Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
File: 21LN5wkMV9jpwx1Rh0jfkiueBM4.mft (raw, json)
Hash identifier: 7L21dFq1t0EXblDm//UYFjYLIhH7d2a6geJnHQHfxCE=
Subject key identifier: C5:3A:4C:E8:94:14:7F:41:5E:4A:0F:23:5E:03:76:9A:9F:83:B9:30
Authority key identifier: DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
Certificate issuer: /CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Certificate serial: 019CACB528063846C7280E5ED82B01116521
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
Manifest number: 16BA
Signing time: Mon 02 Mar 2026 04:01:19 +0000
Manifest this update: Mon 02 Mar 2026 04:01:19 +0000
Manifest next update: Tue 03 Mar 2026 04:01:19 +0000
Files and hashes: 1: 21LN5wkMV9jpwx1Rh0jfkiueBM4.crl (hash: egLKYHGgf5CpN7Zk7segnDK5Di5HHUzRR6ds47YSNQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:28:06:38:46:c7:28:0e:5e:d8:2b:01:11:65:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db52cde7090c57d8e9c31d518748df922b9e04ce
Validity
Not Before: Mar 2 04:01:19 2026 GMT
Not After : Mar 3 04:01:19 2026 GMT
Subject: CN=c53a4ce894147f415e4a0f235e03769a9f83b930
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f0:97:c3:2e:84:a0:08:cb:58:c7:4f:82:bf:
35:3f:75:7b:a2:b9:df:71:8d:17:54:f1:f0:05:46:
0c:b9:2f:93:5c:20:6b:12:2c:05:2a:a9:d6:e3:db:
9d:13:ce:36:51:9e:8e:80:29:1d:6b:3d:4d:24:71:
a5:3c:a0:a1:c2:ea:df:dc:f4:c0:34:19:24:db:c8:
04:2f:86:2f:bc:c0:4e:f7:2f:77:4c:a8:ab:b9:c3:
ed:b4:5c:51:d3:8d:3c:cd:66:be:c6:79:ac:57:ae:
77:dd:ab:56:29:5e:33:b6:c4:08:e8:6f:de:ba:89:
df:00:ba:8b:8d:13:78:0a:b5:45:85:40:b4:52:ae:
a4:51:fd:6e:51:28:ac:d6:fc:e5:e4:5f:c5:79:3b:
ae:c6:b7:c1:ee:0f:e9:02:d7:e0:b9:7d:bf:7c:80:
37:93:87:57:1c:ce:9d:80:0a:17:c8:c4:33:4d:40:
c1:2d:a0:60:fe:66:c0:de:16:3b:f0:b4:fd:a1:9b:
2c:06:08:35:7e:f5:d9:ca:a3:0c:b4:bc:83:0e:97:
24:7a:8d:ee:9a:09:13:ad:21:b3:96:a9:3c:51:29:
58:60:16:97:71:ba:88:2c:4a:f5:4f:88:0e:5c:eb:
81:aa:fa:64:a9:68:75:2b:f5:1d:ab:49:31:e9:a0:
98:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:3A:4C:E8:94:14:7F:41:5E:4A:0F:23:5E:03:76:9A:9F:83:B9:30
X509v3 Authority Key Identifier:
keyid:DB:52:CD:E7:09:0C:57:D8:E9:C3:1D:51:87:48:DF:92:2B:9E:04:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/21LN5wkMV9jpwx1Rh0jfkiueBM4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/8f30ea-eb2e-44ce-a93c-d0cadfe84b19/1/21LN5wkMV9jpwx1Rh0jfkiueBM4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:ce:e7:9e:e4:e7:9c:09:2d:5f:b9:44:e4:a9:4a:94:da:2b:
ed:ce:3d:e9:70:e5:f1:04:84:b2:8d:12:ad:51:5c:c5:55:32:
4d:38:b8:70:ec:b1:6e:1b:e0:f7:a7:74:fe:ba:44:5d:87:44:
ae:c0:f1:f6:ff:bd:96:b6:10:be:d1:b1:4f:76:7b:53:d6:ef:
d2:cb:8b:b2:d7:b0:bb:ae:df:d9:f7:3f:74:57:37:13:d7:05:
3a:20:85:25:cf:1f:8d:c6:f9:e1:57:b4:93:29:53:6b:51:b9:
70:66:32:13:c6:0a:df:76:78:89:c4:88:42:3f:fc:a8:46:61:
c0:ae:dc:31:54:8e:2a:a4:fa:39:99:7c:d0:ed:c2:ac:7a:27:
98:ca:3f:de:45:0a:76:89:cd:d7:b3:68:9f:e7:95:ed:41:28:
f6:f8:4f:87:63:76:78:d7:96:db:50:e9:3e:e3:48:83:ac:5b:
99:14:f8:36:86:92:e2:75:39:94:e8:00:c7:ad:40:c2:e6:9a:
a1:af:6e:d2:c8:f1:e3:aa:a3:f7:53:ea:c0:81:99:54:cc:35:
9d:23:96:b8:3b:ec:a0:ba:98:20:b4:11:ec:c9:dd:ea:e1:83:
e8:ce:74:dc:0f:21:41:8e:a7:99:38:a0:1b:98:d5:81:4d:76:
58:9f:df:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:42:49 2026 by rpki-client