Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.mft
File: 0uJA6f1hIN658GzBmZoKUinhu_0.mft (raw, json)
Hash identifier: v0lk6zs+36sAxY30i+yhmx5z9PhbUmoP2nlmRIce3QI=
Subject key identifier: 86:77:5A:0F:CA:02:69:AF:77:88:E4:A8:DD:00:04:2C:4E:0E:44:5B
Authority key identifier: D2:E2:40:E9:FD:61:20:DE:B9:F0:6C:C1:99:9A:0A:52:29:E1:BB:FD
Certificate issuer: /CN=d2e240e9fd6120deb9f06cc1999a0a5229e1bbfd
Certificate serial: 019D382E3446D17B8DC17449DF84C6C1398E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0uJA6f1hIN658GzBmZoKUinhu_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.mft
Manifest number: DB
Signing time: Sun 29 Mar 2026 06:00:45 +0000
Manifest this update: Sun 29 Mar 2026 06:00:45 +0000
Manifest next update: Mon 30 Mar 2026 06:00:45 +0000
Files and hashes: 1: 0uJA6f1hIN658GzBmZoKUinhu_0.crl (hash: A0rQpPMYbii93QAI4s8rPkuzEO2xm6P9gHrKHPDnZsI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0uJA6f1hIN658GzBmZoKUinhu_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:34:46:d1:7b:8d:c1:74:49:df:84:c6:c1:39:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2e240e9fd6120deb9f06cc1999a0a5229e1bbfd
Validity
Not Before: Mar 29 06:00:45 2026 GMT
Not After : Mar 30 06:00:45 2026 GMT
Subject: CN=86775a0fca0269af7788e4a8dd00042c4e0e445b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:23:8b:5e:27:78:5a:9d:12:89:85:fd:f5:42:
80:54:27:7d:56:67:e1:c7:80:d6:58:e0:e6:c8:dd:
a1:a7:0d:39:6f:3a:f3:6a:cc:f2:28:e9:34:36:95:
e0:7e:02:d0:20:f0:08:fd:ad:70:49:ed:19:98:ac:
15:bb:01:bf:6b:b8:78:04:ef:45:52:b8:7a:91:9f:
52:ce:b6:37:fc:ad:d3:0d:e8:8b:a8:b7:ac:a2:e2:
77:b2:af:fd:ef:fd:eb:d5:45:7f:0b:a6:9b:95:f0:
de:0d:c2:b4:d2:f2:e0:c0:67:b7:9a:48:bd:72:0c:
34:38:d8:e3:3d:8a:60:63:9b:89:f6:3f:fc:66:21:
00:6e:b8:51:cc:89:8d:92:ba:8a:82:5c:fd:0b:4f:
ea:ea:d2:86:c6:0c:5e:01:9e:3f:be:45:0f:0f:8d:
e5:23:3b:5b:a5:67:05:92:08:b3:42:11:c0:f5:c9:
26:aa:13:57:13:aa:d8:02:ca:43:83:d7:19:83:99:
50:1c:29:19:9b:b0:36:78:f7:3a:7c:ca:f6:08:8d:
38:89:b2:c6:78:32:c5:3e:03:cd:f6:36:91:30:4c:
2e:e8:0d:e2:01:24:cb:66:71:3c:08:74:3d:b4:2b:
ed:45:70:7d:53:32:23:12:de:e5:3d:c8:42:4a:a2:
91:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:77:5A:0F:CA:02:69:AF:77:88:E4:A8:DD:00:04:2C:4E:0E:44:5B
X509v3 Authority Key Identifier:
keyid:D2:E2:40:E9:FD:61:20:DE:B9:F0:6C:C1:99:9A:0A:52:29:E1:BB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0uJA6f1hIN658GzBmZoKUinhu_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/f9d39d-0c3e-48c7-ab0e-1134fdeb45b2/1/0uJA6f1hIN658GzBmZoKUinhu_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:9e:e1:53:2f:e8:c0:d4:ea:d0:fe:b1:a7:ff:19:a5:f8:33:
5f:5c:4b:11:08:db:82:d9:73:21:b2:92:67:fb:1b:4e:01:0a:
c9:19:2e:e1:46:e8:58:58:9f:8b:48:d0:cc:5e:0b:77:8d:e9:
33:b1:a1:0f:00:22:a8:66:d9:85:6f:fe:ed:50:31:d3:2a:5b:
4f:82:f3:00:04:be:bc:4c:39:96:bb:ba:05:b3:8a:d2:92:30:
0c:b9:af:00:cc:eb:a6:a1:e8:49:83:0b:e3:f1:fa:4e:fc:3c:
c3:5e:88:a2:e5:15:aa:66:97:70:cf:ba:b0:fd:35:93:15:37:
ac:45:03:fe:d0:94:20:7c:ee:6b:31:84:5b:61:b9:5b:2a:5f:
21:8b:5a:bf:89:e1:b4:f2:a0:90:4e:7e:78:54:33:e4:be:4c:
d6:0f:b5:6e:74:4d:59:d1:8b:d3:29:0b:5c:b3:0c:4e:45:1e:
50:08:b6:30:63:f5:41:bf:8a:13:85:a6:12:e0:79:8a:90:17:
69:79:95:a7:fa:67:a4:a7:52:2e:2f:97:35:5c:b2:5a:65:10:
c3:e9:60:0f:7d:1c:27:06:24:35:cb:3e:7f:a7:20:ea:e1:f8:
55:f3:6c:1e:c8:d7:05:30:19:ff:93:25:dd:fc:5f:04:7f:6a:
92:19:07:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:08 2026 by rpki-client