Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
File: RzrT6YeegYYjFqEICLtcQhKVTLo.mft (raw, json)
Hash identifier: WR9SXWxpN4BzlPVSYB/Nmrv/rv4lLUjIU7VsJ+U2S7w=
Subject key identifier: 3E:1C:28:7B:45:F1:6E:29:8E:94:17:1A:8F:00:B0:88:31:C7:25:BD
Authority key identifier: 47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
Certificate issuer: /CN=473ad3e9879e81862316a10808bb5c4212954cba
Certificate serial: 019D270486D6631B31A17D3624847220A803
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
Manifest number: 1133
Signing time: Wed 25 Mar 2026 22:01:41 +0000
Manifest this update: Wed 25 Mar 2026 22:01:41 +0000
Manifest next update: Thu 26 Mar 2026 22:01:41 +0000
Files and hashes: 1: RzrT6YeegYYjFqEICLtcQhKVTLo.crl (hash: F/PxyOViLRhJoAT0v91SV5eQH5D1IGn4HSWmde4GAoE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:86:d6:63:1b:31:a1:7d:36:24:84:72:20:a8:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473ad3e9879e81862316a10808bb5c4212954cba
Validity
Not Before: Mar 25 22:01:41 2026 GMT
Not After : Mar 26 22:01:41 2026 GMT
Subject: CN=3e1c287b45f16e298e94171a8f00b08831c725bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b3:49:1e:fc:3e:a2:7a:13:a4:b2:44:8a:5a:
80:e0:10:9a:33:a3:e3:89:15:8a:ce:bd:56:fa:ff:
13:77:a3:db:3c:3e:9b:a6:3a:4b:47:63:db:1b:15:
e5:30:6d:1d:b4:8e:82:77:91:2e:98:6b:8a:97:1a:
90:63:1b:bc:4c:00:a4:2a:6b:b3:21:c0:85:c2:80:
44:4e:d4:1a:f4:a0:b2:d3:c5:a7:b8:99:f6:7e:1a:
61:dd:24:6e:8c:6e:28:65:f0:0b:6e:d4:5e:39:08:
bc:db:48:3a:73:4c:85:1c:bb:1d:45:22:cf:60:41:
8c:30:22:99:f3:ef:91:e1:3f:2d:80:37:ff:53:c1:
59:39:ea:11:6b:09:e5:0a:81:08:2a:b1:be:36:2c:
72:b8:51:e6:47:0b:1b:1f:7a:c7:3f:7b:e5:6b:d0:
8a:65:6c:51:ea:38:da:80:3f:fc:52:29:04:a0:96:
2e:1a:b7:72:cf:06:ca:c7:82:f9:39:3c:b9:29:94:
19:0c:eb:b8:2f:00:4f:8b:66:8d:43:0a:17:38:66:
da:4b:bd:f0:e6:29:04:36:a5:4b:06:9c:1b:71:8a:
67:9b:25:d9:33:e4:b2:9a:52:98:f0:ab:7b:c3:29:
32:b9:b1:72:83:14:bf:b7:19:78:a7:18:b1:be:c1:
db:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1C:28:7B:45:F1:6E:29:8E:94:17:1A:8F:00:B0:88:31:C7:25:BD
X509v3 Authority Key Identifier:
keyid:47:3A:D3:E9:87:9E:81:86:23:16:A1:08:08:BB:5C:42:12:95:4C:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzrT6YeegYYjFqEICLtcQhKVTLo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/1d27da-b39f-42a9-949f-b6c39ad983dd/1/RzrT6YeegYYjFqEICLtcQhKVTLo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:bb:e2:24:c5:92:6e:0b:79:4e:b2:ca:7b:bd:a0:88:9e:93:
36:38:08:4a:fd:52:29:0a:14:ac:a2:9d:51:8d:ee:df:03:9d:
66:b9:00:88:02:a9:7f:1e:d5:08:0b:82:a3:6e:a0:62:02:c5:
b3:be:f0:f5:57:57:de:03:d7:b1:bd:6f:0d:02:5d:a0:cf:f3:
26:86:e0:1f:fb:ca:e6:c9:48:f2:a1:96:bc:85:5e:1f:21:dd:
ad:99:c3:e4:a8:03:54:d4:26:a3:4c:37:29:8a:96:68:56:21:
d0:e8:b6:ba:de:b9:1e:36:a0:b5:6d:f6:01:de:44:22:1d:6b:
12:28:c4:51:09:a3:8b:a7:ef:a7:85:5c:1e:a7:e9:e1:ae:c5:
b6:77:48:f7:e1:f0:99:fb:1c:03:d6:be:e6:a1:af:4f:03:e8:
b0:22:f7:2f:86:e6:97:4a:dd:37:ec:a2:3e:8b:6d:45:c1:ae:
b2:7f:15:11:d8:0f:fa:4a:cc:8e:fe:36:d1:c3:a4:b4:96:ec:
1b:6d:2e:26:2f:d8:72:0b:9a:2c:bb:32:d5:d4:84:c2:35:2c:
e3:38:d0:c3:ca:f9:95:2e:39:f5:09:26:41:f4:a7:0b:43:e9:
a0:b4:5b:ee:c8:1e:91:27:26:c9:46:df:e7:c2:c3:83:c5:8c:
30:c6:3a:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:04:56 2026 by rpki-client