Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
File: rARWSrE5dm8d7mSLNaChi702IQk.mft (raw, json)
Hash identifier: 2dtZKxJSJmKKb9QvwUNx7ebr9Ttvt+Wdbqi0vZvjzGo=
Subject key identifier: 14:1F:50:4B:15:21:32:41:08:8E:35:F4:00:A5:0A:8F:35:0B:CA:04
Authority key identifier: AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
Certificate issuer: /CN=ac04564ab139766f1dee648b35a0a18bbd362109
Certificate serial: 019D273B2A2CADFA919DD92E2E689E4CF5A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
Manifest number: 1883
Signing time: Wed 25 Mar 2026 23:01:21 +0000
Manifest this update: Wed 25 Mar 2026 23:01:21 +0000
Manifest next update: Thu 26 Mar 2026 23:01:21 +0000
Files and hashes: 1: rARWSrE5dm8d7mSLNaChi702IQk.crl (hash: kpnZrpGmeFGtx+feQSupYk8GsltaT+vPJmV8LFTw3fk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:2a:2c:ad:fa:91:9d:d9:2e:2e:68:9e:4c:f5:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac04564ab139766f1dee648b35a0a18bbd362109
Validity
Not Before: Mar 25 23:01:21 2026 GMT
Not After : Mar 26 23:01:21 2026 GMT
Subject: CN=141f504b15213241088e35f400a50a8f350bca04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d7:03:bb:66:b3:45:73:0e:a0:36:ce:2d:9f:
d9:9e:e6:d7:b5:26:6e:18:f6:4b:b6:2a:de:d1:ff:
f6:29:76:9e:46:65:7f:20:8d:60:3b:e4:6c:be:5c:
21:65:f4:1a:99:fd:df:78:02:c5:b9:fe:59:7a:3e:
4d:b2:b2:1f:a0:b4:35:0f:e5:4e:f6:f0:47:b6:7c:
de:6a:56:a0:8b:07:22:e3:79:28:32:a3:67:34:25:
89:25:8f:38:52:08:fb:34:2c:d0:ab:9c:fb:9f:cf:
06:13:c2:59:a6:b1:44:42:25:26:26:74:6c:f9:0a:
14:38:25:0a:97:aa:f5:83:57:65:e8:40:8d:2c:5a:
00:01:a7:f9:96:d4:4c:de:f3:f5:62:e7:69:57:25:
eb:65:7a:a4:e8:57:ec:d6:fb:b4:cb:ee:9c:bf:3d:
5d:6c:3a:73:81:e2:0f:b7:9f:8d:56:5f:7e:03:35:
d1:76:e3:bc:c6:de:a1:1f:94:2e:4d:9b:04:08:b5:
f7:5f:45:e7:de:70:93:c4:a6:49:95:97:38:2c:b1:
25:44:93:22:db:13:f9:5f:03:63:a5:b0:71:67:7a:
47:f8:f7:bb:3d:04:22:a8:9b:86:bb:ba:32:e9:5b:
f5:da:a9:5c:0a:54:8f:bd:6b:68:e5:43:42:a5:78:
04:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:1F:50:4B:15:21:32:41:08:8E:35:F4:00:A5:0A:8F:35:0B:CA:04
X509v3 Authority Key Identifier:
keyid:AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:e0:1c:f6:53:28:74:46:74:cc:9b:22:82:66:d0:74:ae:c6:
93:77:aa:1f:9f:33:18:02:3f:60:cf:a6:d5:e0:3f:40:0f:83:
04:74:17:41:7e:cd:38:e8:90:ba:0a:5c:b5:e7:0f:ec:1f:08:
87:18:69:5f:0f:a2:d0:87:a3:eb:46:aa:3b:ef:d8:6d:e5:0c:
ff:0a:0d:d6:cc:9a:ae:87:a6:44:fb:b0:11:a4:be:b6:7c:b3:
04:67:c0:1d:d1:8d:7f:a8:e4:4b:a3:47:28:c1:ac:3d:f2:ba:
51:ba:57:9e:ce:ee:b3:29:1b:32:92:9b:83:df:ce:e6:c8:16:
d5:1f:84:4d:4d:d6:f2:74:0b:72:fc:71:52:63:7a:af:ee:25:
d8:96:4f:d0:14:cf:e2:b4:97:6f:50:ea:6c:db:73:f3:4c:33:
ca:6f:55:4a:ee:37:26:0c:36:b5:ca:e5:12:06:34:45:45:56:
f9:73:da:a4:6c:c3:f8:01:ca:9c:91:68:2b:35:cf:ce:0a:56:
fa:af:42:70:91:1d:5c:c3:fa:09:3e:b0:95:eb:82:f5:66:10:
41:35:73:09:0d:4a:5c:12:c0:ab:c9:dc:b8:04:b2:b2:bd:54:
1c:7a:74:94:94:14:6b:95:ee:46:b6:8f:61:9c:3f:fa:ea:b0:
d6:53:29:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:38 2026 by rpki-client