Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
File: moI9HNrrg3dfH7vV-frkGsXfFxk.mft (raw, json)
Hash identifier: HTp6XEFJRcZb7NQ2wy5CP1Vd7QqA0cx1zftTsoo3dzY=
Subject key identifier: AA:5E:E6:B3:55:37:72:9C:C4:6C:D9:2C:46:67:59:76:28:AB:E0:2D
Authority key identifier: 9A:82:3D:1C:DA:EB:83:77:5F:1F:BB:D5:F9:FA:E4:1A:C5:DF:17:19
Certificate issuer: /CN=9a823d1cdaeb83775f1fbbd5f9fae41ac5df1719
Certificate serial: 019D29611A4EF25A1EF003A0F21983950729
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/moI9HNrrg3dfH7vV-frkGsXfFxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
Manifest number: 08BF
Signing time: Thu 26 Mar 2026 09:02:02 +0000
Manifest this update: Thu 26 Mar 2026 09:02:02 +0000
Manifest next update: Fri 27 Mar 2026 09:02:02 +0000
Files and hashes: 1: moI9HNrrg3dfH7vV-frkGsXfFxk.crl (hash: VWdxKy8MEk1fo9EjwDbur6N/bQIjNlt1QK3OPnKyIrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.crl
rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
rsync://rpki.ripe.net/repository/DEFAULT/moI9HNrrg3dfH7vV-frkGsXfFxk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:1a:4e:f2:5a:1e:f0:03:a0:f2:19:83:95:07:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a823d1cdaeb83775f1fbbd5f9fae41ac5df1719
Validity
Not Before: Mar 26 09:02:02 2026 GMT
Not After : Mar 27 09:02:02 2026 GMT
Subject: CN=aa5ee6b35537729cc46cd92c4667597628abe02d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:87:65:6f:4b:0f:b2:53:d5:79:9a:98:a4:c6:
dd:f3:9d:23:10:ef:a0:88:10:88:38:4a:d9:38:94:
35:af:41:e0:97:5c:d9:8d:1f:70:0b:6d:e9:ee:51:
07:b2:83:1d:ac:85:86:ec:ee:79:dd:b6:aa:26:1a:
e2:d2:a1:b0:10:37:9f:37:82:f2:b9:92:ea:05:63:
06:be:22:7a:88:90:bd:04:63:83:0e:d5:56:9d:e8:
90:5e:00:6d:1f:2e:11:4e:09:70:6c:5e:4e:73:ca:
60:43:19:7d:f5:b9:3b:42:98:05:34:c8:f2:49:73:
c7:82:8a:87:56:9b:ee:ae:d1:fc:55:74:d1:dc:ac:
57:43:e1:a7:a7:87:1e:50:58:ee:82:9b:a2:4d:7d:
44:72:e6:03:fe:a8:09:6c:42:f6:6a:bf:9c:29:ba:
42:b5:05:67:4e:d5:0c:3f:42:01:ef:81:4a:d0:1a:
2d:32:ef:63:b7:30:20:8b:ae:e8:57:95:df:ef:36:
13:1f:ab:08:dc:50:8e:61:af:c3:c5:47:9f:06:b3:
50:1a:1f:55:a4:7d:46:32:30:4a:31:59:51:8f:3a:
8a:6e:37:9b:1b:2d:73:22:83:a2:e7:73:cc:75:13:
3a:e6:0d:12:07:e9:59:81:c1:78:31:1f:2f:9e:7c:
b7:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:5E:E6:B3:55:37:72:9C:C4:6C:D9:2C:46:67:59:76:28:AB:E0:2D
X509v3 Authority Key Identifier:
keyid:9A:82:3D:1C:DA:EB:83:77:5F:1F:BB:D5:F9:FA:E4:1A:C5:DF:17:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/moI9HNrrg3dfH7vV-frkGsXfFxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/0bf3b2-4dc4-4e25-9b9b-01f9a7b494da/1/moI9HNrrg3dfH7vV-frkGsXfFxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:b8:58:c5:c7:ba:a6:13:4c:d8:41:eb:66:c9:14:a6:ac:e7:
c8:32:de:b0:97:92:b8:da:66:8c:cb:2c:eb:a6:fd:27:b6:3e:
6a:5c:d5:db:c5:db:fd:16:d8:c2:e3:61:69:a2:4b:80:5f:45:
44:d3:4d:3c:cb:80:03:12:64:55:b9:03:b7:0d:20:03:eb:6d:
69:65:1a:5c:79:0c:d7:be:d3:c9:94:68:16:9b:ac:09:f9:53:
a9:16:a1:de:83:74:70:f7:6f:93:6d:8c:9d:75:36:b2:26:61:
7a:4c:0e:d4:e1:76:16:3e:b8:5c:ff:7b:01:37:8e:1b:b9:d9:
48:a5:6b:77:0b:b2:c3:2f:cb:76:39:58:aa:3f:62:e4:78:26:
1d:ee:97:af:a9:a1:f2:a7:0b:ab:56:a5:a4:86:c2:fd:34:81:
0e:46:7d:8f:21:33:d2:dc:d1:24:4d:3b:6a:a8:4b:95:17:04:
37:85:c8:f5:8e:c6:4b:f1:99:79:b4:12:6b:87:47:03:25:c7:
0c:44:8e:42:51:11:a1:e9:56:82:18:c1:fb:13:f4:32:8b:15:
dc:2b:26:96:d7:32:e7:31:54:b6:b3:41:05:04:62:4e:df:fe:
1f:6f:0b:15:a0:74:09:91:ff:94:f4:e7:05:1e:b8:f2:59:24:
ae:f9:ae:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:15:49 2026 by rpki-client