Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
File: F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft (raw, json)
Hash identifier: WmDGU9KVQOZvHmPFd1yo56axO7KUn+5OIebTmQBF3wM=
Subject key identifier: 54:A2:D5:4E:2A:06:D8:45:2B:8A:CC:72:0A:5E:06:C2:7A:BD:3E:A0
Authority key identifier: 17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
Certificate issuer: /CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Certificate serial: 019D3488F6DC3BB1FD127708BC4AB8EF8E54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
Manifest number: 102E
Signing time: Sat 28 Mar 2026 13:01:24 +0000
Manifest this update: Sat 28 Mar 2026 13:01:24 +0000
Manifest next update: Sun 29 Mar 2026 13:01:24 +0000
Files and hashes: 1: F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl (hash: S8hVI/diMKurkNE07yCeEE5bp0zreb0LIiRg7/ARGs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:88:f6:dc:3b:b1:fd:12:77:08:bc:4a:b8:ef:8e:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d873120653b3cfe55172a9dc6057e8ccd0cb5c
Validity
Not Before: Mar 28 13:01:24 2026 GMT
Not After : Mar 29 13:01:24 2026 GMT
Subject: CN=54a2d54e2a06d8452b8acc720a5e06c27abd3ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:6f:75:0a:a8:e1:79:e4:67:ab:6e:dc:53:4b:
56:39:35:52:95:5b:88:7c:75:db:65:e0:03:ef:8f:
a2:cd:37:9f:6a:8d:ce:94:cf:c4:fa:bb:bb:29:79:
d8:76:a4:e4:cd:8b:e6:34:f1:10:78:94:1a:aa:bc:
fe:2f:2b:2c:2e:85:f4:7e:ec:6f:4f:46:3d:4d:4a:
a3:6f:28:de:6d:13:2f:0b:28:ed:70:cd:42:60:30:
e0:ca:85:32:9f:22:b5:c4:35:60:12:26:0c:1f:6f:
76:c8:d2:0a:60:34:ee:1e:27:0f:c8:b7:d1:fb:97:
94:8e:2e:8a:3a:cc:3f:9b:97:39:f5:d4:75:76:dd:
23:b9:ee:33:42:5e:12:01:e8:8d:1c:31:04:3c:e5:
03:94:35:9b:d5:4b:bc:65:33:61:04:09:d2:d5:e9:
20:5f:07:b7:37:d7:b3:d2:02:d5:91:85:0a:a4:5b:
f3:65:83:89:76:8f:57:35:df:60:6f:e6:83:2d:af:
26:ee:a1:6f:6d:93:27:c5:22:1f:8e:93:83:07:62:
ad:f0:0d:37:f7:0e:0d:e0:67:08:01:9e:b9:4b:73:
46:87:96:6d:c9:17:2a:1d:b4:bd:1b:f5:da:fe:8a:
3b:0f:e8:03:b3:cf:6f:9a:85:dd:83:c7:41:3a:c7:
cb:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:A2:D5:4E:2A:06:D8:45:2B:8A:CC:72:0A:5E:06:C2:7A:BD:3E:A0
X509v3 Authority Key Identifier:
keyid:17:D8:73:12:06:53:B3:CF:E5:51:72:A9:DC:60:57:E8:CC:D0:CB:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9hzEgZTs8_lUXKp3GBX6MzQy1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/65ea32-6fd3-4c85-92d6-b00c1c145fe7/1/F9hzEgZTs8_lUXKp3GBX6MzQy1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:9c:f5:e0:93:24:41:d2:f1:c2:35:49:13:00:57:c5:90:74:
81:1c:74:d9:e4:c7:fd:ab:18:ce:8e:cc:fa:4b:95:27:1a:d3:
8d:b8:23:c2:37:a7:30:d2:e5:6b:bd:64:ef:6f:34:33:38:e5:
f6:05:80:68:0f:fb:02:56:bc:32:02:e0:3e:5b:28:39:90:c5:
52:ca:ce:bf:ec:56:2b:42:4f:1b:b2:f6:85:b3:45:35:78:1f:
c1:f2:a0:45:9d:23:e1:f6:b0:60:90:58:a1:15:8e:f6:ba:1f:
5a:85:cb:f4:72:4c:9f:0a:ed:db:59:8b:e7:d3:3c:04:10:37:
17:0c:87:e8:7b:0a:c2:79:5c:68:14:41:b4:8d:3b:ea:6c:76:
b0:aa:51:36:00:12:4e:5e:b5:5c:2d:45:d2:6e:43:44:c5:11:
28:d9:4e:1d:c6:af:c9:b2:8e:74:e2:77:aa:a0:9d:e5:30:8a:
69:57:3e:05:e1:ef:16:93:0e:4e:6e:17:2c:72:39:1e:99:19:
6d:73:e1:17:5f:98:0d:27:08:a1:97:42:18:e3:5b:34:c0:a8:
0c:ff:bd:b3:ae:87:aa:6f:14:b9:95:b9:ca:5b:7f:c0:70:bb:
02:43:ee:63:79:56:4b:66:94:ed:5c:37:f9:22:e5:37:b5:51:
06:04:b1:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:26 2026 by rpki-client