Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft
File: 6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft (raw, json)
Hash identifier: VPsk/oc7QUMTqxfqkGxsOdRZXx0KVSWf6wNKwwmhJH4=
Subject key identifier: B4:76:B6:D1:FB:19:95:50:08:5A:DD:0C:FE:7F:62:5F:11:61:25:AA
Authority key identifier: E9:72:A6:C2:EB:EA:46:41:30:72:F9:0D:D5:26:D7:8F:11:02:F4:F2
Certificate issuer: /CN=e972a6c2ebea46413072f90dd526d78f1102f4f2
Certificate serial: 019E1F11B9764A1C172FB21C64689D2F651E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XKmwuvqRkEwcvkN1SbXjxEC9PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft
Manifest number: 09C5
Signing time: Wed 13 May 2026 02:01:55 +0000
Manifest this update: Wed 13 May 2026 02:01:55 +0000
Manifest next update: Thu 14 May 2026 02:01:55 +0000
Files and hashes: 1: 6XKmwuvqRkEwcvkN1SbXjxEC9PI.crl (hash: QSZMWVnpat7ntb6HlWJrHUV44oi5vCcMTJeihA9r8Ao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft
rsync://rpki.ripe.net/repository/DEFAULT/6XKmwuvqRkEwcvkN1SbXjxEC9PI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:b9:76:4a:1c:17:2f:b2:1c:64:68:9d:2f:65:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e972a6c2ebea46413072f90dd526d78f1102f4f2
Validity
Not Before: May 13 02:01:55 2026 GMT
Not After : May 14 02:01:55 2026 GMT
Subject: CN=b476b6d1fb199550085add0cfe7f625f116125aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3f:03:c6:79:d9:6a:25:e8:82:45:9a:b6:cd:
8b:0e:7b:6c:05:be:9c:8e:2c:36:30:c0:b7:cd:a3:
62:54:19:de:5c:00:cc:ca:49:7d:9d:5f:eb:9e:d7:
56:4f:26:6d:bc:bd:36:ab:60:0a:ed:dc:0e:d5:bb:
1c:52:00:d8:05:62:a2:85:91:21:62:26:a5:95:68:
0f:35:8c:48:69:ff:84:ce:26:b9:5a:4f:44:7a:56:
5e:69:e8:04:62:20:80:61:9b:6d:e4:90:3c:2d:bc:
5f:b8:f4:83:78:cb:b6:66:58:4e:56:da:d0:5b:0b:
36:54:b8:bf:e0:12:3e:ac:c4:db:45:4f:78:e0:b5:
31:c1:6d:f3:f5:8e:87:9c:d1:f4:38:f6:e3:ea:db:
bc:18:70:24:a3:75:d8:a3:a8:75:4e:f5:56:c5:6a:
4e:dc:c9:ed:3f:06:ce:d7:a8:1d:99:dc:5e:a2:f3:
19:b4:c5:e7:52:83:a9:5a:22:c5:af:f5:8a:a0:fb:
33:3d:ab:30:83:b6:d5:5a:fd:21:b7:ea:b5:b2:23:
34:d8:bf:25:61:b9:19:04:97:ea:15:d0:c1:91:02:
6a:c5:69:46:a4:ae:71:0b:57:53:36:08:04:2e:48:
60:93:68:34:99:14:ff:28:54:fb:70:9e:75:bf:5a:
a5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:76:B6:D1:FB:19:95:50:08:5A:DD:0C:FE:7F:62:5F:11:61:25:AA
X509v3 Authority Key Identifier:
keyid:E9:72:A6:C2:EB:EA:46:41:30:72:F9:0D:D5:26:D7:8F:11:02:F4:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XKmwuvqRkEwcvkN1SbXjxEC9PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b7628d-426c-4889-a00c-4f974c977945/1/6XKmwuvqRkEwcvkN1SbXjxEC9PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:e4:29:97:59:99:82:0d:c8:54:04:7c:35:47:0c:d3:75:67:
da:20:d0:0a:4c:ed:e9:60:a3:ec:9d:fd:55:b9:63:48:57:c1:
f7:89:be:a3:39:8f:99:04:65:c6:f9:47:81:f4:b7:8a:88:41:
f8:34:ad:44:f6:8f:6f:41:c6:54:65:e2:99:1b:25:4b:1a:39:
95:ec:4e:8d:8e:e8:6b:7a:27:35:f4:71:3f:0f:55:0a:8a:c7:
91:3b:12:7a:a9:4e:49:43:b5:b3:70:3c:6b:1f:a3:52:20:b3:
af:cd:84:66:6c:8f:f4:d8:97:dd:7c:83:7b:1b:bd:13:fc:9c:
da:60:fd:4f:63:69:d1:65:9c:1d:16:12:f2:05:1c:1e:fa:26:
d6:fa:1a:31:11:c0:b5:02:07:4d:75:f6:2e:2a:81:9b:7e:5b:
b6:7a:97:6f:bf:e7:3e:d2:59:c8:c4:64:02:c0:92:33:6e:04:
fb:00:10:06:da:c4:08:bd:bb:dd:ca:b1:91:af:2f:41:a9:03:
23:30:2f:96:7f:03:ba:1d:03:f3:70:e9:7b:a3:99:8a:c4:2b:
d5:45:11:db:a7:f8:0a:da:60:80:e1:42:52:61:75:7c:75:9c:
01:46:a5:95:2f:0d:dd:9a:96:d5:21:4e:da:de:2c:c3:fa:08:
f7:e9:66:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:02:58 2026 by rpki-client