Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
File: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft (raw, json)
Hash identifier: bzoynSauyBSlWLYmMwAUxKMdt242EOK4/qJkqkdoe8k=
Subject key identifier: 3C:4D:A1:60:36:C9:29:A3:9A:6B:53:71:52:85:59:BE:E3:D5:D9:4A
Authority key identifier: BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
Certificate issuer: /CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Certificate serial: 019D39407A2B6F09328EE8BD4B96C55AF127
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
Manifest number: 0558
Signing time: Sun 29 Mar 2026 11:00:19 +0000
Manifest this update: Sun 29 Mar 2026 11:00:19 +0000
Manifest next update: Mon 30 Mar 2026 11:00:19 +0000
Files and hashes: 1: v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl (hash: TtbICaiixihsRBGY7k9y4PnGWLdMlVuDuYeIFSNDnXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:7a:2b:6f:09:32:8e:e8:bd:4b:96:c5:5a:f1:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfbc8a8668f50fdaf494f528a2caafd02b7c31ad
Validity
Not Before: Mar 29 11:00:19 2026 GMT
Not After : Mar 30 11:00:19 2026 GMT
Subject: CN=3c4da16036c929a39a6b5371528559bee3d5d94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:cc:22:35:65:e7:66:a3:f0:f9:3e:15:52:e6:
65:d2:52:b7:de:0f:b3:9f:50:58:3f:58:d9:d4:50:
04:90:9c:69:a8:09:8c:44:aa:8c:b8:75:81:b8:17:
3f:31:35:c7:1c:61:50:04:fa:ec:d9:ff:cf:1f:31:
c5:64:b3:3d:57:aa:c0:1f:8a:a6:72:de:04:d5:fd:
e2:4c:0f:a6:23:45:30:69:66:32:2c:95:8c:65:80:
ac:e1:06:77:ae:ac:e0:c7:1f:a7:12:b2:cd:97:d1:
d6:bd:58:ff:40:9e:14:12:1d:2d:15:0a:9d:b6:6d:
06:c3:36:b7:e3:83:35:45:d8:16:38:29:98:f5:e9:
7a:bf:c2:7a:a3:4b:b9:e8:13:62:8d:d4:b7:00:6c:
c3:b5:34:f2:b2:de:1c:c9:a4:33:79:2c:1a:a9:b5:
73:d1:bf:93:84:45:31:a2:53:c7:4f:cb:05:f6:b7:
22:0b:a0:54:94:0c:28:cb:84:4c:8b:48:4a:70:49:
56:65:27:50:b6:2e:b8:ee:85:21:7f:1d:b4:63:82:
23:f3:25:78:48:f5:ad:22:31:7b:ea:ce:0d:37:53:
d9:90:61:d6:52:c5:56:03:1f:0a:d5:9c:bf:9b:d2:
cb:04:6d:c5:d6:b2:62:c3:0b:2b:10:0c:1e:ab:94:
77:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:4D:A1:60:36:C9:29:A3:9A:6B:53:71:52:85:59:BE:E3:D5:D9:4A
X509v3 Authority Key Identifier:
keyid:BF:BC:8A:86:68:F5:0F:DA:F4:94:F5:28:A2:CA:AF:D0:2B:7C:31:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/cb88ae-f020-44d9-b462-da6199b82f11/1/v7yKhmj1D9r0lPUoosqv0Ct8Ma0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:5f:ac:1c:1e:3f:a2:29:17:af:30:b5:63:c1:40:65:8e:fc:
44:b1:cf:2c:dc:f9:57:6e:ca:8f:a7:23:c2:55:fb:0c:e1:fb:
fe:92:45:68:66:fa:40:2c:53:c0:55:18:67:fc:ec:1a:f1:ee:
fe:1b:ec:58:29:7f:77:88:9e:bf:89:9d:1e:c4:48:3d:6e:5e:
57:cd:30:68:9f:d7:d0:cd:a1:c6:43:25:cc:b8:db:ae:fb:fe:
e9:38:0a:1f:50:e0:74:72:e9:6a:4d:57:a3:ae:8c:b0:f7:27:
3c:78:d8:a5:c3:5c:65:72:5e:a7:18:de:1a:cd:18:b5:f2:57:
db:6f:fe:ee:87:52:fd:06:99:4b:e0:5d:0a:d2:0f:d9:ad:81:
36:8a:ee:3c:65:34:65:ae:ed:5f:ee:07:b2:fc:a6:37:2d:32:
d1:fe:e4:9b:b9:34:87:b2:f6:da:b6:78:03:08:ee:4a:08:06:
a9:5a:d9:ce:19:63:6a:de:4d:36:c1:e1:b8:95:94:76:0d:f1:
86:47:d7:86:37:d9:cb:67:aa:fc:b2:4d:3a:71:d6:4d:9b:bd:
66:3d:ce:62:38:80:a7:6b:29:39:ae:52:98:70:5e:50:e8:d3:
1a:68:2e:a7:21:32:1b:18:87:87:c5:7b:2a:8d:e7:4e:6f:a3:
79:ba:df:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:38 2026 by rpki-client