Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
File: spuNaKggdWqqP4l5UdWv1n_bPbs.mft (raw, json)
Hash identifier: dbqM7jOfHtjhVn0aLQXGE8OxTNgguUsLgb/HuUaHvro=
Subject key identifier: CE:D5:2F:04:98:D6:64:0B:2E:E4:C1:43:E2:55:CD:4D:CB:DC:55:5E
Authority key identifier: B2:9B:8D:68:A8:20:75:6A:AA:3F:89:79:51:D5:AF:D6:7F:DB:3D:BB
Certificate issuer: /CN=b29b8d68a820756aaa3f897951d5afd67fdb3dbb
Certificate serial: 019D3865A505018D5E4D101EBE940688218D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
Manifest number: 188D
Signing time: Sun 29 Mar 2026 07:01:18 +0000
Manifest this update: Sun 29 Mar 2026 07:01:18 +0000
Manifest next update: Mon 30 Mar 2026 07:01:18 +0000
Files and hashes: 1: spuNaKggdWqqP4l5UdWv1n_bPbs.crl (hash: 9iaCSxeCriE+lLQKZH10EKpa3VMiGNps8eDb2wtpqr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:a5:05:01:8d:5e:4d:10:1e:be:94:06:88:21:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b29b8d68a820756aaa3f897951d5afd67fdb3dbb
Validity
Not Before: Mar 29 07:01:18 2026 GMT
Not After : Mar 30 07:01:18 2026 GMT
Subject: CN=ced52f0498d6640b2ee4c143e255cd4dcbdc555e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0c:ff:11:23:52:59:4d:c4:26:56:6b:2c:aa:
62:98:66:85:0f:dd:14:1c:e0:0f:f9:61:54:e3:9c:
2c:7f:09:c9:f5:83:b0:50:7a:7e:ef:7c:80:f1:f3:
68:02:95:82:96:50:4a:64:35:0f:8d:60:9e:a5:be:
b6:a8:f9:86:2d:2a:c9:52:8f:8c:22:01:8e:6c:05:
15:b2:61:c9:ff:1b:5f:4c:14:fa:1a:34:3f:6e:41:
bb:ca:c9:14:01:8a:5d:ed:90:37:5e:81:d7:6c:f1:
0a:55:0a:7d:6c:2c:94:2b:ec:a2:0f:fc:82:73:67:
52:28:3c:e0:c1:ac:2d:a8:34:71:0b:e7:78:bf:a8:
47:bc:73:35:98:85:75:1a:1b:54:89:88:01:d2:55:
7c:fb:32:c8:af:07:d3:55:07:2e:b1:3c:cf:56:34:
d4:06:17:cf:60:6a:e4:db:d1:9c:e4:fb:26:96:88:
47:1d:1a:b2:7e:b0:33:04:4c:6a:d6:37:02:d5:6a:
be:02:73:66:2e:9a:e5:25:ce:ff:ab:45:f8:34:e7:
16:fd:28:20:c8:a1:42:5b:72:dd:78:f9:a0:ca:ea:
eb:e0:a1:8a:b4:0a:ef:ea:31:f0:05:af:55:bb:f1:
14:bf:01:50:a5:e2:d3:14:9a:e7:d4:aa:5c:e5:f6:
92:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:D5:2F:04:98:D6:64:0B:2E:E4:C1:43:E2:55:CD:4D:CB:DC:55:5E
X509v3 Authority Key Identifier:
keyid:B2:9B:8D:68:A8:20:75:6A:AA:3F:89:79:51:D5:AF:D6:7F:DB:3D:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spuNaKggdWqqP4l5UdWv1n_bPbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/c97b17-671b-4102-9241-1c1eb158b02d/1/spuNaKggdWqqP4l5UdWv1n_bPbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:b2:a4:78:18:5d:64:e4:d6:90:7d:c7:4d:e1:8d:29:b5:e6:
83:e0:70:bf:7f:1d:20:ef:20:82:97:d0:6e:8e:69:50:93:a2:
20:ec:a3:21:cd:5e:3b:32:4c:49:af:cd:3e:9c:a9:e7:d6:f1:
dc:23:7e:47:72:19:17:a1:21:83:38:23:37:0b:f2:67:f8:25:
ee:e4:b2:64:d0:6b:95:f3:36:cd:07:f3:a2:de:ba:5b:37:ae:
a2:f4:33:21:cb:ec:de:59:7a:c4:2c:5e:f8:d8:62:a1:bb:56:
40:3c:82:4c:d7:f3:ca:6e:d3:c7:c2:f3:71:55:6c:0a:d5:3f:
0e:f5:a5:6d:fb:ab:a0:ef:af:6e:b0:b9:3e:f9:3c:40:0a:a3:
8b:fe:b2:19:e9:d8:43:fe:25:06:ae:b5:44:a7:28:ef:d4:5c:
d9:95:15:71:f5:c1:8e:30:14:28:bd:3b:d3:b5:2e:09:aa:ac:
66:8d:49:c0:6a:c3:6d:95:9f:14:c3:5b:d6:19:9a:37:db:6e:
e6:2b:56:d6:68:4f:31:b0:e0:98:8f:2e:29:dc:ab:2a:a9:ac:
1d:b8:44:fc:33:31:ac:95:bf:43:38:9c:6c:e4:b8:eb:80:d1:
3c:6b:b3:fc:5c:82:ee:48:61:70:72:37:ba:48:b7:f6:ca:40:
c5:28:53:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:16 2026 by rpki-client