Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
File: sxU2q-49e1S4MDubxpqKq76XAOQ.mft (raw, json)
Hash identifier: qrag6xjps2b4P0kd5tRHXyypw0kC94oYgaHe8pkQRuw=
Subject key identifier: 1D:A9:4C:CE:A6:E3:7F:09:D7:8D:96:57:89:1A:6B:2F:DC:6C:2E:FE
Authority key identifier: B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4
Certificate issuer: /CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
Certificate serial: 019CAB6B464B2C38C606D2707A0A75FC797B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
Manifest number: 0A5B
Signing time: Sun 01 Mar 2026 22:00:59 +0000
Manifest this update: Sun 01 Mar 2026 22:00:59 +0000
Manifest next update: Mon 02 Mar 2026 22:00:59 +0000
Files and hashes: 1: sxU2q-49e1S4MDubxpqKq76XAOQ.crl (hash: Tc8VwNuludNyBmM36uMSY8y+L/NZeusnxvjZD9ZQR7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:46:4b:2c:38:c6:06:d2:70:7a:0a:75:fc:79:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
Validity
Not Before: Mar 1 22:00:59 2026 GMT
Not After : Mar 2 22:00:59 2026 GMT
Subject: CN=1da94ccea6e37f09d78d9657891a6b2fdc6c2efe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:16:da:5d:3b:f7:38:99:3d:7e:c1:be:6f:f4:
53:e5:78:11:a9:2f:80:93:ba:ea:f8:a5:24:73:70:
df:87:4b:cd:53:0a:6f:62:cb:23:1a:05:79:eb:95:
b4:3d:ce:45:ae:ec:30:83:74:53:f4:2d:dd:0f:a2:
55:c3:b9:4d:40:54:49:70:45:0a:85:6f:ba:9c:64:
93:56:db:84:df:ae:3e:2b:6c:97:46:6d:30:8d:61:
32:ab:25:21:32:b5:23:9f:5d:f0:65:b2:95:5a:b0:
f6:89:48:31:94:bf:08:69:27:70:85:a4:b1:50:b2:
06:67:7a:0f:a2:cf:e7:8b:35:f2:7f:14:5c:39:04:
3c:45:90:d1:81:b1:27:02:a3:71:df:1a:c3:7a:65:
d9:92:51:54:09:49:ec:2f:46:9a:1d:26:a4:5d:a6:
59:02:0d:6d:9a:1d:ee:78:7b:59:49:0a:0b:10:e6:
eb:35:75:30:ec:cf:2e:6a:2b:3d:3e:f1:3b:23:04:
dd:7b:d7:49:2b:3e:76:91:68:60:de:8d:27:e5:7f:
3c:12:7b:dd:15:28:00:6f:c3:54:18:2a:6e:9c:cf:
b5:e4:45:61:5d:0e:c8:46:b0:3a:41:85:41:6b:b6:
16:a1:18:d8:a8:13:ee:6c:8a:a8:1e:a1:ee:dd:bf:
50:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A9:4C:CE:A6:E3:7F:09:D7:8D:96:57:89:1A:6B:2F:DC:6C:2E:FE
X509v3 Authority Key Identifier:
keyid:B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:66:17:a0:10:4e:3d:6e:d4:65:99:a2:62:a8:f0:0e:76:69:
f6:b7:a4:b7:f1:b2:ba:8d:b4:50:9b:fb:91:db:9e:b8:88:e3:
34:86:23:0b:66:02:41:ad:5d:1c:39:a2:36:cb:3e:e6:30:25:
74:f0:3f:3a:3a:65:5c:02:ea:e4:11:4c:f9:97:71:51:a0:e0:
78:72:76:49:39:32:1c:88:47:0f:20:cf:e8:0a:6a:cd:f1:e1:
cc:d6:ec:a3:c7:0e:2c:ee:c2:3d:1c:db:58:dd:ef:e9:8e:24:
a9:3f:32:79:ee:3f:53:6d:2d:1a:93:bc:bd:8b:08:59:a9:3c:
4b:45:0b:5f:6f:ba:27:08:98:1f:a0:2b:be:1b:d8:0b:be:d9:
b5:85:7a:89:aa:64:a1:a3:77:c0:2d:44:06:ae:6e:bf:c1:82:
7d:eb:13:0e:10:b0:1d:06:8a:51:67:b9:69:08:b1:97:6f:3e:
74:19:22:16:ea:db:3d:01:b4:6c:33:51:db:02:4c:48:75:d5:
a5:a2:4d:6b:f6:91:e6:23:fd:80:da:50:af:17:25:47:04:be:
0d:51:d0:5f:da:d8:6a:e0:ae:c9:6a:4a:24:51:5e:0e:b6:9e:
be:b3:cb:2c:8b:d9:19:08:c9:9a:48:d3:d0:f0:a1:4a:9a:42:
26:30:e2:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:00:41 2026 by rpki-client