Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
File: U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft (raw, json)
Hash identifier: kotQxl15w+Hj5H8+wui4eVYmVO/NXIumF6fxB1ekxzM=
Subject key identifier: 66:FD:10:5B:7C:81:95:FF:4F:A3:0D:C7:FB:E8:54:D5:0F:6D:91:65
Authority key identifier: 53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
Certificate issuer: /CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Certificate serial: 019D265EFD4E41C86C6F6CF4491E6A3EA65D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
Manifest number: 1883
Signing time: Wed 25 Mar 2026 19:00:52 +0000
Manifest this update: Wed 25 Mar 2026 19:00:52 +0000
Manifest next update: Thu 26 Mar 2026 19:00:52 +0000
Files and hashes: 1: U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl (hash: e5ruWK+Ianp5e4FP9BI5YsvbZHB5ucK6alp9wCrKJt8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5e:fd:4e:41:c8:6c:6f:6c:f4:49:1e:6a:3e:a6:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Validity
Not Before: Mar 25 19:00:52 2026 GMT
Not After : Mar 26 19:00:52 2026 GMT
Subject: CN=66fd105b7c8195ff4fa30dc7fbe854d50f6d9165
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6f:eb:2c:d3:8b:c8:73:d8:b5:22:b0:ec:c6:
cb:dc:a0:d0:02:96:2f:a1:42:97:fd:95:86:df:24:
64:d1:14:35:f6:19:77:d7:e7:7f:99:21:22:6a:55:
76:81:71:e5:6e:2b:b2:f7:0d:80:58:59:e0:e4:22:
db:23:7f:67:93:bb:d0:bc:33:bb:e6:6c:17:38:1e:
cf:ed:ce:34:58:9f:4d:f4:b8:07:db:85:02:22:5e:
85:be:bf:30:f3:e1:d3:36:ca:9a:cb:3f:76:71:fa:
0b:22:1c:08:e2:e4:34:71:b3:5b:42:82:fd:3c:84:
fc:30:68:0c:db:b2:51:56:12:97:90:2f:9e:1d:d5:
6e:30:f1:4d:5a:5b:41:48:68:5d:c1:aa:42:cd:63:
e6:3b:22:36:82:50:b6:8a:17:7e:ca:f9:5e:03:e2:
0c:89:4f:25:0d:5a:3c:85:88:6d:fc:08:39:ce:81:
66:4d:de:b3:cd:5d:f5:75:2e:25:23:e2:15:d7:9b:
0c:61:f5:2c:94:c5:79:2e:08:9c:6e:c7:25:96:0b:
ce:8b:95:9c:d8:b5:c3:e6:31:96:00:2c:0c:dc:b6:
ea:bf:c6:b6:01:3a:1f:91:a3:7d:f5:ba:9c:4c:62:
a2:e9:9a:dd:0f:13:a2:93:b0:27:14:53:2d:36:12:
8d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:FD:10:5B:7C:81:95:FF:4F:A3:0D:C7:FB:E8:54:D5:0F:6D:91:65
X509v3 Authority Key Identifier:
keyid:53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:cf:e3:c2:79:95:81:ea:04:2b:e9:8e:0b:47:d3:b0:53:ed:
dc:cb:5a:9b:00:57:13:87:51:24:31:51:32:70:76:df:c2:77:
76:5e:d6:a1:e7:bc:3d:81:ba:4a:64:3c:a7:ff:ee:fc:3c:ea:
0d:e6:50:6c:1b:e8:5a:31:84:8e:c8:b0:af:88:53:3d:2c:b5:
a4:4c:83:c4:6a:54:1c:1a:60:a6:9b:14:60:fc:2f:98:d1:16:
b3:ec:3d:db:80:4b:1b:26:a6:5c:5c:08:45:b2:af:a6:20:36:
53:54:fb:29:e3:8e:e5:cb:1e:2e:e3:bc:f2:ce:ee:45:8e:ac:
db:83:50:ec:d4:bb:d6:2b:41:2a:d0:fe:63:c5:ef:c6:0b:3c:
de:c6:56:8c:a5:62:aa:b5:c8:3f:f1:62:66:54:d2:50:9f:f1:
c7:dc:8e:77:d2:23:c4:90:71:1d:82:7c:cb:bb:30:12:02:c3:
51:e6:0a:31:84:62:6d:66:73:23:d2:5d:cc:a1:c2:ce:9b:41:
91:51:a0:24:d9:78:c8:4a:71:a9:e4:84:03:9b:75:7b:91:7b:
02:78:fc:9d:91:3e:0d:77:4b:d2:b2:11:71:0a:1c:12:99:82:
5a:56:e2:d5:8f:27:79:89:7e:ec:39:1f:4d:0f:aa:09:a7:50:
32:a8:b3:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:24 2026 by rpki-client