Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
File: dLJ8XVaEhkhT31uBVyIS7eMizgo.mft (raw, json)
Hash identifier: 7HCMW9TejNUit8jtmNf4II/IcRWU/MuNJGRXl6StbRw=
Subject key identifier: D8:41:E8:8B:AE:B9:7F:E9:2F:F5:F6:23:E3:CB:19:DD:BB:ED:91:B2
Authority key identifier: 74:B2:7C:5D:56:84:86:48:53:DF:5B:81:57:22:12:ED:E3:22:CE:0A
Certificate issuer: /CN=74b27c5d5684864853df5b81572212ede322ce0a
Certificate serial: 019D284E61C3E0F43D92A99C8BA3AE14D9F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLJ8XVaEhkhT31uBVyIS7eMizgo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
Manifest number: 055B
Signing time: Thu 26 Mar 2026 04:01:58 +0000
Manifest this update: Thu 26 Mar 2026 04:01:58 +0000
Manifest next update: Fri 27 Mar 2026 04:01:58 +0000
Files and hashes: 1: dLJ8XVaEhkhT31uBVyIS7eMizgo.crl (hash: nFZLsZy8FlbgvY0dgl/Y0AEBCAxSs5zFofZ+o/6hUbY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
rsync://rpki.ripe.net/repository/DEFAULT/dLJ8XVaEhkhT31uBVyIS7eMizgo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:61:c3:e0:f4:3d:92:a9:9c:8b:a3:ae:14:d9:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74b27c5d5684864853df5b81572212ede322ce0a
Validity
Not Before: Mar 26 04:01:58 2026 GMT
Not After : Mar 27 04:01:58 2026 GMT
Subject: CN=d841e88baeb97fe92ff5f623e3cb19ddbbed91b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:30:fb:a5:5c:fb:58:5e:b2:39:a8:cc:94:36:
1c:c4:28:17:bf:1b:27:20:bc:22:63:d0:bb:ad:1a:
55:bd:e0:f2:ae:bc:5e:f6:7d:35:ce:6f:53:87:64:
f7:3b:be:28:ee:6a:3c:09:bc:d8:6c:b5:ca:e9:76:
ce:0b:3e:a5:20:c8:b4:cc:9a:fd:8d:6f:6b:cd:63:
70:e1:cb:0a:41:35:4c:42:54:42:7a:8b:68:57:cc:
66:9e:e3:76:85:b7:d0:07:db:c4:91:83:77:8d:48:
34:46:c3:31:dd:b1:f2:d2:fa:e4:b1:98:8f:84:99:
f6:91:79:8a:1c:72:bf:39:33:b0:e6:44:e2:12:93:
84:5b:85:d0:40:86:b8:0e:b4:87:ef:b0:97:33:f3:
87:31:b5:c3:d1:1b:d1:65:fc:cb:de:91:1d:09:75:
55:c4:bd:e7:5e:99:21:36:47:2a:51:f8:38:2e:9b:
bc:81:dd:84:7e:10:ad:93:9c:06:c8:80:f2:f7:19:
23:92:74:1d:5d:8b:df:2e:b3:e0:b1:b2:e3:d0:fb:
70:ea:d7:3a:73:12:c6:2e:d4:83:d6:6a:5a:d0:dc:
0e:21:c3:81:dd:1c:f4:4a:f8:dc:17:94:07:57:54:
b6:ee:5d:63:dd:35:c2:9b:df:92:33:57:dc:74:bb:
d8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:41:E8:8B:AE:B9:7F:E9:2F:F5:F6:23:E3:CB:19:DD:BB:ED:91:B2
X509v3 Authority Key Identifier:
keyid:74:B2:7C:5D:56:84:86:48:53:DF:5B:81:57:22:12:ED:E3:22:CE:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLJ8XVaEhkhT31uBVyIS7eMizgo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/299656-744a-4daa-8cfd-010a9856f785/1/dLJ8XVaEhkhT31uBVyIS7eMizgo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:4a:fb:b0:92:d1:f8:5b:96:a7:86:89:d1:a2:39:30:a8:00:
f6:db:03:78:48:f6:4b:76:f6:82:f9:0e:45:45:38:5e:49:d1:
ec:9d:89:0e:57:83:36:45:52:69:3a:54:95:52:de:fa:bd:f6:
f2:cb:4a:28:bf:8c:b6:e4:10:fd:66:2e:e5:fc:1e:37:0d:d7:
ad:d0:c0:b8:ca:27:d1:aa:f2:db:a7:83:fc:6a:3a:0f:68:be:
cc:61:81:d9:14:02:09:de:76:4b:d1:26:cb:29:72:da:9f:84:
ca:60:bf:af:24:1f:e5:32:0c:b3:5c:47:02:57:18:d5:5e:a0:
03:d9:97:45:62:d2:bf:12:81:ee:44:81:52:6e:2b:a7:97:c8:
ba:64:c1:21:ca:23:38:45:15:97:0f:95:3d:d1:be:08:5c:7f:
16:74:37:95:b8:63:5e:ee:ed:c1:51:3c:10:1d:08:d8:73:f6:
c3:74:3a:ea:dd:cb:3f:a6:40:02:60:8d:bd:f6:05:80:ee:d9:
3d:a7:20:1b:de:39:e3:f0:75:2a:ca:22:60:96:a7:00:1a:a9:
90:3a:e7:f7:b5:37:22:ed:16:f7:82:08:dc:1e:b4:78:4c:24:
df:02:6f:ca:fb:9e:ff:89:d3:7f:c3:b5:af:64:e2:ce:b5:1b:
27:3d:83:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:31:17 2026 by rpki-client