Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
File: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft (raw, json)
Hash identifier: AhLN5lnhrgYr6bHUGdINhKQsrHZLhp+wkpqpu3L1Rm4=
Subject key identifier: A3:9C:25:67:99:31:B4:71:28:20:A8:4E:84:B0:9B:3B:EA:C1:07:65
Authority key identifier: E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78
Certificate issuer: /CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78
Certificate serial: 019D38D2CB6D2983C922AF5752D3450ED449
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
Manifest number: 1010
Signing time: Sun 29 Mar 2026 09:00:31 +0000
Manifest this update: Sun 29 Mar 2026 09:00:31 +0000
Manifest next update: Mon 30 Mar 2026 09:00:31 +0000
Files and hashes: 1: 4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl (hash: ApuVPkQC9poljQrI5EZG/oFLrq+u4+VVgeAsyI2HDfw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:cb:6d:29:83:c9:22:af:57:52:d3:45:0e:d4:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1202e2e4b65db3b1fe581cdb199010b2e90cf78
Validity
Not Before: Mar 29 09:00:31 2026 GMT
Not After : Mar 30 09:00:31 2026 GMT
Subject: CN=a39c25679931b4712820a84e84b09b3beac10765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:87:23:40:74:bd:37:bf:d8:9f:f8:1d:b2:9c:
9c:14:62:44:dd:d8:42:88:76:f0:84:71:17:de:d6:
49:bc:41:3e:24:06:19:cd:22:eb:94:20:c3:c7:d6:
bb:d8:52:65:2d:c9:9f:2d:4d:05:3a:c7:60:a7:27:
ea:15:31:bd:30:a5:b5:6b:00:64:ef:82:e6:93:b1:
57:52:f4:d9:2f:80:0c:fb:cc:c8:26:96:2a:ff:44:
2b:7d:68:e8:42:50:0e:5a:19:30:64:16:27:71:ee:
ae:c8:78:a8:b1:29:85:3b:22:29:8e:43:63:22:a9:
c6:be:37:61:05:cb:56:01:84:3e:e4:f7:73:06:37:
59:1c:81:20:23:e3:82:58:61:2c:d5:96:5e:66:5b:
a1:fe:da:58:4d:65:f7:8b:df:82:e2:27:71:11:0b:
d0:2d:c6:6b:ce:dd:52:d4:7a:43:65:5d:b9:e7:bc:
6b:f9:93:f8:84:0a:ea:b6:0c:1e:25:3d:99:55:04:
94:35:ab:3a:c9:2e:20:ad:f5:ad:c3:f4:ee:ee:4f:
d7:57:09:16:39:90:bd:56:f4:ea:b7:a7:86:e5:d4:
18:e4:87:7d:43:8e:84:cb:e1:c3:59:09:27:96:9a:
02:45:4d:7b:21:75:ed:f0:a5:a4:0d:c5:7d:7f:d7:
36:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:9C:25:67:99:31:B4:71:28:20:A8:4E:84:B0:9B:3B:EA:C1:07:65
X509v3 Authority Key Identifier:
keyid:E1:20:2E:2E:4B:65:DB:3B:1F:E5:81:CD:B1:99:01:0B:2E:90:CF:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4SAuLktl2zsf5YHNsZkBCy6Qz3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a773d7-554f-469f-b4f8-7dc6925cd42f/1/4SAuLktl2zsf5YHNsZkBCy6Qz3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:3d:10:25:1b:86:f9:54:68:90:78:c1:eb:88:9e:b2:8b:56:
e6:5d:dc:ef:89:9a:59:05:e5:c9:3d:37:c5:27:53:3a:3e:3e:
5a:69:b7:3d:e6:9f:d1:2b:be:f1:43:62:12:eb:1c:89:08:bd:
b5:93:df:cb:f6:b9:50:40:f6:8d:b4:7c:61:fd:f6:72:59:d4:
4a:fe:09:ea:25:53:96:ea:e9:d4:b5:07:c4:96:59:bd:a1:e2:
8d:86:f5:5e:2c:97:12:1d:10:a7:55:42:ea:e7:8b:4e:d8:da:
93:ca:c5:4a:b2:3c:e9:0e:99:8d:7e:ad:75:e2:8e:cf:34:91:
ef:6b:d8:f5:cb:70:29:c4:bc:da:f5:bf:cc:aa:a0:9c:0e:b9:
14:b3:0e:be:62:8a:6a:b8:9f:84:10:7c:81:f0:c7:2e:00:a4:
d6:1c:65:9d:cb:69:b5:d6:46:3e:73:a3:4c:88:f0:fc:a7:27:
4a:79:64:7a:0e:60:c0:16:63:2d:27:06:91:fb:b2:c6:09:95:
8b:8c:11:1b:06:ee:b5:9b:28:aa:07:94:76:d7:a5:a4:8d:43:
cc:92:af:9a:5f:19:08:40:2b:83:fb:4e:49:b9:83:0d:43:4c:
43:7c:06:e4:59:b2:f5:14:ce:ca:99:92:ea:b1:31:64:e4:37:
fe:f9:da:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:27 2026 by rpki-client