Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
File: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft (raw, json)
Hash identifier: JYDNHCu72jzt7YFLzmywCnoYOjMHoNeOvY6pPRhQbZY=
Subject key identifier: CF:E1:8C:32:89:E9:3C:B7:74:0B:DD:ED:B1:86:80:16:EE:5C:A8:DD
Authority key identifier: B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
Certificate issuer: /CN=b284cdf0507443e16e509d57a229e914f73566a4
Certificate serial: 019D265EC8374954B0D923413532AA593AF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
Manifest number: 172C
Signing time: Wed 25 Mar 2026 19:00:38 +0000
Manifest this update: Wed 25 Mar 2026 19:00:38 +0000
Manifest next update: Thu 26 Mar 2026 19:00:38 +0000
Files and hashes: 1: soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl (hash: iK+p/Tx/RGe8r6znBJSS0OpjqwOvY29AkxvYQOFJaRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5e:c8:37:49:54:b0:d9:23:41:35:32:aa:59:3a:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b284cdf0507443e16e509d57a229e914f73566a4
Validity
Not Before: Mar 25 19:00:38 2026 GMT
Not After : Mar 26 19:00:38 2026 GMT
Subject: CN=cfe18c3289e93cb7740bddedb1868016ee5ca8dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:44:56:4a:b7:7f:02:11:b0:34:2f:f9:a2:e6:
59:b3:1a:06:6b:89:2f:0a:c0:55:a0:9c:8a:0f:7e:
6e:a6:b5:2d:ff:b8:2a:c4:80:a2:7b:cb:28:8e:00:
90:e5:a7:06:1b:f4:0b:78:ce:3f:12:3a:fd:be:e8:
6f:94:ba:cf:2d:6b:08:95:ba:c0:9c:0f:6e:60:f1:
f1:da:94:3b:f7:8a:bf:3c:c5:93:e5:0e:26:bd:8b:
4f:fd:23:0b:f2:f9:11:7e:a1:40:97:25:64:79:37:
99:a9:79:83:e5:c9:53:91:09:27:74:27:1e:69:72:
f1:68:52:be:44:29:70:d9:c6:51:69:b7:04:6d:33:
23:3a:82:b5:41:d0:a0:66:e9:3f:81:95:9a:44:1a:
17:c5:48:da:0b:80:6d:09:40:42:ce:77:cb:cd:ae:
df:1e:7d:25:3a:09:84:97:d6:fe:e5:59:86:06:b9:
65:5b:a0:d3:f6:ed:f4:ee:b6:44:13:53:f1:38:ab:
b0:37:ea:0c:ae:b6:94:17:39:97:7f:57:77:d2:66:
06:88:57:95:ca:d4:50:2f:1b:6e:e0:b1:0a:ac:36:
56:a0:7e:f0:66:1c:07:ba:7d:24:65:42:14:71:0f:
ab:3f:7c:f5:c5:b2:93:af:1e:14:27:50:81:53:3a:
0f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:E1:8C:32:89:E9:3C:B7:74:0B:DD:ED:B1:86:80:16:EE:5C:A8:DD
X509v3 Authority Key Identifier:
keyid:B2:84:CD:F0:50:74:43:E1:6E:50:9D:57:A2:29:E9:14:F7:35:66:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/a3828d-0f51-4da0-8433-df56a241098f/1/soTN8FB0Q-FuUJ1XoinpFPc1ZqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:df:ab:b1:74:4b:49:59:8b:2b:1c:67:06:d1:ce:bb:a4:70:
3f:06:a5:29:76:92:61:08:4f:c0:d4:4a:30:d2:12:17:8c:e5:
65:35:38:30:03:5d:95:02:45:1d:ba:14:9d:9b:58:f1:b3:41:
01:f6:ac:e2:d7:c6:e8:e9:47:63:cd:8b:3d:41:c1:f6:14:7b:
a9:f6:2b:a2:06:c3:f0:3f:e2:52:6a:93:f4:75:13:03:a8:9a:
76:73:cd:d8:83:a6:ca:05:4d:cb:09:af:50:21:ce:5c:e2:a6:
07:34:4d:01:0a:99:a7:6f:87:04:ea:e0:dc:c7:7d:3c:76:f0:
b5:b1:2c:db:13:a4:ee:6b:d7:60:6c:27:37:87:d9:2f:e8:4f:
4b:ba:83:64:24:d8:c4:23:cb:24:71:e6:ae:22:60:f2:6b:3a:
4e:6c:2f:19:ca:00:90:25:a9:70:15:be:79:ed:8a:7c:ba:9a:
2c:fa:5d:5e:61:81:c6:b3:cc:b2:02:4a:09:48:be:1b:19:a6:
67:16:47:98:bb:5e:e7:4c:ad:e3:f6:a5:2a:6d:e2:29:71:9f:
52:4b:31:19:d8:30:f7:67:b4:b6:6f:b6:0c:fe:ec:a4:45:fa:
bb:85:dc:ac:ad:52:fc:5e:f8:58:b5:cc:c8:19:27:53:d7:e7:
2a:dd:68:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:06 2026 by rpki-client