Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft
File: 1peKb6yHM4CG9TacW0AhsIBhHlc.mft (raw, json)
Hash identifier: JVSKfrI0preGf3r2ElfDs5ygSIJcqsgVXm2isGNi8Ls=
Subject key identifier: DE:05:C2:E0:D2:26:BB:01:AE:2E:8E:2C:BE:E9:3E:22:73:4C:DA:FB
Authority key identifier: D6:97:8A:6F:AC:87:33:80:86:F5:36:9C:5B:40:21:B0:80:61:1E:57
Certificate issuer: /CN=d6978a6fac87338086f5369c5b4021b080611e57
Certificate serial: 019D25BA10C3EED9737B6DCD109329CA756C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1peKb6yHM4CG9TacW0AhsIBhHlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft
Manifest number: 04BD
Signing time: Wed 25 Mar 2026 16:00:44 +0000
Manifest this update: Wed 25 Mar 2026 16:00:44 +0000
Manifest next update: Thu 26 Mar 2026 16:00:44 +0000
Files and hashes: 1: 1peKb6yHM4CG9TacW0AhsIBhHlc.crl (hash: f7efd8njlYcy6Mo/cmANX1zjqQLSGbgRGbxNa7bTG+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft
rsync://rpki.ripe.net/repository/DEFAULT/1peKb6yHM4CG9TacW0AhsIBhHlc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:10:c3:ee:d9:73:7b:6d:cd:10:93:29:ca:75:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6978a6fac87338086f5369c5b4021b080611e57
Validity
Not Before: Mar 25 16:00:44 2026 GMT
Not After : Mar 26 16:00:44 2026 GMT
Subject: CN=de05c2e0d226bb01ae2e8e2cbee93e22734cdafb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:2d:32:00:9d:f2:62:3e:74:71:41:39:3a:70:
5d:bd:51:f4:de:ea:17:ac:f8:39:42:19:43:06:c1:
b0:b6:9e:4a:d7:38:aa:9d:65:03:a3:7e:58:51:90:
f4:a6:c5:5f:bd:69:27:f5:2a:13:31:69:b5:c5:3e:
f1:c4:f9:65:fa:e6:48:11:90:42:72:71:77:97:a1:
7f:02:00:83:6e:96:66:ae:11:4f:db:4e:fe:de:5d:
5c:b0:f4:31:3b:ec:22:2e:c6:5e:87:37:ba:6d:13:
46:ec:6e:bb:13:2f:20:11:53:26:59:a2:f2:1b:34:
80:3a:0a:d0:c8:9b:2d:76:a2:4e:4e:32:49:b3:8f:
81:dd:88:e5:9b:b0:15:11:cf:24:97:bb:06:4b:c9:
8d:11:63:64:7e:ef:f1:ce:c3:5e:c3:36:7d:2c:a0:
ed:8d:15:61:3a:43:32:28:49:46:41:9b:4a:6f:82:
8b:b5:e6:5a:d3:02:5b:c8:6d:0b:6d:8e:ea:ca:16:
86:45:9f:7a:58:8a:11:a9:70:4e:09:c5:de:c3:e6:
b9:d9:a3:e2:5d:40:10:b3:76:0e:16:24:f8:19:93:
1b:dd:e9:55:d9:99:2b:07:c3:d1:f7:4c:82:a8:3d:
c7:91:47:16:9e:d3:d1:d4:81:e7:14:70:c1:30:e1:
33:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:05:C2:E0:D2:26:BB:01:AE:2E:8E:2C:BE:E9:3E:22:73:4C:DA:FB
X509v3 Authority Key Identifier:
keyid:D6:97:8A:6F:AC:87:33:80:86:F5:36:9C:5B:40:21:B0:80:61:1E:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1peKb6yHM4CG9TacW0AhsIBhHlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/870596-98ad-47b9-a788-43e70977a70e/1/1peKb6yHM4CG9TacW0AhsIBhHlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:79:62:0f:40:0c:57:1d:08:ec:43:47:ce:ca:01:2b:93:aa:
49:a1:3a:2c:d5:81:2a:df:e7:d5:bf:92:50:ad:89:a9:d7:ec:
50:76:14:d5:09:62:ff:d7:9d:06:59:dc:1d:8a:1c:43:3b:26:
c5:a2:dd:51:1a:37:75:9f:d3:36:66:80:64:18:09:c3:ff:95:
df:25:62:0e:df:41:14:53:34:bc:97:f5:06:f4:2d:1a:6d:fa:
73:02:10:86:4c:15:13:9c:ee:6e:eb:4f:1e:b2:d8:2a:3c:3b:
11:27:b3:ad:85:97:b2:59:ed:a2:b7:f3:76:a3:16:62:d2:1a:
b1:a1:68:eb:8b:fe:7f:55:ab:b0:c4:67:7c:5a:6f:81:eb:a7:
cc:87:5b:de:89:42:db:05:da:c8:d3:38:94:8d:0a:ba:34:3c:
3b:6a:bb:f5:40:00:c2:5c:c8:c0:4b:f0:fe:b8:ec:82:9f:35:
ee:9e:4e:1d:e3:45:a6:e1:4d:5d:9c:88:39:67:e6:ec:73:9a:
bd:fd:d2:cf:e9:ef:60:f5:9a:e7:3c:4e:0f:68:ff:55:ee:1f:
e1:26:cb:f4:63:44:15:01:06:bf:07:18:30:2e:45:43:5c:fe:
2f:85:7a:bc:98:1e:44:95:c0:4b:67:4c:84:32:38:e4:89:09:
9b:51:4e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:35:58 2026 by rpki-client