Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
File: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft (raw, json)
Hash identifier: N/tvvmON8XuXqvZ+hBe8tPRcsdb3r0ytKk6Qqk8vO5k=
Subject key identifier: C2:2B:D6:27:C3:C4:82:15:C6:2C:A4:29:AD:DF:6D:23:D1:3B:D1:95
Authority key identifier: 4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC
Certificate issuer: /CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
Certificate serial: 019D27A88C2335A38B10DA83A22413F9A77F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
Manifest number: 1885
Signing time: Thu 26 Mar 2026 01:00:50 +0000
Manifest this update: Thu 26 Mar 2026 01:00:50 +0000
Manifest next update: Fri 27 Mar 2026 01:00:50 +0000
Files and hashes: 1: Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl (hash: GX51eUbEz6XQl67rno4xcSR76ywa+nF+vtggqcDMe5c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:8c:23:35:a3:8b:10:da:83:a2:24:13:f9:a7:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1ed4bf502c0f2d8bc87026c18ac9859b0f1dec
Validity
Not Before: Mar 26 01:00:50 2026 GMT
Not After : Mar 27 01:00:50 2026 GMT
Subject: CN=c22bd627c3c48215c62ca429addf6d23d13bd195
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:21:fe:8b:ab:41:70:f7:2b:1e:d1:90:67:d8:
a9:3d:51:60:8c:74:36:29:58:ca:b5:65:ad:4b:ef:
63:63:dd:2e:83:66:44:10:db:99:36:2f:70:df:96:
c2:77:8f:01:ac:b6:6e:24:b3:14:11:6d:18:c2:f1:
a0:ee:3a:bb:4d:a3:42:47:24:21:b4:a4:73:7a:1b:
39:f8:84:f7:d2:b1:d5:34:a2:2a:38:78:e8:9b:9d:
ec:37:76:51:25:ec:35:d8:6a:5b:50:f0:3a:98:8b:
a2:d3:3f:f6:a6:6c:78:f9:f3:cc:9f:67:f6:7e:2a:
dd:25:0c:a5:b6:69:2d:6c:60:77:2a:ad:b9:a8:9c:
f4:21:ce:17:d9:4e:34:85:7c:ad:ba:d7:9e:3a:8c:
b1:2c:3e:68:83:0d:ff:74:36:12:48:05:03:5c:31:
5a:37:30:e8:3a:07:36:78:94:44:fa:e4:b3:d2:dd:
1c:63:ae:2a:e4:6a:10:91:e0:bd:d3:ab:81:35:7d:
a5:ba:31:14:49:33:ab:37:f3:67:2d:6e:ff:a9:9b:
54:63:87:c2:bb:f6:59:63:42:4b:a1:ea:a2:25:ac:
f1:cf:ca:5d:e6:81:4b:59:1e:6e:29:e3:34:62:f3:
a4:ae:c6:20:21:c5:2d:ec:8d:79:ce:27:60:12:63:
39:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2B:D6:27:C3:C4:82:15:C6:2C:A4:29:AD:DF:6D:23:D1:3B:D1:95
X509v3 Authority Key Identifier:
keyid:4A:1E:D4:BF:50:2C:0F:2D:8B:C8:70:26:C1:8A:C9:85:9B:0F:1D:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/97c916-81b1-4b3a-9fee-356a19f55506/1/Sh7Uv1AsDy2LyHAmwYrJhZsPHew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:4b:12:45:8c:b4:58:0e:b0:49:5d:68:83:61:fa:b3:8d:d4:
ac:83:9b:89:4f:09:be:5a:36:8b:5c:e7:3b:ab:d6:a6:96:1e:
05:c3:b4:3a:07:ba:50:61:e8:6e:ce:cd:ca:87:8c:06:48:57:
1f:db:30:fc:91:dd:3d:1c:03:d4:e9:a1:97:21:a6:a8:e3:19:
20:c4:87:4c:03:4c:a0:27:af:29:6c:4e:84:4d:31:2f:a8:a9:
22:75:ef:93:cb:40:b0:f1:78:f3:76:df:46:dc:7d:43:8f:44:
a2:a7:89:bf:4b:06:88:69:e7:06:ca:28:9f:e9:6d:f1:22:18:
e6:98:29:8c:a7:91:64:a9:cf:8d:59:94:e0:6d:70:49:c6:2d:
25:02:2b:8e:5f:64:e7:69:7e:2a:aa:d1:79:96:05:8e:52:3a:
09:7d:50:70:bb:ac:8a:44:17:2f:fc:b2:60:00:7f:0f:15:a3:
ef:a8:00:18:93:6f:65:36:a8:a6:e1:15:45:99:78:79:5e:6f:
ca:b2:8e:de:ff:b0:8e:9a:37:21:f9:d2:6b:b5:d5:1b:e8:32:
17:08:87:0f:b9:90:e6:0d:2c:2e:6e:85:3f:e7:cb:86:4a:6a:
9e:c9:ee:b0:c1:a2:d4:47:4f:45:74:29:e6:05:f7:60:47:67:
e8:1f:e3:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:53:14 2026 by rpki-client