Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft
File: U1wJpqvN8dobR6tK8_-O_KWBRF0.mft (raw, json)
Hash identifier: ArHqUYKmzl8pnoP7GoXkgkr7jPP6pfyMObz1IrS+skI=
Subject key identifier: 91:82:A5:53:BF:08:D9:93:65:54:BA:8A:2C:E9:15:12:DA:E7:2D:6E
Authority key identifier: 53:5C:09:A6:AB:CD:F1:DA:1B:47:AB:4A:F3:FF:8E:FC:A5:81:44:5D
Certificate issuer: /CN=535c09a6abcdf1da1b47ab4af3ff8efca581445d
Certificate serial: 019D2703DB2B37D4E63E1D63667E5D3B90EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U1wJpqvN8dobR6tK8_-O_KWBRF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft
Manifest number: 07EA
Signing time: Wed 25 Mar 2026 22:00:57 +0000
Manifest this update: Wed 25 Mar 2026 22:00:57 +0000
Manifest next update: Thu 26 Mar 2026 22:00:57 +0000
Files and hashes: 1: U1wJpqvN8dobR6tK8_-O_KWBRF0.crl (hash: Q0zdsNlHbg0IGs97xHYwpJ+JCaETt2ulWF8ECphjFw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/U1wJpqvN8dobR6tK8_-O_KWBRF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:db:2b:37:d4:e6:3e:1d:63:66:7e:5d:3b:90:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=535c09a6abcdf1da1b47ab4af3ff8efca581445d
Validity
Not Before: Mar 25 22:00:57 2026 GMT
Not After : Mar 26 22:00:57 2026 GMT
Subject: CN=9182a553bf08d9936554ba8a2ce91512dae72d6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:e4:dd:8f:7f:eb:39:2b:86:12:c5:07:9e:7d:
a2:08:4b:36:de:0e:1d:7b:51:5f:d7:b6:c9:39:2e:
ae:e9:71:1d:7a:2f:5a:5a:3b:9a:03:ea:c8:56:de:
ad:f3:9d:77:74:80:d4:f4:15:7d:60:df:7f:4d:b5:
66:fb:cf:b6:be:74:65:e4:11:5b:1b:02:27:f8:3a:
ad:45:00:85:d5:5f:dc:80:7a:13:c4:40:96:0d:5d:
2e:0b:5d:bb:aa:d4:17:87:1a:34:84:33:64:ae:d3:
2a:50:9a:76:03:3f:5f:bb:eb:12:23:2d:27:4b:84:
b8:d4:20:a4:da:b3:85:db:e0:9c:1d:d1:69:67:f1:
45:e5:21:b8:4a:95:32:a0:22:24:69:bd:44:74:30:
f0:9b:4b:a6:57:dd:87:fa:e1:07:ca:cc:47:02:06:
b2:d5:62:c0:57:2d:de:91:ca:b9:27:d8:fc:64:51:
dd:20:ad:4d:89:64:42:e7:f0:8f:a4:f0:05:6c:b5:
ed:5f:6d:76:f1:53:cc:22:25:8d:01:42:f7:34:e7:
d3:29:41:d4:f0:cb:6f:74:8d:c5:e6:31:1e:84:d5:
76:ef:96:91:18:6c:bd:3f:97:ba:c5:ef:c8:04:5e:
38:61:7d:ef:0e:67:c4:44:dd:1b:f5:f1:5a:d7:1b:
00:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:82:A5:53:BF:08:D9:93:65:54:BA:8A:2C:E9:15:12:DA:E7:2D:6E
X509v3 Authority Key Identifier:
keyid:53:5C:09:A6:AB:CD:F1:DA:1B:47:AB:4A:F3:FF:8E:FC:A5:81:44:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U1wJpqvN8dobR6tK8_-O_KWBRF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/63622f-b464-407d-bcfd-c9491b4dfd76/1/U1wJpqvN8dobR6tK8_-O_KWBRF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:b5:0f:18:59:5d:53:ed:02:bb:01:09:39:64:6e:4f:bd:45:
5e:ba:09:08:11:11:15:56:42:33:2d:5b:11:aa:88:12:6f:e7:
0a:e4:b2:68:8e:25:72:00:07:51:54:36:42:82:96:ab:dc:b1:
0f:52:0b:0c:7a:05:7a:27:dd:05:bf:02:49:51:7e:fa:0c:12:
07:f9:f0:7e:46:45:e8:6b:ea:df:b2:15:09:83:10:d0:a9:10:
09:53:bd:ff:79:60:de:12:54:c8:ad:25:58:c9:e5:45:4f:10:
9d:8f:ce:5e:23:8c:df:ff:c9:64:51:cf:2c:9c:19:05:8a:2f:
de:82:d2:87:c6:09:bb:fc:28:da:19:40:c3:17:a4:11:e5:58:
d4:c8:04:fe:bd:e5:62:97:a6:ed:c0:3d:dc:d8:1c:d5:61:74:
72:5b:b7:37:14:a5:75:fd:91:3c:06:3c:16:39:55:d8:25:14:
aa:9e:5e:ed:a3:18:8b:e1:e4:83:f4:ee:e6:a9:71:84:c2:7b:
72:d9:4f:5d:08:7b:84:eb:04:85:70:6f:54:c0:87:55:65:d5:
4e:2f:94:50:05:83:5b:07:ea:d2:ed:b4:2d:82:bb:84:2d:64:
e0:f9:93:e6:23:f3:1f:e1:18:15:a3:5a:44:79:5f:49:6f:99:
47:1e:56:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:54:34 2026 by rpki-client