Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
File: rRIanMsoPqIejQoHCi4LakDph30.mft (raw, json)
Hash identifier: 2knRSXgkoTRx6cGkP30u+v3+8C/AVyvn4yACl/ZPlig=
Subject key identifier: 68:F4:85:E0:1D:DA:98:07:73:95:CF:34:92:82:5C:20:6B:88:D3:87
Authority key identifier: AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
Certificate issuer: /CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Certificate serial: 019CAB6ACB0484BDA2C7CAA82DF0B8CE60E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
Manifest number: 1842
Signing time: Sun 01 Mar 2026 22:00:28 +0000
Manifest this update: Sun 01 Mar 2026 22:00:28 +0000
Manifest next update: Mon 02 Mar 2026 22:00:28 +0000
Files and hashes: 1: rRIanMsoPqIejQoHCi4LakDph30.crl (hash: CHh5GZybL6rlzzNCf3GLYc9Ibgj6mavTZHxBuDancWA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6a:cb:04:84:bd:a2:c7:ca:a8:2d:f0:b8:ce:60:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad121a9ccb283ea21e8d0a070a2e0b6a40e9877d
Validity
Not Before: Mar 1 22:00:28 2026 GMT
Not After : Mar 2 22:00:28 2026 GMT
Subject: CN=68f485e01dda98077395cf3492825c206b88d387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:0e:60:cd:ba:97:21:5e:5f:fc:c5:0a:67:c4:
70:5c:5c:25:ad:53:c7:3d:38:6d:fc:b1:fc:17:fb:
92:82:02:a3:64:4c:f2:18:e5:4f:70:b6:eb:2f:43:
73:53:cf:fc:7a:9a:0a:6f:c2:9e:28:5a:15:7e:e6:
d4:8d:6f:53:b5:98:6d:90:8b:ba:51:d5:62:24:52:
ff:21:8c:25:40:f7:0d:7d:f0:a3:49:a9:5f:ce:a2:
06:c1:94:58:78:6c:5e:49:c1:12:e1:57:df:c9:0c:
e9:c3:34:89:2c:65:bb:d7:d4:5d:8b:36:d0:af:35:
93:40:7f:96:1a:f7:bf:78:0d:00:f2:b2:ef:d3:12:
4b:d0:80:20:11:45:6c:a2:99:70:88:8e:cc:ef:98:
2e:33:34:1a:53:c6:54:67:29:a0:0e:3e:e3:58:72:
f0:37:5d:e0:b1:fd:09:ab:a3:2a:fe:43:cb:bd:f9:
d6:de:05:37:25:5f:04:31:79:e3:4a:83:07:4f:53:
37:3b:e1:cb:e7:d7:12:27:35:ed:06:d1:9a:21:23:
f4:58:d9:76:b6:f8:57:f2:26:0f:ac:27:b6:71:7d:
ac:1f:84:97:1a:b9:7c:45:6d:67:7f:59:bf:ad:28:
c3:a5:73:2f:cb:85:32:29:1a:79:88:4b:58:3c:13:
08:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:F4:85:E0:1D:DA:98:07:73:95:CF:34:92:82:5C:20:6B:88:D3:87
X509v3 Authority Key Identifier:
keyid:AD:12:1A:9C:CB:28:3E:A2:1E:8D:0A:07:0A:2E:0B:6A:40:E9:87:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rRIanMsoPqIejQoHCi4LakDph30.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/27f7fa-b019-4842-a6a6-59df73d3bb91/1/rRIanMsoPqIejQoHCi4LakDph30.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:3f:a9:83:40:7f:cf:ca:ef:b3:07:8c:18:3e:9d:25:c6:14:
d1:31:a4:8f:c9:29:6e:95:6c:3c:2d:c4:6f:6b:3b:61:22:26:
8a:40:01:92:19:1e:94:09:a1:7e:3a:b9:27:5d:ac:53:76:c6:
c3:10:12:2d:de:0f:5a:d1:e7:65:00:b9:a6:99:c2:74:d3:98:
22:38:5e:64:60:0d:c0:ce:20:49:14:38:4d:8b:09:80:61:f4:
9e:fe:7d:67:1e:71:be:57:31:ad:33:25:e4:b8:a3:9a:47:40:
a6:c9:e9:cd:15:90:ea:c6:ec:b6:c5:d6:2e:3d:ed:e7:c4:51:
5c:05:95:59:52:b5:bc:df:9d:d5:c0:6d:e4:af:2e:05:d2:4f:
35:0f:1a:d7:75:7a:9d:3e:4b:65:cc:c7:2d:83:16:7d:90:22:
e8:7f:e3:eb:3e:4f:4f:3b:bb:7b:ac:2a:5b:a6:06:d1:ee:30:
36:04:be:22:5b:51:43:ab:a0:0e:00:11:5c:37:c2:91:20:45:
0d:04:db:64:b6:11:1f:3e:32:fa:4c:9c:25:76:c7:ba:d6:3f:
85:d8:59:d6:0f:26:39:e0:db:62:ed:05:ae:17:6e:0e:c1:ff:
8b:6a:73:de:4d:ec:e0:8d:fc:fa:68:06:28:ca:01:53:57:3e:
5f:3a:ac:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:33 2026 by rpki-client