Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
File: cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft (raw, json)
Hash identifier: gMuRtnEia28jjbor1EZnq6Eg54IuP5sbKCENmkqF0NA=
Subject key identifier: 50:67:97:85:01:91:F2:43:CA:CC:7E:33:79:A6:1B:49:F2:A8:D9:D2
Authority key identifier: 70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
Certificate issuer: /CN=70cee62b79472dcae51ead4d8ea06923870f5197
Certificate serial: 019D2772BAAEB5CA5DFA12AB98705E321497
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
Manifest number: 1882
Signing time: Thu 26 Mar 2026 00:02:03 +0000
Manifest this update: Thu 26 Mar 2026 00:02:03 +0000
Manifest next update: Fri 27 Mar 2026 00:02:03 +0000
Files and hashes: 1: cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl (hash: ooA0adgwquJ30MwPVFGRosejmPKX1JdHtN2lpOBJkfA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:ba:ae:b5:ca:5d:fa:12:ab:98:70:5e:32:14:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cee62b79472dcae51ead4d8ea06923870f5197
Validity
Not Before: Mar 26 00:02:03 2026 GMT
Not After : Mar 27 00:02:03 2026 GMT
Subject: CN=506797850191f243cacc7e3379a61b49f2a8d9d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:72:60:78:39:7e:36:95:31:b6:0f:9d:96:f8:
3e:b8:75:ec:c2:f3:84:ba:66:89:cf:3a:66:d6:00:
e8:49:fc:e7:cd:8b:66:f2:46:3f:8f:3c:9b:e7:bc:
9e:bb:a5:db:4d:87:63:57:fd:80:0d:2e:cf:2d:2a:
ed:0a:91:b4:93:c3:b2:89:0e:39:62:09:97:a8:e9:
47:09:5e:b4:43:98:8a:d1:09:7c:6a:87:0b:f5:4c:
dd:c0:90:94:27:51:82:b8:4a:f4:1c:78:a3:03:b3:
ce:34:a3:9c:15:4c:69:51:38:a8:4e:32:9b:e8:6b:
e0:51:e6:cb:d7:99:bc:d1:41:98:7b:70:d9:7f:66:
77:2b:ae:c6:9a:6f:1e:67:31:b0:c1:0b:35:11:22:
49:21:bc:e5:bd:25:af:40:29:c1:2a:d7:eb:8e:ec:
b3:2c:20:e6:a2:93:26:aa:be:0b:94:c0:16:ab:34:
1d:43:cc:48:a8:04:8c:fc:c6:0a:80:c0:be:25:7b:
69:b0:f0:87:da:20:0a:1a:e6:5d:5c:6c:22:31:b5:
6e:dd:61:69:ba:74:cb:56:49:ee:49:d0:bc:c8:be:
16:3f:20:2c:17:72:79:65:35:d8:1f:9c:7a:70:98:
1b:bc:ab:75:66:45:d3:c1:d4:b8:3c:ec:f8:2d:ef:
be:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:67:97:85:01:91:F2:43:CA:CC:7E:33:79:A6:1B:49:F2:A8:D9:D2
X509v3 Authority Key Identifier:
keyid:70:CE:E6:2B:79:47:2D:CA:E5:1E:AD:4D:8E:A0:69:23:87:0F:51:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM7mK3lHLcrlHq1NjqBpI4cPUZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/ba81b6-1282-455f-8c59-d0e24f017088/1/cM7mK3lHLcrlHq1NjqBpI4cPUZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:32:00:2d:57:3c:1c:7c:70:35:c5:fb:3a:f7:c6:4e:b4:fd:
00:02:74:56:7c:c1:f8:78:3f:d7:21:d5:cc:5a:e6:06:d8:2b:
3d:11:9f:fa:46:85:e0:f8:18:30:9c:9c:3b:79:37:04:54:10:
d6:4d:d2:b0:cc:e0:21:b0:0a:c8:44:79:2f:ce:2c:60:25:12:
ca:52:4a:c2:3d:a6:80:13:e7:a4:2b:45:f7:97:f4:80:64:e7:
ae:6f:55:47:7f:70:90:f1:a7:bd:39:20:43:f8:06:c3:92:85:
3d:db:79:f5:b6:61:3a:7c:32:22:3b:fa:db:7c:f3:1d:d8:c9:
01:e2:12:e9:ca:31:32:28:e8:b4:83:38:8f:bc:7a:fb:8b:f6:
0b:87:2f:76:5f:60:ed:b7:90:0e:3c:f5:18:59:f8:8b:95:1a:
fe:9f:79:37:3a:99:63:ac:bf:b4:25:b8:58:30:b8:1c:93:20:
e6:e2:30:c1:32:14:65:72:a3:d0:df:f1:73:2f:91:bf:f8:72:
ea:d5:d2:53:35:84:58:a0:7b:01:e0:54:3e:47:71:77:a7:62:
73:53:6d:0c:25:a5:46:5a:e7:af:74:5f:34:45:fa:2e:4e:dc:
12:dd:41:d1:1e:70:9b:74:18:57:cf:ec:6f:35:35:8d:b6:19:
e3:13:63:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:53:42 2026 by rpki-client