Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json)
Hash identifier: QbCXepvy5XTU8MIwKZskqnQ1ipQgEM9v+GSnGSGqhug=
Subject key identifier: 90:17:33:9A:50:A8:50:F0:F9:36:A7:53:B5:21:81:03:1E:B2:21:48
Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Certificate serial: 019CAD59E497286E356EEB3B893E511661A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
Manifest number: 1287
Signing time: Mon 02 Mar 2026 07:01:15 +0000
Manifest this update: Mon 02 Mar 2026 07:01:15 +0000
Manifest next update: Tue 03 Mar 2026 07:01:15 +0000
Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: x5o+CgKcBAJ2F+IMEkuSQPQ7eYkM36XY2uv72j+DifQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:e4:97:28:6e:35:6e:eb:3b:89:3e:51:16:61:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Validity
Not Before: Mar 2 07:01:15 2026 GMT
Not After : Mar 3 07:01:15 2026 GMT
Subject: CN=9017339a50a850f0f936a753b52181031eb22148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ce:28:8b:36:98:7c:05:ed:e3:33:d2:5e:41:
d3:d5:29:16:0c:a6:e2:94:7a:c5:5d:28:53:73:95:
21:da:7c:da:13:ff:cf:50:1e:0f:c3:91:ec:e2:74:
ca:6a:07:92:b8:e7:5c:57:e9:af:26:4f:63:47:0b:
df:b9:74:c6:29:27:03:7c:fe:41:8b:90:93:f0:98:
6c:57:a3:31:df:ec:17:f4:a7:c9:28:fb:88:fc:f1:
06:41:52:fb:2b:a0:68:00:08:61:46:c9:d7:0f:07:
5b:5b:ac:0a:55:28:77:a0:9b:ca:93:10:d5:6b:c1:
5a:fa:ab:83:0c:b1:22:c7:cc:ce:8c:4c:4e:9b:5c:
87:9c:55:47:ea:d5:7a:ef:fa:be:f2:01:5c:b0:47:
2d:31:f0:94:a4:3d:90:56:f5:f6:fc:fd:39:91:88:
b6:cd:e2:9f:11:31:1a:e9:87:bf:37:57:29:eb:60:
cd:f4:76:71:b2:84:c4:6a:80:03:e8:cc:fa:e8:17:
bb:9b:89:73:20:c3:28:6c:6b:21:42:46:dd:2e:c5:
f7:83:a9:b7:83:f8:f0:4a:b9:17:c3:ca:27:e8:1e:
4e:b2:c5:87:e9:3f:31:96:5d:58:34:d5:e4:36:31:
37:25:f6:0a:ee:9f:67:c8:66:2e:12:85:29:53:df:
40:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:17:33:9A:50:A8:50:F0:F9:36:A7:53:B5:21:81:03:1E:B2:21:48
X509v3 Authority Key Identifier:
keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:6a:3f:81:83:75:47:65:ce:d2:ad:b3:f1:5e:d0:9e:19:d4:
23:60:02:f1:23:6c:cd:4c:c2:30:f2:79:75:fa:53:60:91:b5:
29:33:9f:12:3a:8a:1b:29:18:88:12:e3:d8:74:09:74:52:69:
8a:f3:0f:d9:6c:dd:52:4e:07:12:c8:34:72:ab:1f:dd:61:06:
2d:01:73:66:69:ee:e5:b7:2f:d4:48:8a:e1:c3:f7:01:6f:71:
ff:2b:50:55:98:17:2e:d3:fa:97:48:3b:6d:aa:c9:48:e6:8a:
b1:b9:c8:4d:8f:6d:fc:d2:31:67:ba:3a:8b:ed:17:7e:ec:3b:
10:2d:d1:01:ed:50:1b:be:7b:30:f1:b4:41:c7:f9:57:e1:17:
b8:3d:b4:48:2c:cd:ff:ae:48:70:ac:0b:6e:a3:a0:8c:28:c0:
dc:3e:2d:7e:a0:21:04:9a:41:43:a9:e9:7f:34:f5:86:45:62:
fa:33:15:6e:5f:67:ca:28:03:70:1c:c4:d1:29:5a:9b:7d:44:
de:01:34:46:23:2b:e0:32:de:19:f3:b7:a3:df:78:d0:83:dd:
9a:b9:c1:5a:03:31:3b:48:55:10:4e:d0:90:b9:bd:de:de:f9:
56:97:df:f1:b3:22:ee:18:d1:7a:3b:86:b2:a6:3f:72:c0:87:
76:be:ed:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:38:54 2026 by rpki-client