Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
File: rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft (raw, json)
Hash identifier: O+wTGd9c6FqsWhvo/oTFZLufrROq7OBr1qdLxaAnwaQ=
Subject key identifier: AC:BE:2E:1C:9E:DF:07:33:55:33:2B:DF:20:5D:53:AA:7F:74:7E:9F
Authority key identifier: AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
Certificate issuer: /CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Certificate serial: 019D9C9A97C39E9FCB1D0EB0AD44FC20F1D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
Manifest number: 0DC0
Signing time: Fri 17 Apr 2026 18:01:10 +0000
Manifest this update: Fri 17 Apr 2026 18:01:10 +0000
Manifest next update: Sat 18 Apr 2026 18:01:10 +0000
Files and hashes: 1: rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl (hash: DF02wCA+YBFAdoj1WspL4HfEAr83mBlmKGQDcUm8A+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:9a:97:c3:9e:9f:cb:1d:0e:b0:ad:44:fc:20:f1:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aec5c7ab5b72181e4e4211322215e9776b4900f9
Validity
Not Before: Apr 17 18:01:10 2026 GMT
Not After : Apr 18 18:01:10 2026 GMT
Subject: CN=acbe2e1c9edf073355332bdf205d53aa7f747e9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cd:e0:51:14:9c:8f:b9:41:eb:1e:e1:ed:38:
39:e1:55:80:79:e8:7b:9c:ec:46:56:96:bd:fb:43:
eb:74:0b:be:f4:6b:94:85:3a:6f:25:92:4b:ce:5e:
e6:69:23:0c:fb:53:9f:b3:dd:1c:6e:38:3e:a0:d7:
95:07:a4:cb:db:ef:01:d1:e5:69:c8:28:89:df:50:
f4:97:53:1e:f9:2d:dd:0f:2b:5c:62:ba:81:00:61:
37:4f:48:64:11:60:a8:dd:03:72:cb:47:26:fb:bf:
17:ae:b8:4c:88:04:11:ad:75:1c:a7:da:ae:8f:de:
f8:5c:8c:20:a3:85:64:63:7a:8e:94:c7:bd:cf:e0:
78:5b:08:ba:e3:1d:d9:ef:22:93:00:c5:0e:91:9e:
32:6b:59:01:8a:64:f0:42:0e:d7:b2:2d:ac:1f:e5:
07:80:4c:03:6a:bd:ae:3d:00:0a:35:7f:a7:12:92:
dd:11:da:3c:03:44:87:fa:13:dc:13:a4:45:09:52:
c2:41:17:e3:85:98:e9:62:12:32:79:3c:06:fa:00:
3c:b3:b4:2d:84:9a:4c:7f:b0:ab:02:b2:18:57:60:
94:14:48:99:a7:03:0f:ce:8d:e8:c8:de:fd:a1:17:
e1:e1:12:99:36:96:78:f4:50:60:36:29:77:f1:06:
68:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:BE:2E:1C:9E:DF:07:33:55:33:2B:DF:20:5D:53:AA:7F:74:7E:9F
X509v3 Authority Key Identifier:
keyid:AE:C5:C7:AB:5B:72:18:1E:4E:42:11:32:22:15:E9:77:6B:49:00:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rsXHq1tyGB5OQhEyIhXpd2tJAPk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/98818d-f8b3-4645-86a8-302d92224cb2/1/rsXHq1tyGB5OQhEyIhXpd2tJAPk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:9a:73:2d:ee:a6:b0:c3:5a:e6:1b:c2:a1:83:09:e2:bb:d5:
45:6a:d3:a9:9d:3b:eb:30:4a:c5:e5:c0:60:0c:4e:07:cf:4f:
b9:5c:d7:31:87:99:57:3d:28:dc:b3:0b:ce:bd:11:09:33:bf:
a9:a2:63:10:ec:9d:4e:62:c0:e3:34:47:e2:89:ee:1a:70:c9:
b8:6e:cf:a7:ec:d0:a3:22:11:78:ab:53:1c:62:30:f7:59:f3:
c5:4e:17:0d:3b:ea:bc:17:e1:ba:28:2a:2b:65:d5:68:67:ec:
24:b7:c5:37:70:00:93:28:87:bb:85:f4:57:4e:8f:b3:36:4a:
11:25:ea:52:c1:9f:f2:5c:3a:ca:3d:0d:36:81:d4:61:ae:7e:
6c:bf:5f:47:41:54:39:63:9e:d3:e2:b6:48:cb:22:6f:1c:66:
fe:8d:26:73:ad:86:5a:f8:b1:10:d3:2f:1a:5a:00:6b:7b:e2:
53:45:2f:42:65:e2:cb:86:2a:c8:7e:09:f0:ad:21:c9:05:e2:
35:06:fe:15:27:cc:3b:6e:59:f3:72:cf:1f:e8:a1:c8:70:98:
4b:87:1c:9a:eb:67:15:6b:f2:7e:af:57:d3:ff:fa:4a:9c:7d:
f5:e6:30:91:6a:be:81:2a:f3:5b:2b:3d:f2:db:8b:0f:65:50:
d1:d3:0a:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:32:23 2026 by rpki-client