Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
File: F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft (raw, json)
Hash identifier: OLn5qB/I6IqeM8hPx4Bk/cLb8H0J9IPtbH2fHdXrlK4=
Subject key identifier: 02:7B:23:E7:C9:35:48:A3:BC:0D:F9:9D:2F:C7:50:2C:DE:96:5D:83
Authority key identifier: 17:4D:54:5B:29:3C:16:DC:EF:DC:41:D1:56:F4:91:9B:B1:54:C0:D9
Certificate issuer: /CN=174d545b293c16dcefdc41d156f4919bb154c0d9
Certificate serial: 019D330856ABCBEB40FF3239BD125FB23B3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
Manifest number: 0D1A
Signing time: Sat 28 Mar 2026 06:01:17 +0000
Manifest this update: Sat 28 Mar 2026 06:01:17 +0000
Manifest next update: Sun 29 Mar 2026 06:01:17 +0000
Files and hashes: 1: F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl (hash: U1Hktcybsf/WljML75LFGjQnEklWy01Wq90u/1uNwAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:08:56:ab:cb:eb:40:ff:32:39:bd:12:5f:b2:3b:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=174d545b293c16dcefdc41d156f4919bb154c0d9
Validity
Not Before: Mar 28 06:01:17 2026 GMT
Not After : Mar 29 06:01:17 2026 GMT
Subject: CN=027b23e7c93548a3bc0df99d2fc7502cde965d83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:10:2c:cb:a9:20:2e:9c:e4:04:c6:18:c4:10:
55:35:2a:2a:c8:ef:27:a9:3b:45:40:74:6a:6a:15:
69:93:76:51:c1:a8:11:9f:7e:a5:86:42:e1:21:ff:
3f:a1:06:a1:e7:96:56:84:1e:9a:89:4f:e0:3c:d0:
8f:72:85:18:8e:13:d3:b2:bc:ec:a3:47:1b:ba:9c:
c1:e2:7b:d2:2c:bf:3b:03:24:40:8c:0f:d1:4f:58:
be:e0:83:ec:b1:75:61:dc:90:2c:1b:6d:9b:79:e5:
97:c8:09:ca:10:01:1d:73:fd:2f:d8:3a:d0:30:96:
cf:1a:81:14:8c:80:36:ce:35:58:f2:29:26:d4:f8:
a5:9e:43:9e:b1:ee:24:e5:d7:fd:6c:ae:e6:0a:9c:
48:f7:48:5c:87:bb:17:d4:5e:06:f2:8a:0c:8d:27:
ea:3f:8c:6a:e4:c5:7b:89:be:e6:cb:4a:b7:01:4e:
38:2a:c2:fc:b8:2d:99:b6:e7:4d:2f:91:30:49:7f:
5a:17:3b:eb:40:1f:fd:b0:53:6a:80:be:44:a2:cc:
33:48:05:76:20:c8:d6:e9:53:37:4e:bd:4e:c0:8a:
8b:4d:cd:58:81:ea:0e:14:b6:a3:b0:bf:b6:f7:ee:
1a:d0:51:cf:77:44:ac:5b:81:02:b2:20:4c:c0:cd:
74:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:7B:23:E7:C9:35:48:A3:BC:0D:F9:9D:2F:C7:50:2C:DE:96:5D:83
X509v3 Authority Key Identifier:
keyid:17:4D:54:5B:29:3C:16:DC:EF:DC:41:D1:56:F4:91:9B:B1:54:C0:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F01UWyk8Ftzv3EHRVvSRm7FUwNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/4ab688-8a51-4322-a286-847e116bc6eb/1/F01UWyk8Ftzv3EHRVvSRm7FUwNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:49:89:1a:80:43:cc:d5:86:40:09:d2:04:08:b6:5b:36:18:
7a:78:85:a4:a1:66:39:d6:74:44:e2:89:d8:41:99:57:48:f5:
0b:55:3a:c7:7b:5f:2e:ce:58:81:8a:bc:c1:ff:37:dd:34:fe:
1c:8c:7d:b9:1d:fe:04:ec:54:38:0b:f5:4a:56:d8:6d:0e:54:
30:b8:6a:bc:f5:63:2f:90:81:96:a5:b3:25:52:94:eb:9a:e0:
78:ac:cb:e4:d8:77:b7:39:bf:29:ad:f0:63:03:9a:40:3f:cc:
d7:c7:9f:9f:4c:15:22:f0:0f:cf:90:8f:41:dc:c1:a4:1e:c8:
82:68:22:34:38:d4:f0:34:fd:83:9e:54:0f:96:6f:3c:f8:e9:
61:73:60:45:6f:fc:73:3e:82:0b:e1:5a:d6:f3:aa:fc:d8:f7:
5c:c6:21:b5:53:12:b6:f0:8e:53:f7:06:e8:85:2a:82:7e:fe:
b2:47:58:88:dc:64:6d:1e:b2:b1:64:06:d0:29:85:1b:bd:f6:
3f:2d:7d:f2:8f:67:ae:7c:69:c9:22:bd:07:69:3c:59:81:b9:
b2:c3:0c:e6:23:39:8b:a7:f7:db:73:91:80:4e:7f:83:81:8a:
89:99:5a:ce:ab:d1:b3:7d:f7:68:f0:33:74:38:06:ea:a8:fd:
4a:df:95:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 13:16:31 2026 by rpki-client