Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json)
Hash identifier: Vkp5kwAhnpxQ+MqNXbF1zKTCwo5YaBp1CP7LtlTzjI0=
Subject key identifier: E4:2A:F4:85:4E:02:6A:9D:43:6E:79:39:B4:FB:32:C9:8F:43:1A:37
Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Certificate serial: 019D28F2C47DAB7C8985605AFD6CE92C85D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
Manifest number: 12C7
Signing time: Thu 26 Mar 2026 07:01:31 +0000
Manifest this update: Thu 26 Mar 2026 07:01:31 +0000
Manifest next update: Fri 27 Mar 2026 07:01:31 +0000
Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: qpdCfQOEe+sSvbljm6m4q7azUmgtH+8mxfDTOILw8Bs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:c4:7d:ab:7c:89:85:60:5a:fd:6c:e9:2c:85:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Validity
Not Before: Mar 26 07:01:31 2026 GMT
Not After : Mar 27 07:01:31 2026 GMT
Subject: CN=e42af4854e026a9d436e7939b4fb32c98f431a37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:16:a8:68:e8:95:5b:2f:f7:5c:7d:f8:01:58:
b1:01:a7:42:ec:1e:96:92:2c:c6:fa:2d:01:be:42:
ac:65:65:a8:c7:0b:fe:68:27:0a:5d:93:8e:2f:29:
df:be:85:94:85:16:b7:5d:8b:dd:89:6c:84:56:b9:
6b:21:9f:c4:d4:f1:55:c3:1e:81:ba:82:0b:53:20:
d9:2d:d4:3a:f9:5d:be:a0:d5:9f:a8:ee:9c:d9:39:
37:7f:96:c2:3e:4e:8e:c4:6b:92:94:f0:1f:b9:b3:
7a:b8:13:1a:3a:65:d4:8d:23:7c:e4:8d:90:05:ab:
0c:38:49:b7:53:54:d5:18:8d:72:bd:a6:88:cb:92:
4f:f2:32:74:fb:90:43:0e:ba:06:f8:fa:d4:da:d5:
aa:51:4e:bf:4a:3e:bd:2d:b0:ce:4d:2e:08:7a:e2:
67:bd:ea:33:6c:19:e2:0f:5f:24:a9:99:24:f4:28:
d8:c1:db:6e:cd:20:1d:23:69:b5:ac:2f:32:44:7d:
0e:5d:17:3e:6e:61:91:30:30:59:e1:7c:ab:01:ac:
47:49:2d:f3:ce:db:c0:d0:5c:1c:ee:47:f1:8e:1f:
bc:f6:36:bd:9f:60:31:85:9b:3b:fa:84:e0:e0:29:
53:4f:ad:5f:c2:0f:c9:17:c5:35:bf:e8:9f:32:d8:
16:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:2A:F4:85:4E:02:6A:9D:43:6E:79:39:B4:FB:32:C9:8F:43:1A:37
X509v3 Authority Key Identifier:
keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:1c:05:91:24:b2:71:42:f8:92:b9:f6:5e:cd:2d:c3:56:c1:
66:ac:1a:8c:1c:aa:87:fb:a1:e4:1e:21:9d:38:0e:76:a9:01:
26:3a:b4:a4:93:78:33:6b:ba:2c:ae:09:d8:fe:09:5d:d5:af:
58:fa:1f:47:0c:d5:38:55:c1:63:b2:79:49:07:60:25:a1:33:
44:9f:06:78:b2:f5:a8:56:44:7b:fc:3c:d4:31:a8:ad:ac:c5:
32:47:6a:4a:cf:d8:14:58:b2:21:7c:6f:12:5d:fd:8d:78:1b:
ac:8f:2e:25:d2:50:df:ae:f4:47:ee:92:fc:94:65:9d:13:2a:
f1:5a:40:36:bb:5f:54:5f:f2:b6:20:ae:a2:77:34:ce:ee:3b:
86:dd:d6:f9:65:1f:66:e2:ff:0a:a5:15:f9:55:3d:29:d0:15:
c5:50:b1:22:03:74:c6:73:3a:dc:45:d4:75:0d:52:81:ef:b9:
6a:86:4d:c0:b3:34:ab:76:d9:02:94:ba:4d:46:39:81:d3:6a:
1f:5f:98:3f:36:1c:c8:dd:e0:e0:69:98:c3:10:10:d4:eb:51:
ab:09:a2:4d:9a:45:b6:7a:9b:d8:6b:8b:37:c0:61:67:c6:0d:
59:18:06:ae:27:03:51:74:a8:1d:3d:af:3c:5a:a7:7f:58:5e:
03:37:97:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:41:42 2026 by rpki-client