Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
File: spK68_TAei7dR9iMKxW2Wir33q0.mft (raw, json)
Hash identifier: kZOBWwdEZabLPLI+ScNS3sSMw4Q/f3fEnPnaXPfMzmI=
Subject key identifier: F0:7A:4F:1D:96:47:20:2D:7C:B0:CB:82:05:90:C3:B9:D1:62:4B:C7
Authority key identifier: B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD
Certificate issuer: /CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead
Certificate serial: 019D98F4D0102815192D310CF2B917CF0342
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
Manifest number: 0F59
Signing time: Fri 17 Apr 2026 01:01:13 +0000
Manifest this update: Fri 17 Apr 2026 01:01:13 +0000
Manifest next update: Sat 18 Apr 2026 01:01:13 +0000
Files and hashes: 1: spK68_TAei7dR9iMKxW2Wir33q0.crl (hash: U8nSWYxw3RWzoXIQhGHS/RmKOncauN/fZFMTXy8vH5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:d0:10:28:15:19:2d:31:0c:f2:b9:17:cf:03:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead
Validity
Not Before: Apr 17 01:01:13 2026 GMT
Not After : Apr 18 01:01:13 2026 GMT
Subject: CN=f07a4f1d9647202d7cb0cb820590c3b9d1624bc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:36:d6:71:45:65:52:05:0d:4b:bb:33:65:2c:
8e:2c:f1:15:30:47:54:fe:01:7c:15:d8:62:33:17:
99:dd:48:9a:28:58:75:36:78:87:0e:54:47:57:7b:
30:2e:89:16:c4:07:f1:c8:3a:84:4d:08:06:ea:a4:
37:9e:e3:66:29:32:2f:c9:4c:de:60:fd:3a:e9:97:
e6:c5:bc:49:ac:01:f9:d8:df:c3:4d:88:96:96:cd:
5c:83:9a:cf:49:17:2e:c9:0e:e6:49:53:43:8d:88:
77:7d:4f:b4:91:de:d0:2e:03:42:05:53:7b:5c:bc:
32:d7:0e:c2:64:65:8d:00:1f:39:a1:9a:42:84:f2:
7b:c4:4d:9d:24:91:12:bd:47:be:05:04:ac:4f:09:
37:60:c8:28:a9:b9:b3:e9:d4:21:43:d1:a6:76:1e:
f9:e9:4f:de:f5:3d:42:50:70:5d:6c:20:ee:29:18:
f4:fd:cb:b1:ed:ef:21:3a:88:c4:38:98:42:0f:7a:
ee:8b:69:be:cd:ee:ad:03:c9:b7:c0:0a:0a:69:88:
71:57:a0:50:41:00:3a:c2:af:b7:8c:27:40:40:94:
03:62:0d:eb:00:bc:0b:29:61:9c:cb:f0:c7:e0:59:
5d:d5:76:79:3c:3d:fc:48:2e:0b:45:37:b9:af:e9:
c1:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7A:4F:1D:96:47:20:2D:7C:B0:CB:82:05:90:C3:B9:D1:62:4B:C7
X509v3 Authority Key Identifier:
keyid:B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:13:19:fb:3b:93:69:58:5e:d1:ad:c0:58:fa:1b:31:2e:76:
36:67:0f:f0:82:3a:c0:52:65:e3:3f:0b:d8:e8:90:27:4e:e6:
c5:15:50:9e:11:b2:75:f4:46:04:6a:0a:52:cd:e4:4b:bd:d2:
bb:14:5c:e3:a8:9e:bf:e4:e5:72:8f:3e:0f:d9:67:f4:56:6e:
e7:f9:00:24:90:82:0b:9f:7f:b7:3b:4c:e2:2c:70:80:f9:5b:
c3:a1:cc:d5:68:8c:1a:9a:fd:e7:6c:bc:b1:de:cf:ba:26:c2:
63:3e:93:18:42:db:cc:13:01:17:b9:c6:ae:ba:aa:ab:04:8c:
1b:b6:25:2d:36:b9:81:23:5e:73:78:49:58:93:d1:d0:eb:0c:
03:9d:b9:66:18:f2:d7:74:7c:6a:27:5e:ab:eb:1d:6f:0b:b2:
47:4f:6f:85:db:02:a2:28:21:9f:15:da:2b:d4:44:57:d0:73:
60:d2:13:8c:f6:8a:2c:7c:15:1f:c1:57:da:34:aa:d0:27:21:
ae:85:04:7f:35:df:b8:b3:c6:7f:c4:65:a1:38:60:42:69:47:
e8:e5:0c:5a:e7:40:b3:2a:65:73:9c:0f:a2:d1:a6:8f:d1:6a:
7d:04:7f:36:de:7c:5c:da:fb:2c:93:f9:57:8a:76:1a:8a:c4:
89:68:23:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:49:58 2026 by rpki-client