Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: Cg5eBN17izotq+ZvzHcmFD3HL7ZLy2j26LzFJK1Lezc=
Subject key identifier: 29:9B:F3:92:9D:7B:DC:B6:9A:9C:05:3F:11:71:3A:91:81:33:B2:D4
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 019D2816FBEED03FFC64281EA1A8C9DB6EA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 07D0
Signing time: Thu 26 Mar 2026 03:01:28 +0000
Manifest this update: Thu 26 Mar 2026 03:01:28 +0000
Manifest next update: Fri 27 Mar 2026 03:01:28 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: TWsjt2QOW1QGeH8C7d7aHvVs+MBCFKkrLlJA9fggfxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:fb:ee:d0:3f:fc:64:28:1e:a1:a8:c9:db:6e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Mar 26 03:01:28 2026 GMT
Not After : Mar 27 03:01:28 2026 GMT
Subject: CN=299bf3929d7bdcb69a9c053f11713a918133b2d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:86:b8:8f:ae:c7:9a:56:da:a5:f3:8c:76:bc:
9e:a3:d4:9a:ef:ab:87:c3:99:02:da:42:06:55:38:
f9:1f:96:9f:38:d1:0f:7c:93:ca:bd:68:8a:3c:1e:
aa:85:45:f7:42:5b:b0:30:84:8e:2e:91:51:40:8a:
5a:96:c3:fe:7a:71:0f:0f:c8:dc:7d:1c:75:b9:9a:
ad:f8:40:dc:be:64:9c:1a:48:b3:15:0a:c6:46:70:
70:c1:fa:84:e5:06:a8:73:74:55:1c:ab:17:5e:45:
f8:7b:0c:62:dd:28:8f:0f:cf:eb:b5:6c:c5:e1:3b:
6e:76:b9:08:92:98:f2:16:56:be:05:c8:ff:a5:8e:
ba:72:48:8c:e2:76:92:dd:40:62:a9:fa:97:32:52:
d1:48:68:35:f8:3c:76:a8:68:17:c3:7b:17:a4:6f:
83:56:05:a2:0a:31:31:bc:17:48:d2:85:7c:a5:61:
26:90:78:3d:08:77:53:02:26:47:9c:df:f7:19:dc:
61:38:60:11:4d:9a:29:f9:2b:31:15:49:f0:50:7d:
81:ba:e4:cb:5d:32:fe:d2:47:25:65:5a:a8:85:58:
a3:2d:9a:7c:35:ba:67:e7:d3:53:f7:a5:f6:1f:cf:
cd:61:7c:fd:8d:e6:a4:1e:db:79:b1:96:68:6a:8e:
c0:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9B:F3:92:9D:7B:DC:B6:9A:9C:05:3F:11:71:3A:91:81:33:B2:D4
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:7d:6d:e8:31:92:3f:48:06:de:d7:e9:c3:36:54:08:c2:08:
13:5c:5c:5d:51:c1:1e:1b:1f:55:1b:8f:24:51:e1:5e:06:93:
91:5c:a6:8b:c6:aa:8f:b7:4a:ad:79:c6:a6:38:48:c4:a3:8f:
ea:16:ba:d2:42:6c:07:c1:9d:6c:c5:48:b3:8a:8a:5b:7f:a5:
45:2f:0c:8e:f5:a1:f0:75:9f:62:16:00:c2:e0:f0:61:f1:b5:
e8:fc:27:71:39:20:91:92:8c:d9:3d:64:4a:c8:ae:56:8b:ca:
de:84:c0:a2:1a:0f:a7:1f:d4:17:96:6a:0b:c6:d3:19:0a:b4:
d2:5b:7b:8f:7a:42:99:3e:85:97:ef:28:c2:5d:23:7e:d0:b8:
c2:ef:ac:71:b0:09:51:a3:b1:86:c8:f9:bf:b2:a8:d8:84:81:
33:5c:c3:db:07:13:da:f8:68:d3:aa:be:c2:fb:42:20:e5:70:
14:b5:50:e5:4e:8b:2e:5a:91:a1:71:e4:7e:58:27:15:76:98:
5c:1e:3a:2a:fb:a9:b1:d5:72:b7:29:6d:24:81:08:e0:c8:39:
51:17:62:3c:3d:f2:89:65:51:51:37:a2:06:84:68:16:da:c3:
21:19:7d:e4:a2:e3:63:81:34:c0:f5:8e:ea:88:17:0e:8e:e2:
4d:36:01:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:16:12 2026 by rpki-client