Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.mft
File: MtYmm4lSBJZffsl_Gdi12ckwt40.mft (raw, json)
Hash identifier: OlyGWdcJDh4F18lrUJfg2fLuOea9WzM0fHkmEzzZXQA=
Subject key identifier: DA:E1:15:2A:A6:43:08:D7:2C:74:0A:F7:C6:A9:80:07:CC:61:83:38
Authority key identifier: 32:D6:26:9B:89:52:04:96:5F:7E:C9:7F:19:D8:B5:D9:C9:30:B7:8D
Certificate issuer: /CN=32d6269b895204965f7ec97f19d8b5d9c930b78d
Certificate serial: 019D26CD37212118A90650554D79D1B6E172
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MtYmm4lSBJZffsl_Gdi12ckwt40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.mft
Manifest number: 033A
Signing time: Wed 25 Mar 2026 21:01:16 +0000
Manifest this update: Wed 25 Mar 2026 21:01:16 +0000
Manifest next update: Thu 26 Mar 2026 21:01:16 +0000
Files and hashes: 1: MtYmm4lSBJZffsl_Gdi12ckwt40.crl (hash: Efw0BgsXm3fIweA7Cvu4K5+BUa86pG3iFMGS/4XZtdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.mft
rsync://rpki.ripe.net/repository/DEFAULT/MtYmm4lSBJZffsl_Gdi12ckwt40.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:37:21:21:18:a9:06:50:55:4d:79:d1:b6:e1:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32d6269b895204965f7ec97f19d8b5d9c930b78d
Validity
Not Before: Mar 25 21:01:16 2026 GMT
Not After : Mar 26 21:01:16 2026 GMT
Subject: CN=dae1152aa64308d72c740af7c6a98007cc618338
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:18:00:cd:58:25:e0:8f:11:f4:3b:2e:a2:cf:
b9:74:02:76:6d:23:10:f8:f4:a1:f0:65:d0:00:9a:
97:e2:77:1b:e4:3f:75:72:b9:fa:26:e5:f3:8c:2f:
57:c1:a7:0a:9d:fd:8d:8f:15:7e:97:52:f1:00:be:
ba:d2:e1:b0:a9:5e:d6:12:f2:2e:5a:a8:14:f4:f7:
b1:1d:ff:63:5f:8f:dd:7e:7c:ee:a6:5e:43:f6:7f:
3a:6e:5c:3b:3f:eb:91:cb:65:ae:4e:5c:99:97:5c:
f4:6a:0a:91:d3:f8:eb:8e:3a:0e:65:a3:0d:0c:d9:
e2:64:74:d4:18:6a:ac:90:8d:3b:d2:0d:51:30:ab:
d3:2d:69:a6:49:30:36:c3:39:4a:fb:a0:de:28:c5:
92:74:1b:ea:88:73:2f:ae:d1:69:58:33:79:47:0a:
cc:75:c6:69:79:f3:da:bd:34:1e:79:94:3f:3b:02:
ca:c5:8e:04:d0:60:48:5b:86:1c:8c:ce:f2:f2:61:
aa:6a:4b:60:be:5d:ff:78:03:2e:8c:74:2e:f2:e8:
6a:4b:a8:e2:32:2b:83:fa:ce:93:cd:8d:67:cf:92:
49:f6:0d:30:32:f9:33:e5:7a:32:60:f8:9a:eb:75:
2d:bd:0d:f7:42:ba:6c:bc:18:bf:d7:a9:37:1c:69:
82:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:E1:15:2A:A6:43:08:D7:2C:74:0A:F7:C6:A9:80:07:CC:61:83:38
X509v3 Authority Key Identifier:
keyid:32:D6:26:9B:89:52:04:96:5F:7E:C9:7F:19:D8:B5:D9:C9:30:B7:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MtYmm4lSBJZffsl_Gdi12ckwt40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/e7277e-f8db-4e32-bddd-9815249aadef/1/MtYmm4lSBJZffsl_Gdi12ckwt40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:ed:b3:f0:45:d3:91:0b:53:40:50:bd:3b:d6:d7:3c:ae:36:
57:40:01:42:80:f6:a0:02:29:90:e2:32:43:21:e9:a7:58:a6:
80:96:11:5f:dd:7c:78:2c:a2:d5:a2:2a:f6:19:f7:1e:38:84:
53:b6:ca:38:aa:ae:18:ad:88:9d:e4:7b:75:20:dc:a3:fd:d4:
13:1b:bb:b2:1c:59:d6:52:8b:28:27:3d:fd:30:1f:0c:96:63:
b6:40:2a:ce:f8:4b:a5:bc:b9:1d:9b:ba:87:4b:84:dd:7b:08:
98:fb:65:82:d5:a5:79:8f:12:22:3e:34:0a:b6:36:05:6e:4e:
4b:b6:95:b9:6c:44:61:a3:4e:77:fb:80:10:3d:39:c4:55:fa:
e3:03:39:8e:48:40:3c:0b:fd:52:89:d3:fa:6c:a7:55:f7:4f:
9f:cd:ea:d6:01:64:90:a7:1b:6b:ed:3c:df:16:95:f3:1d:46:
67:a4:a8:0a:b5:37:44:ca:94:94:e0:e1:48:8c:f7:ac:93:f9:
f9:44:6c:de:26:27:f1:87:2e:d8:09:76:49:61:64:98:bd:58:
fc:a3:66:79:4b:12:de:76:3e:32:a1:be:8f:3f:3e:54:10:3e:
e9:b4:2a:01:7a:6a:e5:cd:8a:a4:0b:f3:87:61:d1:ad:f0:17:
f1:2e:e6:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:53:41 2026 by rpki-client