Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
File: A2hHspcjX68HFob-0sHpEL9gBIY.mft (raw, json)
Hash identifier: iRSoV7oCOgePJhhwWyXi8ooyeUnfLiw1UcLAG6YsrGk=
Subject key identifier: E1:CA:7A:1A:D3:A3:40:E9:F0:2C:58:62:EE:20:87:0D:85:4E:53:08
Authority key identifier: 03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
Certificate issuer: /CN=036847b297235faf071686fed2c1e910bf600486
Certificate serial: 019D329A0E383F1A34400802721A577303A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
Manifest number: 151C
Signing time: Sat 28 Mar 2026 04:00:50 +0000
Manifest this update: Sat 28 Mar 2026 04:00:50 +0000
Manifest next update: Sun 29 Mar 2026 04:00:50 +0000
Files and hashes: 1: A2hHspcjX68HFob-0sHpEL9gBIY.crl (hash: fJb9eiaER5zT4lYBb5CHETXIefc/wTWDsadqKeNh1Xs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:9a:0e:38:3f:1a:34:40:08:02:72:1a:57:73:03:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=036847b297235faf071686fed2c1e910bf600486
Validity
Not Before: Mar 28 04:00:50 2026 GMT
Not After : Mar 29 04:00:50 2026 GMT
Subject: CN=e1ca7a1ad3a340e9f02c5862ee20870d854e5308
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:8f:fc:f1:6e:82:33:b5:d5:ea:6a:8e:56:96:
f8:a9:41:7c:e0:ec:16:26:27:7c:40:51:20:9e:54:
55:b2:ea:d9:f9:95:37:a4:0c:38:df:9b:c5:e1:b3:
44:36:51:e7:0f:da:30:f5:c4:13:a5:99:20:2a:92:
aa:89:c7:ab:09:f1:a0:6c:4f:08:4a:4b:ec:9d:4f:
2a:35:04:43:33:24:23:87:6b:42:3e:d5:c5:55:3e:
d4:4f:c4:1d:f0:f0:00:fb:45:3a:9f:e1:59:12:08:
2a:f6:ea:2c:31:db:61:64:9c:da:6b:72:24:fe:2e:
21:3a:81:47:bf:f1:41:c0:16:4f:83:ed:ba:de:3d:
98:99:2f:c1:c2:e7:b1:8d:34:27:52:a8:86:5e:07:
a8:52:c9:24:93:d8:e0:1e:92:03:e3:e0:97:c6:92:
48:a3:ce:4b:e2:04:65:70:89:19:15:06:58:a2:c2:
90:71:9a:92:74:ac:29:5d:72:1e:d4:13:11:cf:99:
41:eb:51:1f:78:73:07:ea:81:82:54:e5:1c:80:79:
4c:41:7f:5f:4e:7b:d0:e7:43:28:ff:46:b6:95:be:
90:33:c9:88:73:ba:3b:91:d0:be:03:c7:38:2b:b5:
9c:95:63:56:df:e0:c5:de:50:83:0e:68:2a:70:c2:
34:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:CA:7A:1A:D3:A3:40:E9:F0:2C:58:62:EE:20:87:0D:85:4E:53:08
X509v3 Authority Key Identifier:
keyid:03:68:47:B2:97:23:5F:AF:07:16:86:FE:D2:C1:E9:10:BF:60:04:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A2hHspcjX68HFob-0sHpEL9gBIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/44b797-cd5b-4ded-a562-bdd7328e94cb/1/A2hHspcjX68HFob-0sHpEL9gBIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:8e:0a:9d:85:0d:3f:f4:0d:2a:77:c5:4b:66:bb:cc:6a:9c:
88:3f:a2:c4:6a:b9:05:67:fd:e3:b9:7a:ad:04:9b:56:e9:dc:
c9:df:2d:f4:8b:11:89:b9:67:7a:73:c5:7f:3e:cf:42:28:8c:
5d:9f:6f:78:e4:89:87:88:44:4b:1f:ad:22:ad:d0:cb:b7:f4:
66:0d:de:95:02:c3:49:be:66:e2:ba:71:17:66:56:cb:a8:b2:
07:f8:cc:f4:a0:0a:e4:b1:a7:19:33:00:38:6e:e2:bb:51:04:
a1:d1:25:00:52:72:32:3d:90:fc:a5:ca:61:28:30:30:c7:7c:
74:1a:eb:0a:8f:1b:5d:a0:59:d8:8b:cc:00:03:91:f0:e0:bb:
3e:82:cf:15:13:73:3f:59:bc:ce:ec:54:2e:c5:30:a0:ed:cd:
1e:c6:bf:b1:43:55:1a:86:60:63:c6:5f:1d:02:be:c7:1e:59:
f0:bb:87:22:73:fa:b4:8b:13:6d:48:92:1e:54:a0:47:8c:9e:
52:8f:6b:11:3d:59:36:49:bf:8c:ff:41:e3:18:57:93:d3:90:
51:00:b0:b2:45:f7:66:0f:ec:de:a0:67:40:72:19:b4:43:16:
1e:df:b2:79:b0:01:55:6a:26:a7:6c:65:bb:90:5e:e6:61:a1:
18:29:7b:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 14:29:12 2026 by rpki-client