Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
File: pol1o9gy4UUny7or4QujwebGOFY.mft (raw, json)
Hash identifier: H/NjpQXAJ59F+K/ndIqB/1zQe3L/C+tnNIdSLVIcDlE=
Subject key identifier: 4D:2A:D7:69:E1:B1:CE:C7:0A:7B:8C:6F:2D:87:3E:3E:45:28:8F:B2
Authority key identifier: A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
Certificate issuer: /CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Certificate serial: 019D270394A65E6341A35EC79F7E3B7BA55C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
Manifest number: 085A
Signing time: Wed 25 Mar 2026 22:00:39 +0000
Manifest this update: Wed 25 Mar 2026 22:00:39 +0000
Manifest next update: Thu 26 Mar 2026 22:00:39 +0000
Files and hashes: 1: pol1o9gy4UUny7or4QujwebGOFY.crl (hash: JNbfsksVvZNWOtusaP7cTp6AVSPZUL34xhAgovZuyKM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:03:94:a6:5e:63:41:a3:5e:c7:9f:7e:3b:7b:a5:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a68975a3d832e14527cbba2be10ba3c1e6c63856
Validity
Not Before: Mar 25 22:00:39 2026 GMT
Not After : Mar 26 22:00:39 2026 GMT
Subject: CN=4d2ad769e1b1cec70a7b8c6f2d873e3e45288fb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:aa:f2:ae:df:b4:ae:24:ab:c5:27:53:f4:81:
dd:ce:b3:26:51:d5:6c:4f:31:b6:09:31:14:27:03:
ed:07:ae:fe:9c:00:cb:4c:bc:34:0d:60:41:02:0a:
be:28:fa:f0:b3:0e:9b:08:14:bf:5c:25:24:d6:ff:
f2:e5:ce:7d:19:c8:2b:28:c5:0b:70:f0:2f:e2:61:
14:99:6c:fa:d3:a4:1a:3c:08:c1:f2:6e:d5:99:e8:
f7:1d:91:b4:cf:fd:5d:b0:97:18:b8:f8:1e:71:c1:
f0:68:7a:db:fe:42:dc:de:24:e1:73:88:75:46:0a:
da:a3:30:93:36:62:4b:19:1f:8f:10:9b:7e:c8:81:
b7:72:5e:b3:ff:56:b5:a1:6e:be:bb:e3:9c:0b:f7:
a4:5e:d3:0a:c2:71:3e:54:e8:56:1b:38:bd:47:57:
e2:5e:6b:44:f8:40:00:e9:8c:50:93:f0:03:a4:60:
32:1a:86:3b:ca:d7:e9:00:5e:6e:6a:f4:7e:a0:9c:
7a:3f:c8:04:f5:7e:89:54:50:1a:db:22:07:82:d1:
ef:cd:c6:cd:e1:d7:dd:32:8a:f8:9d:a4:c2:2b:59:
b7:73:3b:b1:2b:3b:1e:ce:c7:40:c3:c1:89:2c:a9:
95:3d:ef:35:c9:86:da:66:1a:a3:16:42:31:05:ea:
2c:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:2A:D7:69:E1:B1:CE:C7:0A:7B:8C:6F:2D:87:3E:3E:45:28:8F:B2
X509v3 Authority Key Identifier:
keyid:A6:89:75:A3:D8:32:E1:45:27:CB:BA:2B:E1:0B:A3:C1:E6:C6:38:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pol1o9gy4UUny7or4QujwebGOFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/0b3cc1-318e-497f-a2b5-1316ad805e64/1/pol1o9gy4UUny7or4QujwebGOFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:a1:af:fe:c6:c8:87:d9:71:06:3a:4e:dc:53:6e:41:d2:ea:
4e:9c:32:74:26:c5:5c:67:ac:4f:6f:06:6e:a2:d2:49:14:81:
12:6c:bb:68:bd:55:54:f1:48:7f:38:6b:ef:8a:50:af:14:fd:
1f:cf:77:20:80:d4:e0:e4:ac:c7:ae:ff:12:bc:a2:cb:13:ff:
d7:c1:b7:cd:14:7d:3f:99:31:ea:56:4c:64:04:17:dc:e3:8c:
2f:df:2d:ee:eb:d8:88:ed:90:89:71:24:5b:a2:98:cb:96:08:
bf:ee:35:ee:24:21:84:50:30:f7:1f:bf:26:03:05:f5:e8:af:
58:56:0f:f7:c6:f8:11:d1:b3:59:96:17:ec:91:29:16:0b:be:
76:e7:68:1c:46:a6:40:65:7f:8f:f2:4c:52:48:e1:5b:93:3b:
58:d2:87:0d:73:f2:b1:de:ed:e8:b3:ca:c1:fa:f3:e1:fd:a1:
78:28:93:66:24:f7:fa:2b:08:4d:66:4e:2d:af:36:4e:ef:61:
81:5c:bd:4a:c4:e4:4e:6c:a4:fa:e6:d8:85:c1:ca:99:92:26:
d1:b3:17:4d:f1:46:0f:31:2f:f7:4e:c0:57:db:e1:62:7b:b3:
06:e8:38:11:5a:0a:56:18:ad:9c:aa:6e:01:b1:5a:4f:c6:f5:
8d:8c:7e:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:57:28 2026 by rpki-client