Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
File: 1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft (raw, json)
Hash identifier: b/Hp9tObiajUts/b8y0AqoiLIvVvKZ2KDDwso7joVSQ=
Subject key identifier: AC:17:EA:7B:B1:A1:2E:F2:00:9E:34:E9:0F:FC:7E:4A:A4:CB:D7:7C
Authority key identifier: D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5
Certificate issuer: /CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5
Certificate serial: 019D99CFEF34532751A66B208F9BD3440ED8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
Manifest number: 05D9
Signing time: Fri 17 Apr 2026 05:00:34 +0000
Manifest this update: Fri 17 Apr 2026 05:00:34 +0000
Manifest next update: Sat 18 Apr 2026 05:00:34 +0000
Files and hashes: 1: 1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl (hash: LHcGQ1H005V+JDoBVlSAXsp2pUTfBTe7/pUNniEpXVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:ef:34:53:27:51:a6:6b:20:8f:9b:d3:44:0e:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f623da4cd2eeddc2c87c515c62518c431d3fb5
Validity
Not Before: Apr 17 05:00:34 2026 GMT
Not After : Apr 18 05:00:34 2026 GMT
Subject: CN=ac17ea7bb1a12ef2009e34e90ffc7e4aa4cbd77c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a9:0f:65:c7:08:c5:65:fc:3f:ea:ed:b3:dc:
09:22:77:49:45:b4:5c:bc:63:3a:21:f4:b6:c1:77:
10:a8:ba:2a:c7:c0:b6:d9:8d:8b:f2:a5:db:37:92:
28:84:34:7e:c1:a0:22:c6:d4:5c:f6:17:f9:e9:83:
77:b5:16:d2:27:f2:6e:13:3e:6d:c1:a4:5f:41:5e:
d0:76:ee:83:6b:d6:84:dc:09:a4:27:58:ff:02:8c:
0d:d3:e1:e4:f5:38:0f:33:16:52:6a:fe:16:af:5a:
7f:6a:f3:cf:72:6a:e5:b8:7a:9a:f7:bd:c6:ea:b9:
49:80:f8:67:d0:8d:2a:c0:19:eb:64:d7:34:e1:f7:
ba:dc:8c:e6:98:ff:4d:3a:38:2a:00:29:45:1b:74:
1b:85:3c:55:5a:f3:b3:26:48:cb:e9:7e:c3:0e:33:
90:44:ce:59:5f:ce:16:60:d0:53:1b:24:a3:6a:60:
a2:5f:04:e5:4e:a3:0c:32:c5:ec:b8:9f:e4:ea:8c:
c4:4d:42:87:e0:06:c1:8c:da:67:ab:e6:97:bd:3f:
b6:25:8e:10:d0:58:4f:11:a4:7f:b9:bc:e6:a9:ad:
74:43:6a:04:ba:82:a6:9e:b2:80:e3:28:49:69:13:
f5:60:44:51:8a:e3:12:ed:01:e2:cf:8a:41:80:c9:
61:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:17:EA:7B:B1:A1:2E:F2:00:9E:34:E9:0F:FC:7E:4A:A4:CB:D7:7C
X509v3 Authority Key Identifier:
keyid:D5:F6:23:DA:4C:D2:EE:DD:C2:C8:7C:51:5C:62:51:8C:43:1D:3F:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fYj2kzS7t3CyHxRXGJRjEMdP7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/313c11-df87-4d77-8739-04f1dcec320e/1/1fYj2kzS7t3CyHxRXGJRjEMdP7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:38:95:7f:9f:41:00:76:6d:c6:c4:14:16:28:a9:34:b6:0e:
4b:f3:4d:c4:80:60:b5:d0:47:de:93:69:a7:13:c1:2b:12:1d:
f3:42:2c:ed:37:21:d6:41:1d:a5:9b:12:ff:55:ac:e4:c9:f7:
3c:0f:0d:8e:3a:ee:59:d4:ed:cc:95:7e:30:b4:2b:29:e8:c5:
60:ea:56:6a:c5:47:ae:65:1f:6e:3c:17:d8:e8:34:b4:4f:93:
99:21:ee:39:e0:9f:09:ad:88:04:c2:77:46:41:86:6d:86:a8:
9c:98:9e:4c:8f:2d:6f:40:97:eb:d6:ac:eb:0e:38:d5:35:f0:
aa:9e:2c:5e:c1:2e:d0:67:72:2a:00:3d:2a:78:08:f0:e4:47:
05:1b:46:42:a3:c6:88:f4:d0:f5:00:ac:ae:40:c3:24:b6:1d:
0f:d8:15:3e:4f:99:0c:ae:6e:37:38:6f:81:1e:8d:cc:13:c5:
0c:77:4d:06:d1:16:d4:ab:30:af:fe:01:19:3d:9a:36:e6:b1:
dd:7b:81:34:ff:f5:58:5b:49:4f:5b:1c:ff:cf:ff:e7:68:10:
74:68:20:96:84:af:c8:87:a0:f8:7e:20:5c:ca:80:ef:36:9e:
91:12:d6:ac:d4:e6:3a:f8:32:4b:b6:ed:70:c6:ba:f0:de:3a:
bb:a5:55:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:00:17 2026 by rpki-client