Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: sbX2eJMcV8IKtAqPQqDwR0zBjvm2PMOVz9DZNBUBlHQ=
Subject key identifier: E2:9F:C8:32:5C:40:9E:6C:D0:C0:BF:4B:80:6E:02:E8:A1:7B:6C:CC
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 019D39777306CA507952079B17613EA95C52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 07D9
Signing time: Sun 29 Mar 2026 12:00:22 +0000
Manifest this update: Sun 29 Mar 2026 12:00:22 +0000
Manifest next update: Mon 30 Mar 2026 12:00:22 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: /fMkVTWXRVoU9HCbFjyH78uuEB9oReai2U6UxJ7QZFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:73:06:ca:50:79:52:07:9b:17:61:3e:a9:5c:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Mar 29 12:00:22 2026 GMT
Not After : Mar 30 12:00:22 2026 GMT
Subject: CN=e29fc8325c409e6cd0c0bf4b806e02e8a17b6ccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:f3:d1:01:d7:67:53:25:06:65:11:5d:25:24:
b6:db:dd:3c:73:19:7b:ed:91:e7:6b:40:0a:79:65:
c4:e1:b8:5f:3a:a1:e7:a7:93:9f:17:c6:6b:de:53:
64:6f:7e:e1:c5:48:73:84:48:4d:89:45:e5:24:a9:
86:7b:15:e5:5e:59:9e:26:39:0f:4f:52:98:60:13:
47:98:5d:fe:46:8a:79:d9:09:98:b0:48:77:dc:22:
2f:56:ba:91:27:20:16:f9:f2:2f:39:0d:65:83:98:
9d:7b:ce:49:ac:32:5f:43:93:a9:72:87:78:2c:60:
16:0e:6d:ee:41:92:b7:0e:06:d7:c5:c3:89:90:77:
48:a1:ce:67:1b:ff:3c:62:7c:57:3a:d8:93:2b:1b:
65:7a:d1:b0:3c:58:56:5e:95:7e:ef:47:ec:04:88:
c1:14:71:4b:6a:b2:02:76:0c:14:56:92:99:34:1a:
74:0f:03:3a:da:0e:fe:42:32:f6:b0:d8:23:50:07:
26:b0:35:1f:b8:db:e4:1b:16:42:0f:49:4e:f8:66:
56:0b:3b:6a:59:52:97:7c:d5:80:11:df:d6:89:28:
e9:5f:a9:11:e3:c7:17:6a:74:c1:f5:b7:5b:44:a9:
5f:39:8f:7f:5a:18:38:a3:a0:5e:08:bd:82:d0:1c:
1e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:9F:C8:32:5C:40:9E:6C:D0:C0:BF:4B:80:6E:02:E8:A1:7B:6C:CC
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:3b:00:ec:b3:0b:5c:1d:f0:49:9d:69:58:e9:75:4a:1c:49:
92:f0:94:71:be:e4:56:2d:f8:2f:3d:6e:c0:83:6d:95:7a:0e:
5e:20:f5:1e:48:c6:ed:77:26:65:8f:3b:a5:bf:cf:5d:ec:81:
ff:9b:c4:c1:2b:f8:8d:34:2e:c7:5d:c0:20:91:81:49:01:0c:
30:27:17:b9:c8:45:c4:73:15:e8:37:44:ab:dc:9c:bb:29:f7:
5a:44:7a:54:ac:a2:7a:25:15:41:ba:4c:98:ab:dc:d8:8f:cf:
ac:12:f3:a2:61:cf:b4:b3:61:62:e8:3f:92:b0:67:cc:89:36:
09:6d:8a:d1:f3:75:b6:99:85:cd:dc:66:f4:b1:1c:0e:79:73:
c0:a5:e8:e3:01:79:1e:1e:fa:50:9f:9b:73:07:0a:13:c8:91:
04:48:00:59:83:9d:b1:13:f7:30:c2:fc:60:bd:d7:70:27:3b:
6d:7c:f3:e1:e7:e8:56:c3:61:53:50:73:36:f2:bd:fe:0a:15:
f8:9e:dc:5a:a1:9f:62:7e:d2:fa:8a:e0:b4:e4:92:45:ea:3c:
d4:f5:9c:3a:d2:28:59:ad:91:d1:5c:0a:a9:0c:47:58:44:db:
d1:ca:86:9d:53:53:5a:a2:3b:0f:fc:e2:0c:34:d2:2e:98:cc:
e9:c3:d1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:31:41 2026 by rpki-client