Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
File: 6kHoOY_3zvtSIWNusighJuv-O3g.mft (raw, json)
Hash identifier: Hw+IAapw+PvQL0NMXjg/IUwsFkJNBfFXvk/k6CnPNd0=
Subject key identifier: E4:21:AE:A4:E0:4C:DF:C7:AB:C4:6E:99:49:35:29:5F:40:F8:38:84
Authority key identifier: EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
Certificate issuer: /CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Certificate serial: 019D28F243F3E80486E3ED91FAAED7ADCF52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
Manifest number: 04D6
Signing time: Thu 26 Mar 2026 07:00:58 +0000
Manifest this update: Thu 26 Mar 2026 07:00:58 +0000
Manifest next update: Fri 27 Mar 2026 07:00:58 +0000
Files and hashes: 1: 6kHoOY_3zvtSIWNusighJuv-O3g.crl (hash: qJC9+yDEXR82IPwlzMwjowASZ3UZD5Y/PUn/GQQG/dg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:43:f3:e8:04:86:e3:ed:91:fa:ae:d7:ad:cf:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea41e8398ff7cefb5221636eb2282126ebfe3b78
Validity
Not Before: Mar 26 07:00:58 2026 GMT
Not After : Mar 27 07:00:58 2026 GMT
Subject: CN=e421aea4e04cdfc7abc46e994935295f40f83884
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5a:de:3c:ea:ae:86:c4:c4:88:a2:cd:b8:ad:
71:88:f3:2b:6e:ba:d4:0e:68:a9:13:dd:75:e8:6e:
98:84:26:22:c9:cd:70:21:b4:07:c6:7b:97:96:30:
75:d1:30:38:3f:7c:8b:18:fc:dd:08:09:03:02:be:
6b:39:6f:0d:8a:ad:e0:d9:07:e1:cd:1a:e9:77:26:
14:5a:35:a4:0b:96:80:57:28:45:60:2c:89:17:bc:
23:c8:9b:99:f6:cd:40:00:33:9d:e0:0a:2f:de:79:
88:6a:e7:aa:06:b0:03:9d:ad:f5:34:99:49:07:1b:
ac:6d:94:61:33:84:5d:36:f7:9b:3f:10:53:a9:c5:
41:d1:ea:80:b1:ef:41:2c:57:41:6c:ea:42:b6:1c:
b2:bb:04:bc:f2:4d:df:d5:f6:95:83:72:3b:a7:0e:
68:38:7b:bc:e7:4a:8e:13:14:f6:7c:40:4b:cd:65:
2e:6c:8b:05:3a:11:c9:24:59:3e:d0:48:72:1f:c1:
4a:0c:21:c3:a6:41:05:45:09:95:7f:02:5d:a3:8e:
05:59:2c:d7:2d:fe:3f:25:05:9a:d0:48:f0:4b:57:
68:9e:a8:cb:02:e4:50:89:bf:25:58:6a:e8:ad:02:
23:f5:e4:0b:99:ec:2a:ac:5f:54:69:9c:71:14:06:
e3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:21:AE:A4:E0:4C:DF:C7:AB:C4:6E:99:49:35:29:5F:40:F8:38:84
X509v3 Authority Key Identifier:
keyid:EA:41:E8:39:8F:F7:CE:FB:52:21:63:6E:B2:28:21:26:EB:FE:3B:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6kHoOY_3zvtSIWNusighJuv-O3g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/53cbe8-f5a7-407d-84ce-628b4394b822/1/6kHoOY_3zvtSIWNusighJuv-O3g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:06:75:31:1b:6b:70:69:ff:10:86:93:09:a2:45:60:e0:06:
b9:38:0a:ce:09:e2:b6:40:40:61:fc:9e:ad:70:76:79:ef:ba:
ac:9b:94:c4:a2:05:c1:4d:49:52:ac:d2:fb:0e:7a:22:ed:97:
61:ad:ca:38:5c:12:ec:25:29:58:a4:71:50:82:40:e2:0d:13:
1b:c7:1b:42:56:08:63:4d:aa:af:66:da:21:7c:71:d5:f6:37:
70:73:76:46:9f:a7:9a:6a:4e:65:7b:62:d8:29:ea:73:0b:1a:
84:4d:aa:e9:23:f0:83:f7:aa:06:c5:ef:fb:b3:dd:a3:52:c7:
0b:ef:41:2e:84:53:23:55:f9:a9:c0:e3:4b:1e:2b:39:7e:a6:
ea:e1:c4:44:25:bb:1f:bf:04:db:91:39:27:48:92:ce:78:25:
54:97:4b:d9:b7:ea:df:07:b0:9b:ec:20:09:f2:9b:c4:7a:40:
bb:bf:64:1d:df:57:1c:02:7a:bd:99:9c:33:62:69:be:46:50:
5e:aa:a9:9e:93:cf:28:12:84:2d:0a:2d:e1:54:ad:ca:a2:ce:
b3:5c:0a:a8:7f:e3:76:30:0a:bf:9e:5c:74:ab:82:62:c8:d5:
54:15:92:ac:44:66:dd:32:73:04:ee:e2:67:8d:b3:7a:d8:81:
fd:29:13:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:22:55 2026 by rpki-client