Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
File: r4poziKkwZ8XcA9izPi7bC2vUeE.mft (raw, json)
Hash identifier: DnqArGbE3nWtpW8zM1i+lnqg7FEtUBfvGSu+1yN3XtY=
Subject key identifier: F0:A2:5D:BF:9B:F8:C3:AE:A7:43:00:A6:79:71:37:F0:86:2B:46:5C
Authority key identifier: AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
Certificate issuer: /CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Certificate serial: 019CAA58FB76406DA8547B631572A26EE264
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
Manifest number: 11C1
Signing time: Sun 01 Mar 2026 17:01:24 +0000
Manifest this update: Sun 01 Mar 2026 17:01:24 +0000
Manifest next update: Mon 02 Mar 2026 17:01:24 +0000
Files and hashes: 1: r4poziKkwZ8XcA9izPi7bC2vUeE.crl (hash: MB0hG+IKNo+f/I1rXv96kqTxeF2E8dECEfvwolTZtYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:fb:76:40:6d:a8:54:7b:63:15:72:a2:6e:e2:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af8a68ce22a4c19f17700f62ccf8bb6c2daf51e1
Validity
Not Before: Mar 1 17:01:24 2026 GMT
Not After : Mar 2 17:01:24 2026 GMT
Subject: CN=f0a25dbf9bf8c3aea74300a6797137f0862b465c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a0:09:b7:4c:5e:4c:e8:a2:0f:e6:58:03:58:
89:18:ff:c8:c8:30:5a:56:fc:ae:69:e1:e8:7a:88:
e0:6f:61:f8:9c:a9:65:8d:6b:6f:e1:89:98:3e:b3:
6a:e3:1e:31:99:2c:c4:88:3e:b0:0a:b9:9b:a0:4d:
11:8c:91:8e:71:55:fe:e2:13:17:a0:ff:1e:40:f3:
ce:ba:06:c7:7b:8f:50:7c:a1:75:0b:a1:30:44:74:
e9:d0:ab:ae:05:8e:0c:42:7f:91:50:9b:89:20:ce:
83:8d:0f:93:35:97:0a:c5:67:9c:39:ae:47:b3:80:
50:95:d0:a0:1b:42:3e:16:cb:7c:33:4d:bd:ac:7f:
4b:ad:57:a3:68:da:9f:5e:98:e6:01:df:dc:e8:6e:
4c:c0:fb:5f:22:9b:c3:cf:97:9e:f6:f1:e3:bc:41:
f6:68:b1:b1:c4:b0:58:45:9e:2b:ed:5b:e8:54:d7:
aa:fb:d9:fa:b8:b7:6d:f0:af:8b:b2:df:d9:f6:65:
19:69:48:83:29:12:54:2a:40:7e:e1:a1:17:0f:7e:
9b:bb:fe:53:0e:90:d4:14:75:bb:de:11:28:a6:1d:
3d:cf:7e:8e:df:f8:51:4d:d2:fa:87:53:04:f2:b6:
6d:8b:fe:8b:38:a7:ae:cd:18:7f:8a:e9:b2:9d:a6:
0a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:A2:5D:BF:9B:F8:C3:AE:A7:43:00:A6:79:71:37:F0:86:2B:46:5C
X509v3 Authority Key Identifier:
keyid:AF:8A:68:CE:22:A4:C1:9F:17:70:0F:62:CC:F8:BB:6C:2D:AF:51:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4poziKkwZ8XcA9izPi7bC2vUeE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/6b8ea6-f907-40d1-9e7d-d94e601843d1/1/r4poziKkwZ8XcA9izPi7bC2vUeE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:50:4c:f9:5e:b8:09:0c:fc:21:f4:d1:2a:88:77:35:a8:20:
c9:5f:a4:96:60:7d:48:16:46:69:de:b5:48:f2:e8:42:25:be:
59:08:f0:9c:a3:e7:66:a6:d5:02:5b:85:e9:c1:57:db:e9:53:
e8:b3:78:a7:cd:80:99:a2:e1:76:20:22:67:55:18:3f:8b:33:
fa:51:fb:5a:7f:5c:62:d2:78:c0:6a:45:7d:4a:00:4d:e3:aa:
bb:2e:b4:d8:7c:0a:c8:d8:bb:6c:17:35:43:ee:cd:c9:e1:30:
08:e9:c2:42:c8:35:ab:e4:ef:dd:2e:46:76:cf:28:e8:f8:67:
b3:88:5d:67:62:39:84:95:a0:5a:52:7e:d2:85:c8:b4:3b:1c:
d5:6c:03:6f:2e:e2:64:d4:da:b1:ad:f1:0d:69:d1:40:5b:8d:
a5:06:ae:ce:ba:52:e9:5c:f0:8c:04:78:51:5c:1b:44:bb:27:
fb:ff:fd:22:7e:ec:f5:e4:69:0a:8c:c3:8d:97:29:cc:2d:13:
51:db:63:b9:6c:05:1b:1c:0f:d1:e0:0c:2d:68:cf:8f:f1:d6:
0f:0a:30:2e:a8:87:51:00:4e:50:6d:e3:fc:0d:ab:f7:a8:7f:
db:bc:c4:19:6e:f2:d6:36:29:d2:3b:35:db:08:cf:94:93:54:
78:60:46:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:46:34 2026 by rpki-client