Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft
File: Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft (raw, json)
Hash identifier: brQ4jP4ijbxrnJqZtNDVMqcSikIqC48FOOApWtNJoW8=
Subject key identifier: 96:97:3A:37:B8:04:B9:C5:08:42:A1:42:D8:9D:79:89:F1:6C:B7:A7
Authority key identifier: 1F:3D:9D:D4:AA:1F:F2:EB:50:DA:0D:40:CA:EC:5B:FD:A6:8E:73:37
Certificate issuer: /CN=1f3d9dd4aa1ff2eb50da0d40caec5bfda68e7337
Certificate serial: 019D27A909DC6FB7EDAE36174F251FF4B8FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft
Manifest number: 01DE
Signing time: Thu 26 Mar 2026 01:01:22 +0000
Manifest this update: Thu 26 Mar 2026 01:01:22 +0000
Manifest next update: Fri 27 Mar 2026 01:01:22 +0000
Files and hashes: 1: Hz2d1Kof8utQ2g1Ayuxb_aaOczc.crl (hash: riLIVYZ35xB1gTsEEyny5jGScAdE0bw0y2K5T8iIjS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft
rsync://rpki.ripe.net/repository/DEFAULT/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:09:dc:6f:b7:ed:ae:36:17:4f:25:1f:f4:b8:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f3d9dd4aa1ff2eb50da0d40caec5bfda68e7337
Validity
Not Before: Mar 26 01:01:22 2026 GMT
Not After : Mar 27 01:01:22 2026 GMT
Subject: CN=96973a37b804b9c50842a142d89d7989f16cb7a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:e2:36:c5:03:7c:0c:a5:f3:56:18:e6:90:b3:
87:51:d8:51:7a:5d:84:0a:0d:10:aa:3b:50:c6:3d:
0f:08:65:49:9b:0a:1b:91:d9:f3:18:2f:70:e7:6b:
34:13:08:87:01:e9:55:1d:ec:4a:01:d1:1e:ea:0e:
d8:85:22:74:b7:fb:bc:e2:be:f8:92:fa:1a:2c:ee:
55:25:4d:ff:e6:d2:e8:2c:56:63:24:6b:d7:9a:f1:
df:5b:59:5e:bd:8b:6a:46:6a:5a:35:cc:f2:cf:c3:
3d:ce:c1:bc:0f:5a:b9:dd:13:5b:15:5b:53:48:82:
a7:b9:e9:3e:6b:b2:aa:46:38:de:3c:06:d9:69:cd:
26:d6:c2:96:37:05:b1:f4:b4:53:3f:75:01:39:d6:
ff:f8:4d:d0:02:7f:57:a5:0d:80:78:49:49:2e:8d:
9a:11:83:43:df:bd:35:2f:b6:0b:12:74:78:af:3c:
b0:13:f8:c6:bb:b5:63:2e:d1:55:33:b7:81:e2:c0:
d8:c5:d5:0c:96:cb:a1:59:d7:7f:8c:b9:bc:a2:27:
45:e9:c6:a7:96:41:ce:53:df:40:28:4b:b9:c1:49:
67:9d:83:29:ce:38:57:0e:19:bc:c4:50:24:aa:c6:
6a:2d:ef:c7:fb:6e:ba:ab:86:4f:c4:27:26:55:59:
e2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:97:3A:37:B8:04:B9:C5:08:42:A1:42:D8:9D:79:89:F1:6C:B7:A7
X509v3 Authority Key Identifier:
keyid:1F:3D:9D:D4:AA:1F:F2:EB:50:DA:0D:40:CA:EC:5B:FD:A6:8E:73:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/6f679e-62be-4e22-8b2c-24001919eade/1/Hz2d1Kof8utQ2g1Ayuxb_aaOczc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:47:c6:d5:90:45:96:77:3f:7c:23:93:da:4d:55:ad:7f:5e:
de:c4:5f:fd:95:95:ab:b0:4a:90:ef:80:7e:9d:56:44:95:83:
d5:89:73:b3:c8:f8:fe:39:16:be:5d:18:d9:76:38:b0:93:eb:
17:ee:46:04:2c:fc:ab:f9:f3:bd:78:ab:fa:c3:b4:d1:89:86:
54:b1:db:ed:a3:37:86:4b:45:f8:25:f5:84:43:23:ef:40:c0:
9f:04:ed:8d:7f:06:98:e8:ca:97:20:86:9e:3d:9c:4f:d6:31:
d4:49:41:88:c0:43:da:10:6b:4f:f0:f3:12:6d:39:f0:15:cc:
19:1c:38:54:49:b3:b0:a9:aa:87:19:f8:11:8f:4d:46:a9:24:
d7:e1:cb:7b:d2:43:28:8f:18:00:91:14:f3:08:30:70:6a:da:
54:12:00:f0:47:5d:2b:ae:03:f3:c5:3f:be:00:cc:f7:4c:6f:
7f:00:17:16:ca:ee:1f:29:50:3f:bd:71:f0:a4:65:12:5c:69:
a1:ec:8a:bd:30:34:f2:97:85:21:76:62:48:bb:35:56:e9:c2:
46:17:d3:90:8b:df:8f:ff:26:dd:5f:cc:f7:85:6d:bb:9f:98:
fb:0d:31:27:14:f9:2d:4a:7f:be:70:f3:dd:cc:9f:a4:e8:b6:
4c:74:c4:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:52:37 2026 by rpki-client