Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
File: tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft (raw, json)
Hash identifier: Osf0Ye2XqDW0htJP1iAerS5+Mgk96DRIDWdIxtFejNU=
Subject key identifier: 1C:3C:2C:37:E6:54:4B:CB:6B:09:FC:60:9C:08:12:9A:99:98:3E:A8
Authority key identifier: B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8
Certificate issuer: /CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
Certificate serial: 019CABD9FB80FE4593781D71F6917225068A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
Manifest number: 0A5B
Signing time: Mon 02 Mar 2026 00:01:55 +0000
Manifest this update: Mon 02 Mar 2026 00:01:55 +0000
Manifest next update: Tue 03 Mar 2026 00:01:55 +0000
Files and hashes: 1: tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl (hash: vxoAW9qOZIogfV4sxy9cc2gwtHd8gVa73aEEtdOweSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:fb:80:fe:45:93:78:1d:71:f6:91:72:25:06:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4a3a9be77e2d9fde7ffe1f51629f94e98ea3cd8
Validity
Not Before: Mar 2 00:01:55 2026 GMT
Not After : Mar 3 00:01:55 2026 GMT
Subject: CN=1c3c2c37e6544bcb6b09fc609c08129a99983ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5e:f1:a4:6c:dd:a2:23:90:91:f9:ad:56:b5:
e1:42:5d:8d:04:58:e4:9a:4b:9e:01:21:2f:17:50:
c2:6d:1c:5d:69:fb:d6:3e:82:36:de:70:9a:6d:cc:
32:78:e4:3e:ab:00:c6:cc:da:fb:75:14:0d:13:c6:
f8:6a:ae:f0:2e:d6:60:6c:d4:a0:76:4e:0e:e8:17:
92:ea:31:c7:b9:fe:3e:8c:4a:43:b5:28:d8:73:d5:
6f:af:e6:6b:0f:6a:06:50:6a:93:01:a1:22:fd:10:
a4:6c:79:63:76:65:66:39:aa:f7:cc:c7:a9:15:29:
78:48:8e:8c:0a:6e:5c:ce:85:de:6b:c7:ac:a5:f7:
c4:2f:ce:2d:94:b9:f6:4c:94:d1:1d:62:52:f6:01:
ae:db:24:e5:de:6a:9e:bd:bc:37:fc:fb:e0:4d:5e:
9f:10:c2:69:ae:1d:23:36:44:3b:52:7a:b2:c5:50:
c1:19:07:42:0a:12:27:8c:2e:60:bf:7d:16:70:de:
a7:e2:f2:39:d1:dd:76:55:0f:a9:81:f5:1f:23:28:
5a:c5:68:e5:18:17:09:53:ec:c4:20:45:e5:80:49:
dc:db:6f:97:f0:df:fe:d6:81:a3:bf:89:35:92:1e:
ba:af:98:5e:ce:53:03:c1:7a:41:a7:97:eb:9e:42:
7d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:3C:2C:37:E6:54:4B:CB:6B:09:FC:60:9C:08:12:9A:99:98:3E:A8
X509v3 Authority Key Identifier:
keyid:B4:A3:A9:BE:77:E2:D9:FD:E7:FF:E1:F5:16:29:F9:4E:98:EA:3C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tKOpvnfi2f3n_-H1Fin5TpjqPNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/dd4148-89ab-48f8-8d6f-33cfa511b0c7/1/tKOpvnfi2f3n_-H1Fin5TpjqPNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:20:89:85:11:d9:3a:8f:1c:ea:ef:0e:ff:2e:d1:ef:1a:bb:
30:ff:6f:a2:00:89:e4:fe:40:f2:47:a6:49:7f:63:80:ea:18:
bc:31:94:84:42:94:2a:ea:ac:cd:05:7c:72:48:01:67:35:7d:
76:c4:d1:35:f7:ac:af:79:df:ad:7c:ac:da:70:f8:69:64:df:
aa:9d:fa:cf:d9:f5:47:40:d9:8b:80:be:07:8e:f6:3f:52:f3:
c8:00:a5:0a:ba:55:33:8d:23:09:cf:5b:b5:c4:9f:a1:6d:51:
0c:67:7d:c7:dd:fe:ba:9a:1a:cb:31:3a:93:34:c6:3a:a7:94:
dc:81:d4:c5:ae:76:2d:9d:69:7a:cd:32:5f:09:e6:93:e5:31:
1e:aa:55:5e:ce:bc:6e:54:a6:46:04:f9:4f:61:90:46:4c:9b:
40:b5:6c:f1:21:e2:fa:39:98:08:70:49:01:52:85:28:7b:1d:
6a:51:19:ee:fe:d5:5f:6d:e1:75:29:b8:94:51:3c:13:07:83:
85:d3:6d:97:aa:b0:5f:10:36:ed:15:27:08:5b:27:b0:90:30:
77:cd:35:ba:95:a7:0d:3e:9e:cc:d9:23:08:97:97:50:ae:c8:
13:57:75:17:f7:1c:a7:c4:4a:e0:e3:0a:14:50:49:8e:1d:39:
8d:ac:8c:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:37:13 2026 by rpki-client