Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
File: aBHhJcs1cHby-jE4yT6aJoGxeJM.mft (raw, json)
Hash identifier: Lew7vSikeEt7O4jAoMLhVqffgicjMlwYSX6ha7NJ64k=
Subject key identifier: 41:25:CD:29:20:25:95:83:5E:DA:07:52:01:44:BC:CF:4C:5D:BE:92
Authority key identifier: 68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
Certificate issuer: /CN=6811e125cb357076f2fa3138c93e9a2681b17893
Certificate serial: 019D2704BA1324CA33F2172F57797241ABCF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
Manifest number: 1886
Signing time: Wed 25 Mar 2026 22:01:54 +0000
Manifest this update: Wed 25 Mar 2026 22:01:54 +0000
Manifest next update: Thu 26 Mar 2026 22:01:54 +0000
Files and hashes: 1: aBHhJcs1cHby-jE4yT6aJoGxeJM.crl (hash: DbafqntUcIrcFdAUi8TT20Is1D7dNEnlC/y1ha9gUac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:ba:13:24:ca:33:f2:17:2f:57:79:72:41:ab:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6811e125cb357076f2fa3138c93e9a2681b17893
Validity
Not Before: Mar 25 22:01:54 2026 GMT
Not After : Mar 26 22:01:54 2026 GMT
Subject: CN=4125cd29202595835eda07520144bccf4c5dbe92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ed:2c:c0:02:dd:d2:1f:36:45:f3:ce:39:5e:
57:39:fa:7f:e2:bb:b0:8a:79:df:cc:00:7e:59:f9:
c2:e6:f2:79:28:6e:7a:9b:2a:ca:0a:7e:e0:d4:31:
8c:3b:16:11:9d:19:ee:1e:8b:52:d0:f9:07:4b:da:
d9:76:77:b2:14:b1:48:cb:58:6e:8f:c8:c2:3f:3a:
d4:21:00:1f:5d:f4:97:64:3c:ac:33:11:78:e1:fe:
65:39:11:5f:38:30:06:e1:ed:53:d8:d7:f9:12:29:
1c:27:f5:54:24:6a:f4:03:17:07:f2:3f:a2:ca:27:
6d:a1:3d:c4:48:69:60:74:7a:99:fe:fc:ea:34:9d:
cf:a0:a4:03:a3:b7:64:f1:37:18:55:de:73:78:21:
32:eb:1a:05:f8:65:01:50:30:a4:a0:06:7a:b6:74:
e1:f7:46:ef:3d:f1:97:6c:6b:f4:47:a0:bf:8a:3c:
38:bd:18:cc:b0:57:81:89:0e:ef:11:24:9c:94:61:
43:c5:96:3a:4a:ea:e9:81:c3:9c:2a:19:22:49:ac:
8b:2a:9e:f6:31:ab:bb:41:fe:a2:2a:f3:2f:f4:e3:
ce:d2:6c:b6:10:1b:cc:cc:92:43:12:b3:f1:76:30:
11:02:fc:bc:c2:38:88:8c:f1:9a:14:de:a6:2b:04:
40:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:25:CD:29:20:25:95:83:5E:DA:07:52:01:44:BC:CF:4C:5D:BE:92
X509v3 Authority Key Identifier:
keyid:68:11:E1:25:CB:35:70:76:F2:FA:31:38:C9:3E:9A:26:81:B1:78:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aBHhJcs1cHby-jE4yT6aJoGxeJM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/ebacbd-8190-4e5a-a03a-cd439492b7ae/1/aBHhJcs1cHby-jE4yT6aJoGxeJM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:99:51:83:da:4e:70:aa:e9:83:63:ee:f6:f2:2c:3f:36:46:
db:8e:93:e6:24:ef:9f:bd:13:04:f8:3f:b1:8d:e2:43:40:a0:
e0:ff:05:04:05:02:71:26:a0:84:10:c1:4c:f2:1b:33:56:eb:
5c:5b:62:ea:70:8f:8a:ef:98:8f:74:07:5e:59:df:61:cf:01:
be:b4:9c:20:83:68:ce:e1:03:0a:a2:bd:8f:cd:9c:48:2d:c7:
2d:29:b7:ab:fe:6e:23:8a:45:0e:75:d1:85:b9:2f:ba:a9:3b:
4b:47:23:09:fc:21:f9:36:39:31:6a:80:de:c1:43:11:17:e6:
5f:5e:7d:7c:46:b4:9d:56:67:ad:80:3f:56:9f:24:28:81:77:
86:94:d7:30:cb:89:96:57:4a:9b:e7:80:43:fd:9d:73:0a:23:
43:a8:ea:71:66:db:06:fb:eb:82:af:58:90:39:7c:e8:3a:57:
73:56:b1:a6:61:75:6e:41:71:64:08:a7:86:fd:95:c4:89:cf:
f1:16:10:f3:4f:2e:a9:20:6f:0f:98:c3:2b:9e:d8:c3:47:d4:
82:a8:98:dd:86:03:41:a8:da:0a:55:a8:06:81:da:05:cb:96:
87:74:ad:0d:8f:4a:70:35:c5:e4:93:b1:13:f8:71:5c:ac:9e:
a4:1c:d3:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:30:23 2026 by rpki-client