Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
File: u0OX5un46iWRVggDysuzI5Ytn64.mft (raw, json)
Hash identifier: 6cdhVGuot0ShI7mS6fDrRH5m4JJTu/SadhwSIcHgl74=
Subject key identifier: 1F:33:3A:E3:21:AF:62:47:39:E2:8F:55:53:02:A2:DD:62:DE:13:7B
Authority key identifier: BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
Certificate issuer: /CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Certificate serial: 019D98F4C35050E962709E46FCCA5184BF8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
Manifest number: 1301
Signing time: Fri 17 Apr 2026 01:01:10 +0000
Manifest this update: Fri 17 Apr 2026 01:01:10 +0000
Manifest next update: Sat 18 Apr 2026 01:01:10 +0000
Files and hashes: 1: u0OX5un46iWRVggDysuzI5Ytn64.crl (hash: 0Pk94xdKH+EvY2tAK5OKTRSD4m6DCjTrGEqbZBy77Zg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:c3:50:50:e9:62:70:9e:46:fc:ca:51:84:bf:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb4397e6e9f8ea2591560803cacbb323962d9fae
Validity
Not Before: Apr 17 01:01:10 2026 GMT
Not After : Apr 18 01:01:10 2026 GMT
Subject: CN=1f333ae321af624739e28f555302a2dd62de137b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f7:de:3b:2a:56:4c:b8:f6:a9:f4:14:63:ef:
ea:ab:87:b3:c4:d9:a1:f6:b0:78:2a:b5:a0:fd:95:
ea:27:b4:2e:66:e4:35:7c:e2:04:95:b5:4f:8c:fe:
5d:ac:3c:1f:ec:7c:fe:81:a5:ac:2d:19:a4:42:fd:
f4:6b:55:78:5b:d4:11:c5:87:87:5e:c5:52:45:5f:
9a:c7:66:33:99:97:89:3b:8a:eb:a3:86:41:b2:27:
0c:31:8f:c9:64:25:19:ca:9d:57:75:d7:85:76:30:
5b:e4:17:71:9f:87:78:48:f1:5c:71:dd:22:96:59:
64:68:06:e5:4f:dc:ea:1f:0a:ce:12:88:c8:66:85:
76:3b:b3:ed:e8:ee:cd:40:84:5b:6b:e5:29:1f:5b:
b3:43:75:7d:26:4f:f3:77:c9:78:75:4e:fc:a6:c2:
e6:a2:bb:61:02:be:24:2b:11:c3:b2:bb:90:5c:df:
66:8d:3f:a9:b2:a2:94:ab:f1:92:d3:5a:5f:ec:21:
89:78:81:5c:b6:54:17:1c:04:32:92:55:73:76:3e:
3f:d6:b3:bb:af:1c:ed:a2:da:50:f1:bf:dc:b7:55:
a7:ee:6c:33:b3:a0:51:3a:e0:2f:e3:59:77:d8:a8:
b5:75:e0:b4:f9:7d:ca:55:72:2a:de:e7:04:73:df:
06:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:33:3A:E3:21:AF:62:47:39:E2:8F:55:53:02:A2:DD:62:DE:13:7B
X509v3 Authority Key Identifier:
keyid:BB:43:97:E6:E9:F8:EA:25:91:56:08:03:CA:CB:B3:23:96:2D:9F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u0OX5un46iWRVggDysuzI5Ytn64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/bc5e2f-a4ab-4bdc-9a07-6fb10eeaf627/1/u0OX5un46iWRVggDysuzI5Ytn64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:a6:14:f9:53:0a:81:c2:29:2a:bc:86:55:22:fd:fc:95:ef:
b9:9c:ee:ad:fa:22:af:f0:b1:30:c3:6a:f8:b1:32:9d:50:ce:
5c:52:88:30:e3:8b:c4:dd:fd:64:bf:16:5e:56:14:32:41:1f:
8b:97:71:c7:98:af:6b:02:69:9c:dd:2a:16:b4:14:67:ba:f5:
d5:16:4d:c0:84:6b:e9:2d:12:c0:1e:f9:c2:e7:2d:61:24:2a:
10:b2:4e:80:3a:aa:a4:07:19:3a:a4:de:ca:4b:04:12:b6:a9:
d6:92:2e:29:59:bf:68:f1:67:02:2a:52:cd:7f:11:99:6f:0e:
79:81:3f:29:86:dc:aa:59:8a:fd:c9:29:b1:4b:b3:a2:3e:d7:
74:af:6b:a4:62:4a:8d:0d:5f:10:5a:72:b0:46:a8:59:87:85:
72:96:6e:f5:0e:4f:01:51:1c:d3:a9:0b:ba:3c:ec:2d:b8:ef:
4b:ee:1b:2e:4b:fe:2c:d9:ac:b4:0b:20:96:5c:99:24:be:f7:
9c:ac:b6:fa:8b:2c:41:37:a2:95:7f:41:e2:e8:0d:61:43:62:
0a:69:39:96:76:a0:27:32:b6:24:56:65:5d:f4:81:d2:bc:02:
dc:1f:ed:b9:80:16:91:7c:c6:d2:3a:5c:be:55:06:7e:eb:b0:
cb:09:70:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:52:24 2026 by rpki-client