Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
File: MfxYQJK_niCslRtZUN1PpxMgPMM.mft (raw, json)
Hash identifier: oFSa92OL2+60woiFEKVV1mnJ6gCmk8HbTR6SEBp4Ggo=
Subject key identifier: 36:22:7F:41:2C:0F:DB:B6:D2:F7:DA:68:10:76:71:25:FA:7D:43:6C
Authority key identifier: 31:FC:58:40:92:BF:9E:20:AC:95:1B:59:50:DD:4F:A7:13:20:3C:C3
Certificate issuer: /CN=31fc584092bf9e20ac951b5950dd4fa713203cc3
Certificate serial: 019D28F25CAAAE719B0FCFCCEB0F746925A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
Manifest number: 12A5
Signing time: Thu 26 Mar 2026 07:01:05 +0000
Manifest this update: Thu 26 Mar 2026 07:01:05 +0000
Manifest next update: Fri 27 Mar 2026 07:01:05 +0000
Files and hashes: 1: MfxYQJK_niCslRtZUN1PpxMgPMM.crl (hash: OAsU6DNWFuwpMQAICAJ2kr+q+3SozXVdBQ12ozrs0b0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:5c:aa:ae:71:9b:0f:cf:cc:eb:0f:74:69:25:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31fc584092bf9e20ac951b5950dd4fa713203cc3
Validity
Not Before: Mar 26 07:01:05 2026 GMT
Not After : Mar 27 07:01:05 2026 GMT
Subject: CN=36227f412c0fdbb6d2f7da6810767125fa7d436c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:4d:6e:b8:88:62:90:56:f7:6e:74:62:92:53:
e9:01:84:ce:85:08:88:22:d5:4a:63:83:92:31:8c:
13:4b:b9:2f:a6:7c:8c:11:bf:8a:06:ad:88:3a:46:
ac:ff:95:d2:9b:38:02:8b:0b:2d:50:49:d7:4c:76:
9e:b8:bf:1c:59:3f:2a:3f:6d:66:1e:e7:dc:1c:35:
49:cd:3b:e5:28:77:3d:03:ff:2c:f7:ec:e2:d6:5f:
02:5d:44:7a:0e:b4:16:17:31:df:ec:c8:14:dd:38:
97:a4:2c:60:76:45:54:44:ad:dd:bd:00:85:4c:8a:
ad:4b:be:ee:e6:6d:a2:a8:16:70:0d:16:62:4a:13:
41:1f:45:98:de:b3:67:d0:f3:78:65:6d:cf:e6:f5:
3e:16:e6:3b:ad:b1:b6:10:0c:f1:4d:3b:23:0c:b3:
40:ce:56:8f:8d:15:2a:ab:ee:e0:63:8d:74:ce:52:
61:0d:6a:f2:bd:b9:92:2d:9e:4c:ff:d4:7c:7b:d6:
21:22:bd:69:73:53:d8:bb:43:fe:7f:56:77:62:dd:
ce:6e:9a:40:ea:fa:c3:85:07:3d:6c:18:52:e5:ef:
fc:c1:15:fa:7a:fe:cb:25:8f:f1:b8:4d:11:1e:b0:
d9:b8:23:67:bd:85:9b:2d:86:0f:ea:c5:63:17:77:
2f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:22:7F:41:2C:0F:DB:B6:D2:F7:DA:68:10:76:71:25:FA:7D:43:6C
X509v3 Authority Key Identifier:
keyid:31:FC:58:40:92:BF:9E:20:AC:95:1B:59:50:DD:4F:A7:13:20:3C:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MfxYQJK_niCslRtZUN1PpxMgPMM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/a96094-db94-4546-a424-8908f0ab185b/1/MfxYQJK_niCslRtZUN1PpxMgPMM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:c4:c7:85:d8:f1:b6:bc:80:3f:50:c6:69:34:a5:86:4d:26:
60:65:58:f0:c0:c4:65:7b:01:e3:31:22:8f:23:52:0d:d0:8b:
d8:e1:7b:3c:d1:c7:4b:b7:51:0c:ea:26:ef:19:2a:fb:9b:dd:
b9:9e:14:c8:b5:0a:6c:b6:c5:59:d8:1d:33:fd:d5:c8:08:6b:
0e:0f:bb:c2:97:54:da:be:e9:3b:65:b7:28:89:76:84:dc:62:
75:dc:65:64:fc:36:3c:9e:f1:bf:9e:8c:ca:ba:80:77:aa:06:
82:b5:13:9d:da:33:dd:d4:c1:2a:76:ba:41:9b:58:93:b4:a5:
f3:e3:32:c5:e3:10:07:b0:cb:23:ae:80:67:df:82:09:bc:84:
78:65:10:0c:d7:c5:0b:1a:e6:a5:00:6e:dd:f0:92:3b:2b:e3:
00:c4:9b:83:73:db:70:dd:85:0a:db:d6:16:c8:e5:51:f8:69:
85:d9:ae:31:45:7b:7d:03:eb:fb:48:a8:76:a5:3a:5c:db:3e:
1c:3d:6d:0c:9c:d3:a5:29:c4:c4:c7:a2:81:f8:13:ce:02:5d:
a8:10:1a:58:50:7b:3d:11:b3:86:83:dd:36:e7:a8:94:33:3f:
5b:68:eb:8b:06:15:1c:23:3e:77:83:d1:4d:43:e8:d1:df:ce:
ec:b0:fc:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:53:50 2026 by rpki-client