Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File: sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier: 3n64hL0fnKRo9rQm6u2kfZXlGHETf0RRQauEHGUvImo=
Subject key identifier: B6:29:85:67:D9:8A:52:EB:54:D9:0A:80:CD:C8:BA:67:3E:31:96:4D
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer: /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial: 019D2704B9663E7EEF50C0F1463EBE1A088D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number: 1881
Signing time: Wed 25 Mar 2026 22:01:53 +0000
Manifest this update: Wed 25 Mar 2026 22:01:53 +0000
Manifest next update: Thu 26 Mar 2026 22:01:53 +0000
Files and hashes: 1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: HGLa9kKISCM+WLiQVaiB1FxWVS3ZcxgwzRrgSH6WwGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:b9:66:3e:7e:ef:50:c0:f1:46:3e:be:1a:08:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Validity
Not Before: Mar 25 22:01:53 2026 GMT
Not After : Mar 26 22:01:53 2026 GMT
Subject: CN=b6298567d98a52eb54d90a80cdc8ba673e31964d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:27:79:91:7d:1f:fb:34:66:9d:99:7e:88:26:
a4:87:ec:73:56:ee:f7:29:2d:fa:f5:0e:40:10:03:
8d:e1:d1:f9:29:5d:47:5e:c9:3d:b2:4d:40:a9:8d:
d6:30:09:46:15:f6:5a:79:f1:63:1d:d2:59:df:18:
9a:5d:7c:e7:b7:0a:06:be:b2:be:45:c3:57:96:20:
90:de:75:74:17:0f:d9:d3:0f:fe:36:ae:03:15:7a:
b1:71:5a:6e:d4:78:1a:5a:de:53:c6:37:33:e4:0e:
f2:07:4c:60:ec:0c:3b:2d:47:02:de:24:be:13:1e:
37:d1:33:aa:d0:93:57:2e:7f:79:bc:7b:33:e7:f6:
e5:9f:2b:ef:46:62:49:c4:ce:43:00:cc:53:a3:21:
9a:9e:3f:0e:49:4c:18:80:49:b8:88:c6:76:55:05:
0d:50:b9:04:23:d9:db:f7:9b:6e:9b:67:08:b9:cf:
cc:a7:22:5e:9d:72:36:08:6f:58:bb:5b:1f:d8:75:
38:97:98:61:bc:59:f8:e4:fa:da:d8:44:5c:a7:8f:
3d:07:1b:99:77:fb:a3:85:d3:78:74:53:bf:d2:db:
23:16:6a:63:79:4a:f1:44:27:64:0d:80:57:28:ee:
23:3b:9c:8f:b6:fd:d6:4c:4c:24:4b:ba:11:e7:6c:
91:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:29:85:67:D9:8A:52:EB:54:D9:0A:80:CD:C8:BA:67:3E:31:96:4D
X509v3 Authority Key Identifier:
keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:96:32:c3:89:87:ec:c0:d3:60:5f:f0:0e:41:62:f4:29:b5:
22:ab:8b:fc:b6:55:c0:ef:84:06:ee:e7:7d:0c:fd:d7:3e:a8:
3e:af:1a:cd:e7:3c:63:ef:22:d9:51:f0:4b:3b:2d:3f:4c:e7:
28:40:50:46:1b:2c:c4:6c:05:39:8d:cc:38:fa:17:76:86:bc:
ad:90:ac:53:98:1d:e1:ab:8b:9b:bc:16:e1:c2:4e:22:83:99:
44:4a:d2:88:e8:62:95:0b:d3:cd:9f:ea:49:f4:f0:d9:7d:22:
db:e6:6a:8e:59:f2:95:87:1f:22:eb:46:ee:5c:d4:cd:51:6c:
55:44:93:a1:7a:13:02:29:51:7f:ec:4c:52:03:b3:d7:24:0e:
b0:4c:d7:07:e0:46:bd:27:1f:22:33:57:5c:68:f1:3d:c9:cf:
0a:6a:f2:57:27:a8:63:f1:bf:f7:d3:c3:ef:15:53:c6:e5:c8:
c2:a3:59:07:45:1e:58:c0:d2:51:cf:13:c4:47:21:9d:1e:b8:
e5:9e:f2:47:1b:8a:78:7d:4b:ad:e8:f5:e2:8b:bf:ca:7a:49:
e9:6c:80:7a:55:5c:cf:26:46:eb:0a:f0:dd:99:3c:28:22:2c:
62:b4:9a:8b:64:30:d2:b3:e8:a1:be:86:28:2c:69:5a:39:4e:
32:5b:70:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:45 2026 by rpki-client