Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
File: M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft (raw, json)
Hash identifier: FLKPV8hU6IR74qTHzcBuWNZlHL5FK2aDqVvjnv4CVh4=
Subject key identifier: E3:8B:30:42:A9:14:C4:B3:69:C6:5D:C2:FB:97:38:77:30:5A:8D:1D
Authority key identifier: 33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
Certificate issuer: /CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Certificate serial: 019D9AE354633AB0E6FC18BF4716E3C8296C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
Manifest number: 14A7
Signing time: Fri 17 Apr 2026 10:01:22 +0000
Manifest this update: Fri 17 Apr 2026 10:01:22 +0000
Manifest next update: Sat 18 Apr 2026 10:01:22 +0000
Files and hashes: 1: M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl (hash: KL9vG4gZlkt8Bjd0jT8Kj/x1S74VMUJgxLgvbCEn/Rg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:54:63:3a:b0:e6:fc:18:bf:47:16:e3:c8:29:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3363d72cdd93ab02fe3f788d621d715d9efd7699
Validity
Not Before: Apr 17 10:01:22 2026 GMT
Not After : Apr 18 10:01:22 2026 GMT
Subject: CN=e38b3042a914c4b369c65dc2fb973877305a8d1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:21:2d:86:8e:e2:85:0e:73:45:c6:d8:b4:f1:
84:df:0d:60:88:a7:4f:66:95:36:aa:76:e6:f0:48:
c4:1c:8a:b8:ac:18:17:73:2d:6b:a7:0a:c7:98:6a:
05:d2:45:51:61:36:4f:2f:a3:6e:16:e2:25:f7:5f:
21:63:74:19:6f:54:50:9d:31:02:fa:c9:dd:40:88:
37:ba:8c:e3:39:e8:a9:09:a7:2e:49:ba:02:65:9c:
73:d4:ab:c0:a4:57:f0:54:89:8f:39:bd:75:f8:23:
15:31:5d:e7:8e:13:fa:fd:bc:8d:18:ee:e9:5b:f1:
72:28:d1:f6:07:0a:a2:f3:f7:f2:a4:76:25:59:72:
18:8c:26:71:82:ee:0c:5c:83:10:7a:8a:d7:6e:25:
a7:55:ad:90:5b:dc:de:47:eb:6b:92:16:8b:01:c7:
3e:61:d1:34:c4:2c:7c:be:df:09:8d:e5:b5:8a:c1:
a2:5c:fd:1d:75:b3:cb:60:46:a1:bb:1d:48:f5:d5:
e5:95:17:79:1a:23:cd:4c:7f:60:0c:ee:bd:5d:23:
0a:8a:0a:70:3d:49:d8:1a:b7:81:f8:66:c1:a7:92:
67:b4:d3:61:20:a1:20:39:d0:b7:57:9b:83:4a:30:
0c:9d:88:30:87:25:03:c3:9c:72:a3:04:cd:1d:80:
c6:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8B:30:42:A9:14:C4:B3:69:C6:5D:C2:FB:97:38:77:30:5A:8D:1D
X509v3 Authority Key Identifier:
keyid:33:63:D7:2C:DD:93:AB:02:FE:3F:78:8D:62:1D:71:5D:9E:FD:76:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2PXLN2TqwL-P3iNYh1xXZ79dpk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/c9c0d8-7013-46c3-9c28-434f9e0d750c/1/M2PXLN2TqwL-P3iNYh1xXZ79dpk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:4a:39:92:91:99:19:4a:d0:67:12:6f:37:57:c1:bb:87:e3:
00:65:1b:1d:49:3a:ab:10:f6:9e:ef:4b:39:81:14:c4:0a:4d:
12:11:ee:f1:c2:f6:fa:97:d1:83:44:18:48:65:d9:ef:be:1f:
3d:c8:e6:da:3f:92:a4:67:52:f9:bd:a9:f6:77:9f:e4:62:01:
43:ac:af:2b:2b:54:97:eb:28:91:4d:f8:79:da:29:d9:09:75:
13:0e:06:04:48:e2:e6:74:cb:38:72:69:0e:3a:b3:62:f5:d5:
c4:f2:1c:55:1a:a8:82:ba:fb:33:8b:49:86:d1:4c:0d:8e:03:
49:fd:6e:9b:47:1b:97:a3:d9:a3:1e:6e:e0:58:67:29:11:0d:
38:26:fc:52:05:27:50:31:bf:91:f2:ef:f9:71:75:c9:80:82:
99:df:36:e0:44:a7:42:89:be:0a:7a:8e:3b:6c:90:70:83:d7:
86:77:c2:2a:11:18:ba:dc:24:59:e7:0e:0e:6d:0b:72:25:55:
ad:31:9f:c2:1a:b9:ff:f4:42:42:7c:8f:dc:9a:f6:b5:57:b7:
b2:99:c0:74:38:5c:70:f2:f8:49:62:6a:f0:03:a2:c8:42:39:
51:30:36:03:f9:62:ff:6d:26:19:04:6f:42:3b:74:b6:86:5e:
4a:aa:9d:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:45:14 2026 by rpki-client