Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
File: r5aNFt0rQdNStf0zxJs-xP2tQlg.mft (raw, json)
Hash identifier: Q0ohBK+qx0rRVjuyJJAipqTTx7RQgRYa7P4aUpjoaWo=
Subject key identifier: E3:E7:48:50:B0:41:B2:62:F8:D6:21:58:97:58:9D:0F:E8:24:86:71
Authority key identifier: AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
Certificate issuer: /CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Certificate serial: 019D284DFC17A56B6E6312E37C7EE8DEE921
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
Manifest number: 1197
Signing time: Thu 26 Mar 2026 04:01:32 +0000
Manifest this update: Thu 26 Mar 2026 04:01:32 +0000
Manifest next update: Fri 27 Mar 2026 04:01:32 +0000
Files and hashes: 1: r5aNFt0rQdNStf0zxJs-xP2tQlg.crl (hash: v/uHZ9U90qYRd496IXK98FGB1pdM94GxLXu8O7IlOpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:fc:17:a5:6b:6e:63:12:e3:7c:7e:e8:de:e9:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258
Validity
Not Before: Mar 26 04:01:32 2026 GMT
Not After : Mar 27 04:01:32 2026 GMT
Subject: CN=e3e74850b041b262f8d6215897589d0fe8248671
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:df:2c:9c:59:60:d6:ff:d7:04:00:d6:e6:a6:
f1:f8:cf:e6:92:56:7d:ea:25:b3:3b:81:df:29:27:
a5:c1:78:79:62:fa:ab:24:f4:0d:54:c6:c2:aa:60:
01:ee:7c:32:f3:9a:34:6b:be:72:73:5e:8a:24:9d:
1d:a1:07:c9:80:b6:4e:36:34:c6:ef:26:60:33:b3:
f2:79:74:da:db:f2:1c:67:d9:40:56:1d:ff:d4:df:
00:dd:64:2a:18:1e:37:f1:36:17:f9:6a:ea:82:0b:
bd:c8:12:37:cc:2e:9f:32:51:37:f2:01:ae:e1:74:
c2:48:51:b9:5d:61:e1:8c:48:71:46:8c:a7:70:ef:
5c:22:91:ca:ae:fb:7d:69:7f:ae:eb:70:73:45:0f:
bb:90:05:7d:e1:ca:a0:d1:03:99:17:0f:46:c8:54:
54:0f:f4:f5:62:e2:75:d3:3f:3d:32:73:74:4e:1d:
75:6a:bb:a4:f2:3f:14:17:f7:88:a8:43:c7:73:f7:
51:e4:95:8c:cf:a6:fe:0e:63:ef:5b:62:70:ac:cd:
a8:f3:6d:61:a5:6a:2f:5d:62:08:a1:58:66:5d:b6:
02:69:6d:a3:31:e4:51:b3:b3:71:ee:21:e1:6e:2f:
88:c2:0c:a4:ff:64:29:46:e6:06:49:10:83:64:93:
f3:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:E7:48:50:B0:41:B2:62:F8:D6:21:58:97:58:9D:0F:E8:24:86:71
X509v3 Authority Key Identifier:
keyid:AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:a3:3d:92:c4:16:61:3b:c7:60:67:22:fd:14:f1:7d:2e:be:
a0:11:d6:54:99:47:6f:f6:61:5f:e3:85:3c:fe:d3:0f:9a:82:
08:15:c5:9c:50:7d:72:64:7a:cd:a5:57:6f:dd:82:1a:ba:ef:
51:a8:46:70:d6:6c:cc:a8:15:fb:f5:f1:41:b4:2d:69:73:f2:
9f:f7:b7:69:ea:0e:0c:7e:4c:2c:06:38:89:09:14:3b:64:21:
a5:9c:03:56:ae:a8:cb:f8:f1:13:8d:f1:74:23:a0:9f:51:52:
ae:65:ae:87:58:44:49:39:08:9a:03:8b:95:74:c3:ae:fb:61:
56:17:3f:13:5f:88:a8:5e:bc:b0:ec:f9:c1:07:18:bd:66:a8:
00:43:33:fd:e7:84:ce:7d:4f:75:d2:ca:46:64:3a:05:13:37:
8d:98:3e:a6:8b:5a:52:73:b6:ba:70:0a:5d:fa:55:fb:21:4c:
d3:23:0a:cc:ae:a0:14:1b:8f:1e:7e:44:21:d3:da:b7:3d:6a:
bf:e5:fe:73:dd:0c:e8:e3:15:b9:55:a8:7c:5f:b2:97:42:d6:
d4:95:6c:8b:c1:d7:35:b7:61:22:bd:92:12:21:44:77:c8:2e:
24:f3:9a:f2:fe:68:f6:86:e5:f7:85:69:82:88:2b:a5:22:f4:
5b:fc:e4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:29:38 2026 by rpki-client