Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft
File: miIdT5cAcYIi7es06TinZjQ_JOE.mft (raw, json)
Hash identifier: Gg2htsapVlMU8fxB/Hnk/QSn/v95bbXSjtaMQW4gv1Q=
Subject key identifier: 68:5C:EE:C3:A8:B9:6C:9B:5E:1F:AB:20:00:94:03:5E:53:D0:2D:7F
Authority key identifier: 9A:22:1D:4F:97:00:71:82:22:ED:EB:34:E9:38:A7:66:34:3F:24:E1
Certificate issuer: /CN=9a221d4f9700718222edeb34e938a766343f24e1
Certificate serial: 019D2704851C7B42790D4668955A5203F5C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft
Manifest number: 1730
Signing time: Wed 25 Mar 2026 22:01:40 +0000
Manifest this update: Wed 25 Mar 2026 22:01:40 +0000
Manifest next update: Thu 26 Mar 2026 22:01:40 +0000
Files and hashes: 1: miIdT5cAcYIi7es06TinZjQ_JOE.crl (hash: dTGzm+Cve/1aq7b8Dzj9ELR2SJ2RXGMk7gtMAVgOfYE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:85:1c:7b:42:79:0d:46:68:95:5a:52:03:f5:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a221d4f9700718222edeb34e938a766343f24e1
Validity
Not Before: Mar 25 22:01:40 2026 GMT
Not After : Mar 26 22:01:40 2026 GMT
Subject: CN=685ceec3a8b96c9b5e1fab200094035e53d02d7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:31:4d:60:19:09:25:c3:ba:3c:c5:d4:40:3d:
3c:09:b2:04:45:66:27:47:27:07:d8:f1:3c:e4:6a:
89:18:54:e8:aa:cd:0e:c2:4c:f5:f6:48:d8:bd:55:
45:84:53:9b:75:37:95:80:18:14:6e:0f:4a:6c:d5:
68:ea:86:9e:45:94:46:e0:3f:88:b3:19:2d:ce:0b:
a7:d0:7e:17:bb:46:17:19:37:65:6e:65:cf:11:70:
88:a1:48:ef:ad:6f:b7:ae:27:79:63:d5:2b:d0:84:
20:b2:ab:89:5a:04:db:86:44:0d:77:58:c0:ef:83:
31:2d:80:1b:33:e8:d7:49:a8:95:e4:5e:be:de:36:
66:47:06:ad:67:51:33:17:7d:24:9a:ec:b3:7a:7e:
ba:56:b9:01:88:0d:e4:0d:2a:9a:eb:73:bc:db:56:
b1:22:ee:1b:d3:03:c7:38:50:82:a3:16:68:bd:60:
ca:07:47:a0:97:6e:d9:93:7b:85:6e:6e:38:e4:cd:
8f:bb:37:cd:88:23:bb:1b:20:35:35:58:0c:94:4e:
e0:2c:a2:d9:70:88:e1:57:f3:8b:79:c3:0e:ff:52:
25:33:db:69:bc:1e:c1:ba:62:b8:08:87:c6:86:23:
e0:9a:d1:3c:42:8f:ec:6c:bd:0a:70:13:38:8a:f1:
79:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5C:EE:C3:A8:B9:6C:9B:5E:1F:AB:20:00:94:03:5E:53:D0:2D:7F
X509v3 Authority Key Identifier:
keyid:9A:22:1D:4F:97:00:71:82:22:ED:EB:34:E9:38:A7:66:34:3F:24:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/miIdT5cAcYIi7es06TinZjQ_JOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ac63b6-55c6-46df-8c11-7de7a7c5bf72/1/miIdT5cAcYIi7es06TinZjQ_JOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:92:06:15:13:0e:c8:97:51:1a:af:97:fb:de:f3:db:e8:21:
fb:b2:a8:b1:7d:a0:bd:3f:2e:25:de:eb:08:c2:44:fc:29:c0:
95:6c:76:f7:dd:9e:7f:3f:18:e8:85:e3:b5:7b:a4:a3:b4:78:
4b:34:8e:a4:e8:10:34:79:30:b6:63:6b:e5:b5:18:1f:8f:27:
66:80:5b:72:cd:fa:2b:d8:db:5d:78:7e:50:dd:8f:44:2c:2a:
01:2c:2c:17:5b:11:6e:47:22:a1:ac:09:ea:55:c4:47:af:14:
10:60:3d:56:99:97:49:47:19:f7:50:1c:39:95:65:dd:3a:82:
11:25:d8:82:65:27:4b:e0:5d:c5:84:1f:f9:ae:6b:1f:2f:fb:
1c:14:89:fb:4e:78:9a:9a:a8:ca:fe:b1:1d:8a:32:e8:4b:fe:
00:98:80:21:02:00:a4:50:d1:00:55:4f:1b:42:81:5b:4d:b3:
c1:a5:e7:14:4d:ce:2f:f7:cd:ec:a1:67:c7:20:17:77:14:2c:
58:41:47:37:68:f2:94:7d:9d:35:51:5b:90:44:c3:3d:b5:13:
96:86:94:da:f7:34:74:e2:32:48:cc:fc:fc:23:a5:c7:61:3e:
12:ed:01:9e:d2:92:08:00:0d:56:66:87:a3:fd:42:5c:97:99:
b8:8e:6a:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:00:51 2026 by rpki-client