Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft
File: 0ur89N6SC5zmRdbmlt8IqosFUZs.mft (raw, json)
Hash identifier: 0KCG1XvcFrtx2BZRTcNjTum5KXZL0x4p/CTer2EtMIk=
Subject key identifier: 3B:AF:66:7C:29:41:59:F6:6F:A0:26:3D:06:F5:60:DC:E9:5C:27:C4
Authority key identifier: D2:EA:FC:F4:DE:92:0B:9C:E6:45:D6:E6:96:DF:08:AA:8B:05:51:9B
Certificate issuer: /CN=d2eafcf4de920b9ce645d6e696df08aa8b05519b
Certificate serial: 019CAA58B832CC1FF179DF2AFD69D5B06AE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0ur89N6SC5zmRdbmlt8IqosFUZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft
Manifest number: 1547
Signing time: Sun 01 Mar 2026 17:01:06 +0000
Manifest this update: Sun 01 Mar 2026 17:01:06 +0000
Manifest next update: Mon 02 Mar 2026 17:01:06 +0000
Files and hashes: 1: 0ur89N6SC5zmRdbmlt8IqosFUZs.crl (hash: UV81qi+oVxxr+BblOuBqnucGgU1Zs7nGy8ZgEp2wn00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft
rsync://rpki.ripe.net/repository/DEFAULT/0ur89N6SC5zmRdbmlt8IqosFUZs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:b8:32:cc:1f:f1:79:df:2a:fd:69:d5:b0:6a:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2eafcf4de920b9ce645d6e696df08aa8b05519b
Validity
Not Before: Mar 1 17:01:06 2026 GMT
Not After : Mar 2 17:01:06 2026 GMT
Subject: CN=3baf667c294159f66fa0263d06f560dce95c27c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:b6:b2:88:e9:0a:dd:10:8b:ba:aa:c3:b7:d4:
70:ba:da:f0:55:cc:15:b5:c8:d5:26:56:5a:63:7f:
26:0e:6b:96:be:48:88:95:20:53:59:c6:de:49:54:
08:87:f6:13:45:e8:5c:88:ad:49:e9:0d:b1:eb:a8:
19:f4:8e:8f:64:42:43:48:1d:5b:51:72:e9:98:05:
cb:0e:ac:4b:19:20:79:90:13:a2:38:c8:05:c5:60:
50:db:53:65:f4:8a:6f:99:a2:fb:50:b0:4c:8a:60:
7a:1f:bf:22:f0:31:c8:c3:a7:2c:e9:4a:eb:66:53:
17:2a:3c:6c:aa:f9:c8:32:4b:86:ed:54:e8:e8:e2:
bb:8c:e7:6f:25:80:49:73:78:9b:47:cf:f4:05:b1:
e5:7d:63:a6:cc:c0:79:df:81:24:a9:98:af:2c:a8:
cb:37:31:92:54:dc:0f:33:87:be:60:ec:df:ba:0a:
7f:ae:6a:c9:ed:9f:b5:0f:13:14:3b:f8:78:e4:c6:
0c:17:ca:87:35:ef:cf:fe:0d:c5:78:b3:ab:8d:b4:
e3:8c:9e:8b:d0:53:81:78:6d:3f:3e:2c:1d:23:20:
b6:df:ff:91:94:1c:a0:30:85:7d:0d:70:48:fb:98:
ff:02:51:2d:37:07:bb:80:69:2d:d8:4d:75:49:f0:
c9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:AF:66:7C:29:41:59:F6:6F:A0:26:3D:06:F5:60:DC:E9:5C:27:C4
X509v3 Authority Key Identifier:
keyid:D2:EA:FC:F4:DE:92:0B:9C:E6:45:D6:E6:96:DF:08:AA:8B:05:51:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0ur89N6SC5zmRdbmlt8IqosFUZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/82785f-f0c5-4313-91a1-6dfd8bbadfe9/1/0ur89N6SC5zmRdbmlt8IqosFUZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:57:42:8a:fe:3b:ab:66:4f:5a:2c:c7:9b:b6:e6:8a:15:b9:
ac:15:ac:68:be:db:d0:b0:6a:f5:7e:bf:09:fb:9e:c7:8e:59:
b3:0c:4e:b1:f2:e0:32:5e:8a:2d:3a:11:e2:b2:32:21:32:69:
ed:c2:9e:14:1c:a5:6a:3b:f6:00:90:5e:83:e2:75:aa:50:6a:
35:82:b2:7c:2b:15:18:cf:69:19:4e:7b:2e:1e:89:4c:92:5e:
b0:5d:b9:ae:26:ee:cc:0f:26:94:5f:23:43:a6:6f:87:5d:b4:
da:22:ff:46:56:17:c1:44:2a:c4:1a:86:a6:63:39:59:0a:33:
8a:40:04:a4:0f:58:bf:c5:68:e5:f6:56:08:7a:de:a0:1a:e4:
32:cb:32:27:13:d8:8f:0b:05:0f:4c:2f:09:33:0b:e5:94:a2:
e1:e9:0c:14:33:15:44:50:16:29:00:66:46:cf:d0:60:e7:f3:
59:f7:ca:78:8c:f6:54:7b:d4:cd:31:e1:81:67:f0:36:9d:95:
66:be:62:a9:72:c6:31:8f:7f:1f:75:35:79:30:86:90:c4:2e:
04:06:95:f4:c9:50:c0:53:b6:cc:99:d3:f1:09:6b:73:fc:eb:
3d:6f:97:4d:d6:3a:b4:9d:92:26:61:df:05:19:e0:e2:4f:40:
5c:3f:b6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:44:08 2026 by rpki-client