Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
File: b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft (raw, json)
Hash identifier: Dc5ZUUcSb/XTBRB9ZPvRBxsQVDWD8r2kA7vrvzzqos4=
Subject key identifier: 94:1A:F5:0A:DF:55:46:26:49:7E:8A:84:62:82:84:31:82:9B:38:1D
Authority key identifier: 6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
Certificate issuer: /CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Certificate serial: 019D27DFC6FA8AA2681E898AACA8A0E56F8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
Manifest number: 127E
Signing time: Thu 26 Mar 2026 02:01:10 +0000
Manifest this update: Thu 26 Mar 2026 02:01:10 +0000
Manifest next update: Fri 27 Mar 2026 02:01:10 +0000
Files and hashes: 1: b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl (hash: yUMMIrW/Q+bSvLLch5um76/JozyUapmGkJH+Sam3PmE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:c6:fa:8a:a2:68:1e:89:8a:ac:a8:a0:e5:6f:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f648e3cab609bd1483ca3e51911ceaa53f0c6a1
Validity
Not Before: Mar 26 02:01:10 2026 GMT
Not After : Mar 27 02:01:10 2026 GMT
Subject: CN=941af50adf554626497e8a8462828431829b381d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6c:0c:82:43:3d:f1:2c:d5:b5:93:89:c5:61:
e6:0c:52:8c:ca:10:cd:ce:0b:7d:28:13:03:1a:34:
00:a3:3b:d2:d7:46:34:f4:73:cf:d7:82:1d:89:d6:
7a:8d:6b:7a:ca:d5:2f:0f:63:04:e2:ef:5a:8a:d2:
5f:03:fd:9c:c8:03:c4:4d:81:05:5e:88:f1:bd:bd:
7f:3a:ae:03:b6:b4:eb:f2:4a:fb:6f:62:ff:a1:90:
99:9d:b1:09:25:e7:73:ff:01:f9:4c:ed:46:3a:93:
45:33:d3:fe:c8:76:e2:d5:2b:73:0b:00:a5:b0:48:
db:d3:fa:e4:83:58:74:35:6a:14:8e:cf:98:5b:7e:
e5:58:ee:b2:ce:1f:d7:35:81:f2:28:01:64:13:75:
71:06:49:64:f1:b1:84:41:12:50:e0:b8:9f:8e:3a:
b1:6b:9f:f3:cb:6d:cb:fd:f9:0c:84:af:89:f5:2f:
ad:01:8b:74:34:9f:83:59:86:18:d9:dd:9a:12:60:
c6:d0:0c:91:df:4c:81:db:b2:ef:5e:dc:2b:1d:be:
90:82:9b:6f:0b:ae:09:94:c0:76:41:55:97:b0:86:
29:63:d2:1b:dc:f9:bc:d6:d3:d1:7e:52:9f:43:66:
3b:91:0b:39:cf:66:5f:b4:33:2d:ee:8b:98:9e:13:
77:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1A:F5:0A:DF:55:46:26:49:7E:8A:84:62:82:84:31:82:9B:38:1D
X509v3 Authority Key Identifier:
keyid:6F:64:8E:3C:AB:60:9B:D1:48:3C:A3:E5:19:11:CE:AA:53:F0:C6:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2SOPKtgm9FIPKPlGRHOqlPwxqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/eaa246-3304-49eb-aada-a069af854b05/1/b2SOPKtgm9FIPKPlGRHOqlPwxqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:7c:f5:e5:5d:7f:4e:d7:12:1f:5f:00:95:3a:68:1d:66:22:
dd:e2:ae:1d:19:3e:59:ab:b7:07:88:01:24:01:b6:69:15:7a:
d4:01:36:97:ac:e2:01:e0:87:30:4a:89:67:fa:7b:8b:90:83:
81:b8:ca:9b:e6:3a:43:39:60:32:c0:3f:44:d5:85:df:55:06:
45:36:dd:fb:b7:3b:ef:60:f1:ab:4f:02:e2:55:7e:4b:f9:cf:
42:bc:d7:7a:fc:1c:78:6c:ed:dd:a1:9a:08:ba:b7:03:43:f0:
40:0b:ce:f6:d0:61:b5:3f:97:d0:95:29:c8:aa:b1:26:0e:a1:
84:f3:ce:0c:ee:5e:89:fb:9f:60:bf:6d:75:b6:6e:3f:7a:db:
d9:fa:75:d8:78:4b:e3:03:15:8e:2d:4c:50:70:9e:4e:e7:ee:
0e:f8:24:40:ba:78:7e:30:00:85:27:9f:45:ec:ce:c1:c6:60:
34:26:24:79:4d:7b:66:98:18:c6:ad:4b:31:d0:ed:6c:00:99:
fb:07:73:04:4f:bf:6d:1b:e2:23:ea:11:82:5d:de:ba:f4:d3:
af:e1:6d:ad:d7:b2:24:28:a7:e7:58:03:c2:39:f7:57:72:de:
39:bc:1c:fa:65:97:b9:b5:6b:9b:48:f8:ef:42:1b:a4:be:7f:
d2:8a:dc:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:45:38 2026 by rpki-client