Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
File: 67YrcxkGEIQRy1VV2BvcOj_cbbg.mft (raw, json)
Hash identifier: lnAs/CtiCSFOUXxScd2KjAy73q7dRLoVehW5KdETpqg=
Subject key identifier: 35:2E:38:E5:F9:97:13:2D:D0:35:85:6E:A9:D7:E3:CE:7C:24:51:8C
Authority key identifier: EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8
Certificate issuer: /CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
Certificate serial: 019D25F2023AEDDCF2B6B4E68455A1575876
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
Manifest number: 0332
Signing time: Wed 25 Mar 2026 17:01:50 +0000
Manifest this update: Wed 25 Mar 2026 17:01:50 +0000
Manifest next update: Thu 26 Mar 2026 17:01:50 +0000
Files and hashes: 1: 67YrcxkGEIQRy1VV2BvcOj_cbbg.crl (hash: XNz3eV5wvBFxmXiLfP08Nf0WDgLNUEotURVii5IHwBQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f2:02:3a:ed:dc:f2:b6:b4:e6:84:55:a1:57:58:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebb62b731906108411cb5555d81bdc3a3fdc6db8
Validity
Not Before: Mar 25 17:01:50 2026 GMT
Not After : Mar 26 17:01:50 2026 GMT
Subject: CN=352e38e5f997132dd035856ea9d7e3ce7c24518c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5a:1b:56:38:f1:36:32:27:03:3a:78:a3:d9:
32:18:67:d6:b6:bf:73:8a:c3:c7:52:c0:93:43:c7:
4b:1c:23:ba:4d:de:f0:18:ba:03:5d:e6:fd:96:8d:
09:2b:50:e4:b1:ab:fe:07:b5:19:43:de:62:cc:d4:
25:24:6c:fa:0b:85:23:f4:49:f2:fc:a0:c4:8c:9c:
9f:49:58:6b:17:34:b1:32:4c:13:49:38:24:ba:a1:
28:04:f1:6c:76:59:14:c4:24:22:be:b0:91:39:78:
52:31:95:11:0e:67:33:61:90:1e:c1:f6:6e:4f:fc:
41:58:ff:bb:37:f3:a2:c7:78:06:2d:7e:32:bf:4c:
e3:41:78:65:85:9b:3d:b9:12:67:7f:ef:54:90:9d:
53:b7:ae:ab:50:ec:3e:81:01:32:8a:8c:93:aa:ae:
d3:e4:58:d2:70:3e:9a:45:ed:74:43:2e:5f:b4:70:
c3:55:38:49:f6:b1:2e:12:36:4c:a4:19:e4:c2:42:
f1:a6:12:aa:a4:b6:ca:83:83:43:bd:e5:9a:f5:aa:
07:54:86:08:f6:c9:a2:ef:e9:f9:2c:9e:e1:e3:74:
b7:a5:4c:f3:a7:28:a2:a8:da:6c:7d:29:1a:b5:ed:
5f:dc:ac:57:45:b6:0f:1e:25:57:42:54:f9:da:52:
5d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:2E:38:E5:F9:97:13:2D:D0:35:85:6E:A9:D7:E3:CE:7C:24:51:8C
X509v3 Authority Key Identifier:
keyid:EB:B6:2B:73:19:06:10:84:11:CB:55:55:D8:1B:DC:3A:3F:DC:6D:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/67YrcxkGEIQRy1VV2BvcOj_cbbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/332f0a-57d1-40d0-a86b-77213f991db9/1/67YrcxkGEIQRy1VV2BvcOj_cbbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:e5:3e:c6:d5:19:79:d2:e5:78:a4:f0:26:a7:8e:3f:e7:bb:
c8:b2:b0:05:ba:c0:74:98:08:7f:bd:df:dc:f8:b4:ef:b5:46:
15:c5:f1:8b:a2:25:7f:c9:ac:d2:81:2d:a4:c6:3d:4f:cd:c7:
8f:0c:65:da:5a:1f:14:f1:12:db:6f:d8:27:af:3d:f4:5e:f6:
bc:c7:61:ea:15:d7:31:04:1f:07:da:ab:82:50:54:72:f4:2f:
6c:e2:0d:a0:f7:e9:32:8d:dd:ba:a0:56:a5:46:e7:4f:28:cd:
d4:d0:f8:e0:db:4b:d1:50:2b:13:92:27:0c:69:2d:e0:57:5d:
bc:e0:82:5b:11:3e:a0:9b:5a:64:3b:55:d3:dd:03:67:24:5b:
04:bb:e2:20:86:47:cc:68:6a:1a:a5:e9:75:30:03:ff:3f:b8:
8b:c8:e3:f7:ca:89:2c:2a:c4:48:f9:f1:af:48:b1:7e:82:7e:
9f:05:d9:15:89:d0:0d:4c:20:79:ed:10:52:fc:e8:ec:9d:0f:
69:70:ae:a7:8f:d2:cf:5d:4b:08:ad:17:c7:0f:67:e1:35:e0:
89:ce:86:ce:3e:9e:55:65:07:e2:f7:61:90:05:c9:54:91:64:
c1:a1:b5:55:0f:44:9c:93:71:29:cd:42:90:e3:0f:60:84:2d:
ed:b9:1a:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:23:07 2026 by rpki-client