:f0:75:e5:
f2:a3:ed:df:0a:8e:72:e8:93:26:66:e2:ac:cc:7b:
47:29:f0:cf:91:c7:87:ef:e4:55:24:3d:e0:5a:d2:
ca:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:D8:8F:A0:5E:F2:3A:06:75:36:12:26:92:4D:88:1A:A9:30:D6:95
X509v3 Authority Key Identifier:
keyid:D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:ce:98:b6:fb:da:29:da:1a:a0:63:7d:98:60:13:15:38:0f:
32:65:bf:0b:ef:3b:3a:01:39:30:06:e0:bf:a6:07:58:9e:c7:
09:b8:c3:ba:ce:02:0b:f1:17:83:27:ae:b3:01:2d:28:fe:03:
23:dc:9f:8e:31:e9:03:e4:59:8d:9d:1b:4b:2f:d8:31:28:fc:
c6:92:eb:2c:7f:6d:c1:f1:ff:4e:18:58:ea:1e:b0:44:ac:7e:
8a:20:a4:50:2c:65:22:e0:cc:fe:c6:d8:17:e3:2c:59:be:40:
eb:8b:89:e6:8a:50:25:d2:05:1a:28:7a:4c:36:62:b5:6b:84:
92:65:5a:5c:d8:03:16:fe:fc:c2:13:9e:57:27:9a:1b:c9:a3:
9b:39:16:cd:75:82:91:b8:b7:b9:0d:2f:17:ab:54:d2:9f:a8:
39:8e:b2:81:9f:22:52:b6:6f:4c:5e:36:99:a9:17:a9:50:7d:
26:30:01:a4:45:37:d0:9b:27:b1:67:d3:25:e1:13:49:a0:3c:
3b:2c:78:0c:fa:21:c7:30:0f:6c:c6:a1:8e:19:20:4c:f0:77:
c4:6f:f0:c2:ea:05:af:ba:90:ea:c7:86:4c:f9:ea:ef:e2:22:
74:03:03:6f:02:5a:89:40:23:bc:99:d6:59:cd:5e:44:ea:d3:
38:9d:d0:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:39:22 2026 by rpki-client