Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
File: 1T5Pyhar83QtTaK_nD2abpHpbuU.mft (raw, json)
Hash identifier: oOsKKaJBBGEHRTgUetlqjQ9fdBnvc5mBFinHlwyLygM=
Subject key identifier: D3:FB:6A:90:16:1A:9B:E0:AF:B4:CB:D1:3B:A5:07:66:CD:21:CE:0F
Authority key identifier: D5:3E:4F:CA:16:AB:F3:74:2D:4D:A2:BF:9C:3D:9A:6E:91:E9:6E:E5
Certificate issuer: /CN=d53e4fca16abf3742d4da2bf9c3d9a6e91e96ee5
Certificate serial: 019E1D2308F724CC5C3709606D0F6B33DC62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
Manifest number: 1618
Signing time: Tue 12 May 2026 17:01:35 +0000
Manifest this update: Tue 12 May 2026 17:01:35 +0000
Manifest next update: Wed 13 May 2026 17:01:35 +0000
Files and hashes: 1: 1T5Pyhar83QtTaK_nD2abpHpbuU.crl (hash: BuLCebKW5oC6ZRn9C/Dguq+x9jknUHg3sMO9njZwscI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:08:f7:24:cc:5c:37:09:60:6d:0f:6b:33:dc:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d53e4fca16abf3742d4da2bf9c3d9a6e91e96ee5
Validity
Not Before: May 12 17:01:35 2026 GMT
Not After : May 13 17:01:35 2026 GMT
Subject: CN=d3fb6a90161a9be0afb4cbd13ba50766cd21ce0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:7d:6b:c8:de:ce:b8:49:fb:af:3d:26:dc:ec:
7b:16:e4:2c:60:f5:5f:89:6c:3d:a2:33:0e:73:d7:
3d:95:3b:bb:8c:22:e5:6a:d7:e4:c8:2a:97:f9:8a:
79:7f:d6:75:c9:bf:fb:5f:6d:b0:81:b0:d3:b0:7e:
03:23:f7:45:e0:2c:90:60:fd:06:74:f1:28:65:38:
10:f0:06:f5:42:b3:0a:0e:de:4c:1e:df:55:d3:f5:
81:8c:9c:2a:5d:2c:b8:9b:76:dc:d7:a8:e2:46:49:
4e:e7:75:7d:f1:b6:16:9b:ab:07:2c:14:67:18:6c:
75:4e:6c:05:04:d9:ca:5e:10:6b:e9:d9:a6:09:e2:
3f:39:56:41:21:f3:ec:44:3d:43:38:84:10:9f:31:
6e:fa:69:ba:e1:27:a8:62:f3:37:1d:f1:8a:68:f7:
82:a0:ae:3c:98:39:e7:c5:c6:71:0d:1b:4c:be:d4:
ce:0c:d1:76:7f:69:75:22:2d:4b:07:09:04:7e:ea:
8d:1f:5a:00:ab:39:13:66:dd:d3:fb:b5:a9:37:5a:
ca:1d:77:8e:e5:cb:73:f5:12:9e:86:5d:7c:3a:6f:
7d:66:a0:5e:b9:3f:4d:ff:64:9f:ab:25:45:c0:b0:
ad:a5:6d:8d:f9:ac:86:ab:2c:46:b6:23:8a:25:7f:
9f:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:FB:6A:90:16:1A:9B:E0:AF:B4:CB:D1:3B:A5:07:66:CD:21:CE:0F
X509v3 Authority Key Identifier:
keyid:D5:3E:4F:CA:16:AB:F3:74:2D:4D:A2:BF:9C:3D:9A:6E:91:E9:6E:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1T5Pyhar83QtTaK_nD2abpHpbuU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/3df09b-61ed-4083-978b-263350dec194/1/1T5Pyhar83QtTaK_nD2abpHpbuU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:6c:a0:48:6a:c8:2f:2b:4f:f4:ec:4f:e4:a7:b4:ab:dc:43:
fa:5e:2c:8d:4f:ff:26:4f:af:e1:ed:bc:c2:74:7d:bc:27:ee:
f3:e8:1a:f2:ff:96:49:6c:a2:fb:ab:f4:35:bd:e3:df:50:df:
17:e7:67:b0:98:b3:70:4e:ea:a8:0e:e6:52:70:04:70:86:2a:
37:ff:78:d8:ab:04:2d:f2:56:45:27:c4:79:34:98:60:c7:ee:
63:c4:e9:27:de:74:3c:b7:62:4e:72:85:bf:20:71:fa:da:a5:
30:76:97:a2:fd:2f:ca:8d:b4:e3:f6:b5:3d:66:5e:aa:dc:93:
c8:d2:ee:ec:7b:85:05:af:59:89:d9:1d:71:ad:97:64:b4:91:
10:2f:82:28:54:0c:d2:af:50:3a:7e:c0:9f:4c:7a:c0:00:42:
74:4b:19:f4:0b:b1:80:11:ee:f2:ed:c1:ba:01:70:79:de:e9:
66:f0:33:05:26:aa:a5:ce:8a:d9:dc:99:25:c7:6c:7b:a2:67:
f0:88:ff:78:53:7d:a1:9b:43:aa:ea:13:cc:51:54:b7:d8:f1:
a1:98:d4:a7:05:e5:2c:63:6c:b6:9a:66:fe:bf:38:3b:49:71:
94:49:dc:7c:21:ec:3f:16:ac:7f:7e:89:4a:4f:7b:c3:6f:c5:
50:67:e6:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:18:02 2026 by rpki-client