Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
File: obfHtAmGdKBPsXeELOxO65v4nh4.mft (raw, json)
Hash identifier: LFYIc8KloJyANbqEYBUawT7E4o18KV3c/cyC6Atpj1o=
Subject key identifier: FD:54:CD:C9:43:32:40:6D:E0:8C:7E:0B:7D:5B:BF:98:FA:29:99:2C
Authority key identifier: A1:B7:C7:B4:09:86:74:A0:4F:B1:77:84:2C:EC:4E:EB:9B:F8:9E:1E
Certificate issuer: /CN=a1b7c7b4098674a04fb177842cec4eeb9bf89e1e
Certificate serial: 019D98F4CCBB1A8024F0CC9EA3A6994262DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
Manifest number: 18BD
Signing time: Fri 17 Apr 2026 01:01:13 +0000
Manifest this update: Fri 17 Apr 2026 01:01:13 +0000
Manifest next update: Sat 18 Apr 2026 01:01:13 +0000
Files and hashes: 1: obfHtAmGdKBPsXeELOxO65v4nh4.crl (hash: 2Lz3x7NVXBSUd7bgpnwPbpPhDpdlFyqbN9NPXgLukFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:cc:bb:1a:80:24:f0:cc:9e:a3:a6:99:42:62:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b7c7b4098674a04fb177842cec4eeb9bf89e1e
Validity
Not Before: Apr 17 01:01:13 2026 GMT
Not After : Apr 18 01:01:13 2026 GMT
Subject: CN=fd54cdc94332406de08c7e0b7d5bbf98fa29992c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:60:cb:25:65:31:f9:2c:b9:f6:f7:49:54:51:
ba:a0:3c:59:f5:51:e9:d9:02:de:ca:e9:2e:f6:3b:
a2:95:7c:d8:3c:2f:2d:79:de:4e:6e:c0:81:d9:6e:
b6:49:ce:e1:a8:26:28:a0:3a:68:67:b4:e3:fd:4e:
46:04:a6:2c:86:22:d8:71:a1:4e:ea:77:5f:42:80:
d1:20:98:4c:14:1c:72:aa:e8:de:12:78:ee:c0:6e:
c0:5b:03:be:b4:dc:2a:2e:b4:2d:9d:c7:9a:89:3f:
bf:27:9e:f4:79:51:0c:46:a7:13:8b:e8:2b:3e:fc:
2a:f6:77:95:ff:9c:27:99:6e:d5:fd:32:aa:ba:84:
a0:3b:88:7e:fd:78:14:7e:d0:07:e4:9b:bd:3f:94:
7c:36:10:79:a7:05:a0:6f:40:a7:42:69:24:1a:48:
ca:29:86:67:77:10:c6:dd:6b:a2:c4:4a:9b:e0:cb:
13:9c:b7:9f:5e:83:e1:4f:4f:63:82:75:b3:3a:c6:
9a:b6:d2:0e:92:4b:83:7b:4d:d1:24:1e:1c:8d:16:
72:91:f3:15:54:f4:2c:14:26:2e:63:39:6d:24:0e:
bb:87:ac:9c:85:2f:5c:49:b6:b8:9e:88:0e:d7:1d:
6c:dc:aa:b9:f8:e5:fd:ce:cd:d8:f1:f1:ae:e1:dc:
33:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:54:CD:C9:43:32:40:6D:E0:8C:7E:0B:7D:5B:BF:98:FA:29:99:2C
X509v3 Authority Key Identifier:
keyid:A1:B7:C7:B4:09:86:74:A0:4F:B1:77:84:2C:EC:4E:EB:9B:F8:9E:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obfHtAmGdKBPsXeELOxO65v4nh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/85ae1b-b077-448e-a328-7c05a1ff549b/1/obfHtAmGdKBPsXeELOxO65v4nh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:9e:9a:31:72:4e:ec:bc:8e:6b:22:27:88:6a:55:4a:75:8d:
1c:49:25:1e:97:ba:38:63:02:50:95:b1:bf:38:78:6f:3c:48:
e3:a5:31:27:2c:52:25:96:92:41:11:01:c3:9d:7c:b7:c4:70:
fa:dc:cc:bf:aa:3b:c4:ce:cb:03:90:30:8c:f9:56:73:e3:15:
93:b1:bc:9f:41:94:ce:4b:36:58:e6:c9:41:db:b9:29:aa:5e:
e6:57:5c:49:1a:72:5f:ff:e5:84:d8:59:8d:16:a5:c2:0a:d9:
67:6b:bb:ec:7b:95:e3:13:f5:80:c0:1c:aa:3f:94:0d:81:39:
55:b7:e6:1a:3f:b5:b0:a1:3b:ed:9f:fb:8b:56:c5:4b:15:70:
6b:81:58:9b:1b:cd:85:7f:b8:7d:40:8b:39:21:e6:4f:25:f8:
fb:9e:33:2b:12:70:03:96:3e:34:dd:06:48:ad:d4:8f:70:43:
b0:8b:23:94:5f:29:c7:82:96:d4:ef:1b:7e:69:52:b0:6a:40:
33:f4:3c:98:e1:6f:7d:9c:fd:03:6e:50:10:3b:75:52:43:70:
1b:d3:41:4d:b6:49:f0:58:18:7c:b2:77:97:c9:0e:b1:ba:24:
a5:90:fe:c3:b8:94:0d:b0:4d:9f:e9:5c:99:d8:88:0b:8e:38:
07:96:d3:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:43:10 2026 by rpki-client