Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e85418-64b3-444b-913a-63c2ba4c996c/1/t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.mft
File: t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.mft (raw, json)
Hash identifier: zLOU7crUBTSJjZEN5FKWsCL1m9CoLmD2B8xbM+SnRo4=
Subject key identifier: 34:D3:60:5F:D4:6F:2E:B0:D0:E1:98:92:04:AC:8D:2B:E7:43:41:1C
Authority key identifier: B7:85:EC:73:DC:18:1F:99:35:65:9F:58:AE:D2:08:53:2A:2C:2A:6A
Certificate issuer: /CN=b785ec73dc181f9935659f58aed208532a2c2a6a
Certificate serial: 019D2703AFDB1279F763F6D5C4947FAEC71F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e85418-64b3-444b-913a-63c2ba4c996c/1/t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.mft
Manifest number: 0412
Signing time: Wed 25 Mar 2026 22:00:46 +0000
Manifest this update: Wed 25 Mar 2026 22:00:46 +0000
Manifest next update: Thu 26 Mar 2026 22:00:46 +0000
Files and hashes: 1: t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.crl (hash: CbAWER3eFm4O7BvCUwlYpPRxLW7lGjnzAyfRMrdl7wE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/e85418-64b3-444b-913a-63c2ba4c996c/1/t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/e85418-64b3-444b-913a-63c2ba4c996c/1/t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.mft
rsync://rpki.ripe.net/repository/DEFAULT/t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:af:db:12:79:f7:63:f6:d5:c4:94:7f:ae:c7:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b785ec73dc181f9935659f58aed208532a2c2a6a
Validity
Not Before: Mar 25 22:00:46 2026 GMT
Not After : Mar 26 22:00:46 2026 GMT
Subject: CN=34d3605fd46f2eb0d0e1989204ac8d2be743411c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a4:c9:0e:94:8f:bf:21:d7:64:a9:fd:63:6d:
cf:74:a7:ad:c5:f4:3c:6c:3d:c2:1a:06:09:e2:a6:
ae:a8:f8:3b:9b:5d:5d:a0:07:0b:3a:93:2e:b5:f7:
9f:9f:6d:e8:0a:f3:46:0b:35:71:b0:76:65:fc:7e:
de:f2:4b:34:c2:4d:4e:b7:b4:f4:28:36:5c:4a:fa:
34:9a:98:1a:9a:95:00:66:42:61:10:dd:1a:52:b6:
a4:61:d5:16:58:25:0a:44:d0:cc:24:49:c6:25:8f:
fe:4b:22:9f:4a:2f:67:59:6a:b2:2b:2a:95:dc:b4:
d9:e5:c8:ad:2d:07:f7:12:51:1d:bf:e8:b3:10:47:
05:80:40:55:8f:81:e9:4e:4e:0d:db:19:ac:0d:db:
65:54:28:dd:51:3e:a7:82:f2:d9:64:bc:fa:af:04:
b6:d0:60:30:e2:39:22:19:57:c9:2f:96:66:16:0f:
b5:9c:c8:4f:26:f2:ce:6c:21:19:3d:15:74:9c:f9:
ab:73:d7:a1:99:05:33:57:60:23:19:c0:75:cc:ac:
8b:f6:95:c5:86:c1:60:15:5c:19:66:18:5b:35:21:
17:81:27:c3:54:0a:e3:06:64:6f:2c:d4:f8:a7:ae:
c0:ff:b9:2c:a7:fb:79:2c:e6:1d:87:0f:e4:ee:db:
e3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D3:60:5F:D4:6F:2E:B0:D0:E1:98:92:04:AC:8D:2B:E7:43:41:1C
X509v3 Authority Key Identifier:
keyid:B7:85:EC:73:DC:18:1F:99:35:65:9F:58:AE:D2:08:53:2A:2C:2A:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e85418-64b3-444b-913a-63c2ba4c996c/1/t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e85418-64b3-444b-913a-63c2ba4c996c/1/t4Xsc9wYH5k1ZZ9YrtIIUyosKmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:a7:2e:3b:c1:95:49:4d:04:93:21:de:9f:d3:5e:f4:83:9c:
46:3b:33:61:ea:66:38:ad:e9:aa:de:8e:e7:8f:6d:27:13:26:
25:11:be:01:5b:b3:cd:4b:98:48:82:47:34:30:59:77:87:d3:
fd:79:08:31:b8:15:28:ef:32:9e:c9:f8:b9:4a:62:16:2b:e2:
55:9b:67:61:4a:87:cd:3a:17:1b:d9:a8:f7:80:7c:75:fe:fe:
e6:7e:d9:62:01:b8:4e:91:a0:45:49:94:fd:62:0c:0d:ca:21:
c7:b9:2b:c7:59:14:ff:4d:a2:eb:dc:8f:cc:c0:3f:48:94:8a:
2c:29:8b:79:23:d5:d3:97:2b:6a:28:ae:20:a8:95:64:bc:a1:
67:fd:50:db:0f:b7:23:5a:f7:9a:b1:5e:62:1c:16:10:82:b2:
8a:66:92:83:c1:77:cd:3c:d1:95:68:16:29:bc:af:89:0f:8b:
f0:ac:3c:9e:64:2e:f9:24:f3:20:83:27:59:24:0e:4d:03:98:
32:5e:8a:55:64:21:c9:77:23:66:18:3a:49:3c:99:83:4b:3e:
35:f2:17:33:fb:d9:8f:2f:50:8b:e2:b9:37:a1:15:b0:36:6c:
87:69:2b:39:c4:c1:f9:1f:d4:04:82:da:fe:ed:25:8d:13:ae:
a0:d5:67:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:03:54 2026 by rpki-client