Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
File: X06OdhPaoX6FqhB4yOwlXPGNQio.mft (raw, json)
Hash identifier: DncXR/BOblUNSrnz8B1Qy483Wt060EjA4a52ZjDJMBg=
Subject key identifier: 94:9B:62:BA:AF:A1:5B:F6:1F:50:D0:41:08:31:AB:D6:D8:C9:5A:F1
Authority key identifier: 5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
Certificate issuer: /CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Certificate serial: 019CAB6B420E0067C7672C080A3C780D2154
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
Manifest number: 0F71
Signing time: Sun 01 Mar 2026 22:00:58 +0000
Manifest this update: Sun 01 Mar 2026 22:00:58 +0000
Manifest next update: Mon 02 Mar 2026 22:00:58 +0000
Files and hashes: 1: X06OdhPaoX6FqhB4yOwlXPGNQio.crl (hash: T0du1elhP9whWhVAuXBQIGzHuq4bQ98vmfZnV0XFfB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:42:0e:00:67:c7:67:2c:08:0a:3c:78:0d:21:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f4e8e7613daa17e85aa1078c8ec255cf18d422a
Validity
Not Before: Mar 1 22:00:58 2026 GMT
Not After : Mar 2 22:00:58 2026 GMT
Subject: CN=949b62baafa15bf61f50d0410831abd6d8c95af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:ae:74:0d:38:1a:46:51:8f:d0:c8:97:0a:2c:
81:f7:6b:09:0c:fc:94:d9:c3:b1:1c:b2:7a:c4:01:
13:93:fb:69:16:5c:1e:c6:4e:98:73:5a:b2:33:77:
cb:56:6b:f1:89:d9:69:23:18:41:89:87:13:d0:63:
09:ca:23:2d:04:96:17:53:e2:12:60:8e:78:9e:ca:
62:8c:34:ab:50:f5:39:5c:5c:91:64:e6:91:c8:b0:
7e:9a:d5:8d:e6:89:fc:0b:2e:73:ad:8c:bd:1b:f9:
4d:94:58:98:31:80:9d:4a:6f:fb:0e:58:fe:f6:f1:
07:ea:54:69:cc:ea:09:03:9d:21:d1:0d:2f:74:3d:
fd:a3:a9:b1:0a:c2:a5:52:0c:31:bb:eb:68:99:1f:
89:13:46:ea:7a:c3:13:4e:21:e0:32:30:81:ca:9d:
ef:2c:10:9f:82:6d:fc:f6:24:8f:0f:db:d3:1b:40:
38:60:8b:cf:01:33:47:2d:72:ca:76:e9:fd:6f:0b:
ba:31:0e:8f:4e:77:9e:14:31:68:de:9d:3c:87:9f:
e1:7e:f7:56:c4:5b:be:4a:d5:79:84:84:c6:5f:01:
ab:56:f9:c3:8a:b3:78:a4:eb:e4:ed:1f:04:9c:3d:
1d:3a:a1:a4:37:f5:78:12:dd:f5:0b:6d:88:8f:f5:
57:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:9B:62:BA:AF:A1:5B:F6:1F:50:D0:41:08:31:AB:D6:D8:C9:5A:F1
X509v3 Authority Key Identifier:
keyid:5F:4E:8E:76:13:DA:A1:7E:85:AA:10:78:C8:EC:25:5C:F1:8D:42:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X06OdhPaoX6FqhB4yOwlXPGNQio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/70bfd7-711d-4ad9-82f7-2f3c0032e446/1/X06OdhPaoX6FqhB4yOwlXPGNQio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:a3:19:d3:1b:4d:56:53:38:2c:1e:36:0a:0d:8d:e2:cf:d0:
98:4a:19:d3:d6:a3:a9:2f:6a:b6:1d:38:5f:ef:51:2f:77:81:
92:de:13:6d:5a:eb:d0:56:ae:57:9a:15:2f:a7:92:f4:a8:2a:
26:bf:07:61:5e:28:e1:f5:13:31:57:5c:bc:b9:aa:f0:e9:f5:
74:a8:1e:6a:7d:de:5b:73:60:70:28:2a:cf:5e:47:29:e1:a1:
7f:5d:6d:5b:68:aa:bc:15:8f:31:97:3e:fb:60:ac:65:be:4b:
89:dc:bb:84:ad:80:56:81:47:9e:0d:e4:db:ff:bc:57:d7:32:
49:13:8d:5e:01:4d:a4:74:62:2c:88:67:55:9b:fc:40:a7:65:
0a:aa:fe:00:e9:11:4d:ab:98:4e:8c:3a:ec:f1:db:80:57:e6:
59:d2:4d:ff:20:ca:ba:4c:fe:9c:b5:d9:21:ad:aa:47:db:c3:
4c:c3:ed:b4:48:0e:49:43:20:44:21:71:7c:ef:d1:b4:86:eb:
23:7e:b8:d5:80:cb:7c:6f:61:44:df:4d:40:c3:2c:11:50:1d:
d9:09:75:b9:10:44:88:f0:57:17:6b:92:6b:46:65:a5:16:c8:
3b:89:fb:79:49:90:0a:97:d0:38:02:f6:83:cd:16:7c:ad:72:
6b:19:10:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:16:37 2026 by rpki-client