Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
File: T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft (raw, json)
Hash identifier: murlSdU3mQdNBDJlvLL6/QPvV5OfCoF6DUoRFBjurQM=
Subject key identifier: B9:7A:AB:FF:D6:B5:64:B8:4E:8D:B6:A5:9C:76:B0:85:ED:18:7B:B5
Authority key identifier: 4F:A8:93:E3:3A:82:1F:F6:6D:38:F0:EB:CE:49:91:1F:3A:5F:96:4E
Certificate issuer: /CN=4fa893e33a821ff66d38f0ebce49911f3a5f964e
Certificate serial: 019D25F14B3BB656F5826B80BFF24DE52C31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
Manifest number: 096A
Signing time: Wed 25 Mar 2026 17:01:03 +0000
Manifest this update: Wed 25 Mar 2026 17:01:03 +0000
Manifest next update: Thu 26 Mar 2026 17:01:03 +0000
Files and hashes: 1: T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl (hash: 8x6a6oupxwO+br2Oqh+wHsQ+jcUDhNEnWa1mJsel4S4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:4b:3b:b6:56:f5:82:6b:80:bf:f2:4d:e5:2c:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fa893e33a821ff66d38f0ebce49911f3a5f964e
Validity
Not Before: Mar 25 17:01:03 2026 GMT
Not After : Mar 26 17:01:03 2026 GMT
Subject: CN=b97aabffd6b564b84e8db6a59c76b085ed187bb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:17:ab:5b:31:33:7a:8f:62:b4:17:fa:bc:ec:
78:a8:80:f3:19:09:9b:52:cf:01:89:81:0b:a9:ef:
af:bc:a2:c1:77:92:b0:72:f2:d3:56:d4:2f:52:80:
af:01:81:12:21:8d:29:ac:d2:f4:b4:a6:e9:84:ec:
26:50:97:fd:dd:8a:e3:cf:da:01:0d:7b:e6:fc:87:
7e:b3:fd:32:40:9b:aa:9e:b8:4c:4e:42:59:a2:b5:
b6:d9:ec:87:a1:67:dd:3a:96:27:36:3a:2a:37:c7:
ab:80:e4:45:5f:1f:23:57:ef:61:1d:c7:7e:26:ca:
d5:e4:64:8d:6e:13:58:ef:78:cf:02:42:4f:69:f9:
25:74:32:93:0a:09:6e:84:2f:d7:e9:9a:92:26:f5:
9d:77:81:7f:21:96:d2:0c:99:ff:22:20:09:bd:c6:
58:47:7c:df:db:c4:44:ad:1e:1c:45:6f:66:26:ae:
49:28:38:6f:f6:af:18:c3:66:aa:5e:c5:a9:9b:5b:
7a:08:78:08:b3:ac:a2:3e:11:bd:bb:9b:88:69:c5:
5f:00:5c:c5:3a:3c:6c:75:73:e7:6e:2a:cd:09:da:
cc:58:9a:44:dd:39:59:cf:1b:3d:87:c5:3f:3b:9d:
8c:22:9a:02:34:57:fe:42:fb:46:65:4a:dc:1a:21:
8f:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7A:AB:FF:D6:B5:64:B8:4E:8D:B6:A5:9C:76:B0:85:ED:18:7B:B5
X509v3 Authority Key Identifier:
keyid:4F:A8:93:E3:3A:82:1F:F6:6D:38:F0:EB:CE:49:91:1F:3A:5F:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T6iT4zqCH_ZtOPDrzkmRHzpflk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/b85caf-f20e-4b67-98a0-ff7f48f93f01/1/T6iT4zqCH_ZtOPDrzkmRHzpflk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:fe:1c:04:bd:e8:43:6b:02:58:f8:11:5a:5e:e9:ef:f2:c0:
d2:d7:bc:9a:dc:33:8f:61:3b:4a:15:fd:a3:26:b1:cc:cb:74:
e4:3d:a4:75:41:b5:b4:11:1a:e9:76:ad:bf:37:a5:ba:90:63:
52:6c:6a:a5:33:55:73:59:fa:95:e7:27:b3:f3:ee:12:93:86:
3f:72:43:79:bc:7b:b4:62:74:bd:08:4a:4a:c8:e2:8c:bb:75:
a1:99:20:fb:02:e3:71:2e:90:42:c4:e1:8d:ae:7d:78:ad:0e:
6e:05:71:4e:c1:0e:48:e6:57:e9:ea:04:00:b6:9b:54:fb:8f:
7a:8f:a9:89:3c:ce:d4:78:f3:3d:0d:29:f2:2f:60:88:0c:bf:
9e:49:84:9b:03:71:5d:69:bc:8d:d8:12:88:53:99:1d:cb:af:
db:c3:08:d4:cb:e1:f9:24:50:93:92:4a:06:14:54:2c:da:53:
22:20:a0:15:a0:4d:cc:fc:d7:a9:84:5a:e2:b5:80:e9:59:8e:
83:5c:e1:27:4c:9c:52:b7:4e:f5:34:97:75:55:cd:27:54:1b:
6e:cd:2a:06:85:8f:89:8e:cf:62:73:cf:e1:f7:cd:72:49:b8:
eb:52:e2:84:89:4c:9a:aa:4f:46:a7:88:3b:d3:b4:73:d1:4d:
41:dd:c3:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:45:18 2026 by rpki-client