Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
File: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft (raw, json)
Hash identifier: mfnzpLkmihuP5B1tAIs5uxjYihCiPhzxWZ92fyCrZZ4=
Subject key identifier: 04:2F:D2:73:C0:DD:74:D6:19:E0:27:27:E5:4A:53:DD:2E:8B:93:DD
Authority key identifier: 13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF
Certificate issuer: /CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf
Certificate serial: 019D27A90C62443993D6A51CD9088C13F9EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
Manifest number: 1880
Signing time: Thu 26 Mar 2026 01:01:23 +0000
Manifest this update: Thu 26 Mar 2026 01:01:23 +0000
Manifest next update: Fri 27 Mar 2026 01:01:23 +0000
Files and hashes: 1: EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl (hash: IoHJ6dNm9Cl+o71PpQSK6aQzBCR/IEEDPL/2fY60TiY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:0c:62:44:39:93:d6:a5:1c:d9:08:8c:13:f9:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13323eacd77e5ca5952dd67c28f4fd90d32afadf
Validity
Not Before: Mar 26 01:01:23 2026 GMT
Not After : Mar 27 01:01:23 2026 GMT
Subject: CN=042fd273c0dd74d619e02727e54a53dd2e8b93dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:fe:0d:47:28:d5:c6:c5:8a:32:c7:87:f2:17:
f7:da:1c:f4:86:2c:5a:c4:01:72:53:94:62:a6:23:
87:38:17:29:18:97:b8:7f:9d:81:42:b7:60:48:2f:
e7:e9:65:b1:51:53:74:55:b7:c8:a3:0e:b6:a0:d9:
3e:1e:85:e6:8a:6f:17:e3:ab:8d:89:d3:4f:34:73:
33:10:6f:56:26:fb:4e:e0:dd:b4:e8:81:df:f5:21:
1e:48:18:5c:28:3a:46:f8:0e:28:89:ee:c3:99:fb:
4d:ba:6a:1e:e3:68:63:d9:f7:3d:81:a1:de:9c:70:
bf:11:24:7e:c7:89:b1:4b:93:70:b8:ee:10:f9:a8:
43:49:91:a0:37:59:7f:7f:9d:d0:9a:a2:77:9d:86:
ad:a5:b0:ce:d5:f4:98:9e:53:f3:5f:98:b5:aa:31:
ac:96:07:f5:c0:1f:62:82:48:dc:18:fb:97:26:43:
13:fb:10:01:34:ba:49:da:b0:54:ee:51:29:e1:15:
d1:15:b4:f9:a9:72:e3:1e:cf:01:20:ee:4d:e3:2e:
48:af:c8:d8:08:26:35:67:da:9d:1c:5e:27:c0:c9:
a0:e8:22:35:b6:0b:a9:04:42:e0:71:66:67:78:31:
7a:e3:27:1f:b3:40:73:4c:3c:42:98:61:3a:bb:e9:
ba:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:2F:D2:73:C0:DD:74:D6:19:E0:27:27:E5:4A:53:DD:2E:8B:93:DD
X509v3 Authority Key Identifier:
keyid:13:32:3E:AC:D7:7E:5C:A5:95:2D:D6:7C:28:F4:FD:90:D3:2A:FA:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/cbeac8-ebed-45fb-b724-70b1c69b4232/1/EzI-rNd-XKWVLdZ8KPT9kNMq-t8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:23:9a:13:e8:ed:2a:b9:45:e1:c3:2d:d1:bf:41:c0:1c:1e:
c2:81:9a:3c:69:fd:14:02:b2:77:6c:17:24:87:a5:35:a8:d1:
65:b3:0e:b9:c6:db:a3:51:d7:92:eb:01:18:c4:87:81:71:5f:
20:13:35:e2:70:21:39:5e:40:18:d6:f0:3c:a4:e9:c5:f2:1d:
09:37:10:ff:cd:12:4c:ba:a5:49:b7:ad:07:79:7e:87:ba:f2:
82:39:62:b9:36:74:80:32:52:ea:a5:4d:4e:1a:67:f8:93:34:
d6:ea:71:1d:2b:fc:8d:f8:95:ee:8f:7b:32:b8:db:4d:30:73:
c7:e6:99:87:6d:3c:50:b9:03:5b:13:f9:99:65:ff:9b:c3:4c:
3f:6a:eb:f6:d4:b6:86:a9:cd:2d:77:c1:c7:c3:07:72:38:c0:
e9:e4:22:57:9a:5b:b3:55:c7:72:48:b7:27:4c:db:83:cb:3d:
18:f8:a4:81:b3:50:7f:06:a3:b9:f4:06:39:49:f1:d0:b0:87:
1e:5b:77:db:a8:1f:48:b1:39:ec:dc:bd:af:24:86:d9:73:56:
01:dc:78:73:fa:58:00:d5:a1:50:5f:02:f5:a0:4e:1f:64:bf:
b5:76:6b:9c:ac:32:b5:0d:45:c0:27:a0:33:0a:33:97:d4:0d:
8d:50:91:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:34:57 2026 by rpki-client