Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.mft
File: MFKpUR4ZpULAuyN4td6PT7RSHb4.mft (raw, json)
Hash identifier: czztUPYOkLa5WrJr9YkpoNl2t+bBtpWHYJVAvBBhbpc=
Subject key identifier: 40:46:75:DA:27:E0:B5:0C:70:E8:1F:D2:38:EB:19:38:8A:3E:74:8C
Authority key identifier: 30:52:A9:51:1E:19:A5:42:C0:BB:23:78:B5:DE:8F:4F:B4:52:1D:BE
Certificate issuer: /CN=3052a9511e19a542c0bb2378b5de8f4fb4521dbe
Certificate serial: 019D9C9A3DCBE98CA0389F15983B5E49A5A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFKpUR4ZpULAuyN4td6PT7RSHb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.mft
Manifest number: 1852
Signing time: Fri 17 Apr 2026 18:00:47 +0000
Manifest this update: Fri 17 Apr 2026 18:00:47 +0000
Manifest next update: Sat 18 Apr 2026 18:00:47 +0000
Files and hashes: 1: MFKpUR4ZpULAuyN4td6PT7RSHb4.crl (hash: 2WTdPMqXkjRRPs3y8Za7gJneah2JtGvGoGY7PCG34j8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFKpUR4ZpULAuyN4td6PT7RSHb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:3d:cb:e9:8c:a0:38:9f:15:98:3b:5e:49:a5:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3052a9511e19a542c0bb2378b5de8f4fb4521dbe
Validity
Not Before: Apr 17 18:00:47 2026 GMT
Not After : Apr 18 18:00:47 2026 GMT
Subject: CN=404675da27e0b50c70e81fd238eb19388a3e748c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f7:3d:1d:27:d0:65:b5:c1:61:f1:4a:00:94:
64:ef:1d:7b:16:9b:7d:4e:c0:0d:0f:ac:0b:39:86:
5e:4d:26:67:96:51:33:80:0e:41:79:f2:e1:cc:af:
24:f3:58:28:be:b2:c9:15:cc:ce:c3:a5:fb:61:41:
45:ea:e0:a7:55:b4:2f:3e:aa:44:12:98:df:01:59:
75:37:e5:cb:e6:ed:94:6e:f1:a5:08:40:8b:93:62:
0a:e4:f0:cf:83:e1:15:49:ee:c0:b0:8e:d7:bb:f8:
67:d0:26:05:bb:61:dd:d6:64:79:21:28:8b:e4:e1:
0d:70:cf:48:bd:69:65:89:1b:89:49:de:99:99:d9:
da:b7:7e:f2:f7:6a:cc:80:1a:96:96:a9:38:bf:7d:
01:e4:4e:e0:0d:5b:5b:82:26:ee:07:81:05:5a:e2:
2a:3b:1c:97:c2:dd:5e:a0:78:44:c0:6b:74:8b:0c:
43:95:69:a6:d9:44:28:ce:1f:64:b5:92:ac:b2:e8:
30:6b:00:1c:f5:98:19:d3:9d:a5:f4:72:ab:16:58:
a0:22:fc:f9:0a:7d:8f:58:9a:52:c9:31:c0:15:93:
b6:75:71:c9:06:62:7f:b4:d5:39:0e:63:ac:34:3f:
a8:47:49:52:98:d4:b8:df:8f:fb:9d:61:42:a8:8e:
e7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:46:75:DA:27:E0:B5:0C:70:E8:1F:D2:38:EB:19:38:8A:3E:74:8C
X509v3 Authority Key Identifier:
keyid:30:52:A9:51:1E:19:A5:42:C0:BB:23:78:B5:DE:8F:4F:B4:52:1D:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFKpUR4ZpULAuyN4td6PT7RSHb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/d35a1d-94e9-4eb4-83f4-020e1851e943/1/MFKpUR4ZpULAuyN4td6PT7RSHb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:74:20:ec:2f:97:9b:e1:15:03:bc:7a:7e:15:86:dc:38:f0:
52:de:6f:03:66:dd:cc:f3:8c:04:e8:fe:a7:eb:2a:f1:19:b0:
06:f7:79:b4:9e:61:36:1b:41:a5:92:54:48:74:34:4c:f8:1b:
32:9a:86:94:9c:85:c8:88:3e:37:2f:ee:9f:4c:47:98:ab:36:
b6:25:63:0b:39:1c:90:51:47:6a:21:e6:05:eb:05:4a:22:42:
2a:7a:7e:f7:65:be:f2:4f:28:da:c3:9c:b9:50:ff:59:b7:0b:
cf:b3:15:20:c0:aa:d1:21:7f:36:f8:f0:ff:4e:78:32:56:95:
ad:61:36:77:8a:e1:cf:a7:2e:1b:7d:d3:4b:6a:a6:0f:d3:ed:
90:8c:89:36:91:3c:e1:47:84:10:68:17:29:df:88:2d:cb:d5:
6c:25:92:b4:40:41:53:b5:8c:a2:d1:1f:dc:74:28:a3:8f:ef:
2c:b8:4b:cb:c0:ff:f7:6c:40:12:de:e9:fb:19:4a:07:5b:1c:
04:9a:07:e1:8e:15:60:7a:c6:9f:cc:a5:3b:b4:c0:54:0f:11:
39:aa:04:6b:53:09:de:b1:31:97:4c:c7:5f:b1:45:57:c4:d8:
f4:9e:0a:40:1e:4b:86:07:aa:e3:cf:6b:b4:a8:ed:69:cb:28:
1b:c7:95:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:02:09 2026 by rpki-client