Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
File: 41wFcLO3dz0eEYgufdLGJVN-sJw.mft (raw, json)
Hash identifier: XowpahSnMS0eG+az/mdlZr/eYp9WMmpqVD99fr6ANHU=
Subject key identifier: 7B:91:C5:57:5E:F1:36:06:5C:C1:2E:85:26:67:FD:86:88:0C:95:47
Authority key identifier: E3:5C:05:70:B3:B7:77:3D:1E:11:88:2E:7D:D2:C6:25:53:7E:B0:9C
Certificate issuer: /CN=e35c0570b3b7773d1e11882e7dd2c625537eb09c
Certificate serial: 019D270478C848E22DD6297FDC54A00F294A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
Manifest number: 15BE
Signing time: Wed 25 Mar 2026 22:01:37 +0000
Manifest this update: Wed 25 Mar 2026 22:01:37 +0000
Manifest next update: Thu 26 Mar 2026 22:01:37 +0000
Files and hashes: 1: 41wFcLO3dz0eEYgufdLGJVN-sJw.crl (hash: OpLXBgVr9UiMnPcpX2DgjVhPhF4hoXoVxF6wdo0ZRzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:78:c8:48:e2:2d:d6:29:7f:dc:54:a0:0f:29:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e35c0570b3b7773d1e11882e7dd2c625537eb09c
Validity
Not Before: Mar 25 22:01:37 2026 GMT
Not After : Mar 26 22:01:37 2026 GMT
Subject: CN=7b91c5575ef136065cc12e852667fd86880c9547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:26:b5:42:b7:f2:46:90:39:65:20:7c:40:e2:
2b:c2:fd:4f:a1:04:b9:86:5d:b6:8b:f2:84:15:1e:
cc:dc:04:6e:45:a9:74:16:5a:01:e7:c8:14:73:f9:
fa:b5:9c:a5:44:d3:1a:bb:dd:e7:2e:e4:bf:01:e3:
2f:97:a9:5a:10:03:2d:97:dc:cb:d4:03:ba:99:b0:
98:63:69:4d:36:50:c8:16:6b:b9:f0:f0:ad:84:71:
4a:e1:f2:5c:33:d8:30:62:8c:df:cf:39:cb:21:bc:
bf:87:7e:9b:5b:8c:c0:19:66:81:e6:36:25:e2:f8:
18:69:78:b3:9a:ac:d2:d7:ff:2e:50:60:6e:16:fc:
24:20:b7:58:1e:89:e4:39:91:4a:22:fd:63:5f:a3:
be:78:78:61:fe:36:44:43:81:2b:e1:4f:6b:0e:dd:
47:60:e8:c4:4d:9c:92:9f:58:52:dd:c2:9f:5f:2d:
13:2b:11:a9:fb:5f:be:42:c8:a4:12:8d:22:97:d0:
2f:51:2e:83:c4:a0:b0:5a:e4:33:d8:eb:b4:a6:96:
4b:c4:31:72:35:9d:fe:37:78:0a:4d:e6:04:4a:47:
84:36:76:51:ed:50:62:84:98:13:ef:81:81:40:1a:
91:05:8f:a5:b4:db:8d:37:d8:95:2f:11:90:85:bd:
ff:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:91:C5:57:5E:F1:36:06:5C:C1:2E:85:26:67:FD:86:88:0C:95:47
X509v3 Authority Key Identifier:
keyid:E3:5C:05:70:B3:B7:77:3D:1E:11:88:2E:7D:D2:C6:25:53:7E:B0:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:1b:f4:d5:5a:32:da:37:65:b9:ff:5d:03:4a:cc:07:e0:44:
d6:9d:ab:ad:9f:c0:dd:d5:54:3f:1e:d8:8a:c3:57:c1:8e:aa:
2a:b7:35:88:cd:3c:5c:c5:db:40:8c:5d:7f:ad:48:a6:c3:e1:
b2:e6:ac:53:04:bb:9b:fd:d3:38:55:93:2d:ef:47:bd:73:14:
54:0a:32:8a:d6:19:67:b8:3e:9e:72:ac:be:40:e6:00:ec:ec:
db:fe:ae:53:c1:cc:85:34:95:2d:0c:0a:83:e7:10:df:4e:5e:
41:c2:66:29:2f:b1:5d:a2:90:e6:ce:90:73:ee:a8:21:37:5c:
2b:19:60:c4:e7:9c:31:41:35:17:7e:c2:6d:b3:21:33:65:72:
c0:ac:29:36:19:c8:06:d5:1c:d0:cf:40:7e:fd:5e:be:3c:35:
02:7d:bb:d0:27:7b:7d:da:2d:91:33:b7:f4:18:a5:8b:12:e4:
93:cc:51:54:f2:b1:1e:f2:e3:c8:37:4e:2f:51:5a:47:8b:ab:
4a:94:59:8c:17:9c:3f:2c:fc:f9:8c:69:ad:29:83:d5:26:c5:
6b:a6:75:e9:7e:1b:d6:5a:ed:5a:09:5a:30:cc:96:68:fe:4e:
13:dd:25:4e:a2:11:cb:49:74:89:51:6f:f1:82:51:1d:f1:a2:
c0:3c:99:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:21:33 2026 by rpki-client