Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
File: 41wFcLO3dz0eEYgufdLGJVN-sJw.mft (raw, json)
Hash identifier: ikrkkZs8WhsqBcgX8a4e7Ywe93L9MXVQBAkNIAA1LwM=
Subject key identifier: 8C:0C:79:48:34:31:06:E1:33:55:A7:39:A9:C1:0B:C2:53:CA:BC:00
Authority key identifier: E3:5C:05:70:B3:B7:77:3D:1E:11:88:2E:7D:D2:C6:25:53:7E:B0:9C
Certificate issuer: /CN=e35c0570b3b7773d1e11882e7dd2c625537eb09c
Certificate serial: 019E1C468D1148F327A3CFCAC40AFF873FB5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
Manifest number: 163D
Signing time: Tue 12 May 2026 13:00:46 +0000
Manifest this update: Tue 12 May 2026 13:00:46 +0000
Manifest next update: Wed 13 May 2026 13:00:46 +0000
Files and hashes: 1: 41wFcLO3dz0eEYgufdLGJVN-sJw.crl (hash: QtnGFGCu3hZQQEaSzz00GmyGjj7rH0mkGUj8JWF6g3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:46:8d:11:48:f3:27:a3:cf:ca:c4:0a:ff:87:3f:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e35c0570b3b7773d1e11882e7dd2c625537eb09c
Validity
Not Before: May 12 13:00:46 2026 GMT
Not After : May 13 13:00:46 2026 GMT
Subject: CN=8c0c7948343106e13355a739a9c10bc253cabc00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2a:e6:df:38:66:30:b3:e8:68:66:a1:d8:b9:
f6:9f:01:57:65:1f:00:86:29:dc:14:08:b3:6c:68:
ae:19:7c:4a:e4:19:18:8b:e4:5d:c3:9e:f1:2a:f7:
24:94:e4:41:38:2a:67:0d:ca:ac:f1:5c:de:56:6b:
80:49:54:11:22:2a:31:f4:8c:af:3a:d2:9b:09:6d:
29:2a:38:37:2b:f8:f9:06:fc:fa:dd:a5:8b:29:f8:
12:fa:49:7d:2e:40:ef:7d:98:7b:36:15:0d:53:73:
93:55:ff:04:31:a0:28:1c:f9:cd:24:dc:ad:a3:aa:
f0:93:ce:02:0e:98:b2:31:0d:5b:03:b9:81:a5:17:
8f:40:9f:19:97:8b:74:c4:90:14:ef:6b:24:c0:0f:
ae:be:5e:58:74:f7:4a:a3:91:5a:60:cc:1f:8e:59:
e8:f3:d4:e6:6e:77:06:4d:0e:84:d5:2a:35:bb:23:
af:52:8b:9b:88:ea:ff:c7:3f:00:67:9a:e2:c2:a7:
ca:fd:68:4b:80:65:06:47:08:6b:48:f0:01:86:c4:
e5:2f:09:a8:59:0f:9c:e4:f6:6c:f2:c6:de:e8:12:
32:95:de:ea:48:fd:01:3d:ad:65:4c:19:e4:3f:c4:
20:08:82:23:80:ad:6c:78:0c:03:e4:70:65:9c:46:
b5:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:0C:79:48:34:31:06:E1:33:55:A7:39:A9:C1:0B:C2:53:CA:BC:00
X509v3 Authority Key Identifier:
keyid:E3:5C:05:70:B3:B7:77:3D:1E:11:88:2E:7D:D2:C6:25:53:7E:B0:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/41wFcLO3dz0eEYgufdLGJVN-sJw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/c2f579-7501-4a5b-8dd7-f69128a91983/1/41wFcLO3dz0eEYgufdLGJVN-sJw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:ea:76:3e:b5:3d:3b:dc:ad:13:56:73:b7:38:12:95:b2:a8:
d2:ed:48:6c:8e:0c:37:44:a3:e8:8a:fc:d7:c1:d1:8d:4d:92:
9c:b8:67:39:7c:29:fa:9b:d3:2a:a9:a7:be:1d:d4:c9:6d:aa:
a6:1a:bf:f6:38:8b:09:ab:36:97:78:0d:04:80:d2:19:ef:34:
d1:64:b1:76:52:94:59:fe:05:9f:1d:87:9a:cc:53:73:d8:38:
7c:d4:3d:88:77:fa:13:83:2b:c6:87:d6:c1:4f:d7:5d:0e:12:
cd:20:d3:42:b9:ad:cf:9e:18:41:ba:cc:0b:a3:21:04:89:9b:
3d:40:35:b9:4b:a6:3e:50:fa:7b:f0:68:8c:ff:11:1b:35:fa:
d2:5d:53:fa:54:80:4c:15:2e:f1:cb:6d:0d:12:40:8b:ea:55:
ed:3a:05:77:46:cc:cd:4a:cb:d7:a5:4f:95:69:9c:0b:0b:60:
46:1b:8e:52:05:08:63:17:4e:77:c9:2d:7e:e0:2e:6e:cc:bd:
0e:b4:58:c3:d9:17:80:ac:38:46:68:7d:a4:81:26:1a:9e:e9:
f7:da:7e:e8:0c:1b:86:45:d9:9b:dd:00:90:9f:e7:0f:6a:be:
4c:24:0f:df:37:a9:04:19:56:d7:10:33:aa:7a:9c:32:74:46:
b6:93:0d:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:12:44 2026 by rpki-client