Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
File: Ma-3caS5EQsRSqgHr7cIaxplN54.mft (raw, json)
Hash identifier: HiG7FI/O8C68qQ5cmItNalO5khfVbcG+UjdGv8xUees=
Subject key identifier: 96:B7:C1:6A:A1:A7:F2:03:06:FF:E1:2F:EC:6D:97:E1:0C:14:EB:B6
Authority key identifier: 31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
Certificate issuer: /CN=31afb771a4b9110b114aa807afb7086b1a65379e
Certificate serial: 019CAB6B9F628CB7DB49B7F3821995969126
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
Manifest number: 0602
Signing time: Sun 01 Mar 2026 22:01:22 +0000
Manifest this update: Sun 01 Mar 2026 22:01:22 +0000
Manifest next update: Mon 02 Mar 2026 22:01:22 +0000
Files and hashes: 1: Ma-3caS5EQsRSqgHr7cIaxplN54.crl (hash: 7HRzkd3RHRyvtdJ1s7CsUjfVMh+cbGKV5peh8s7Vnhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:9f:62:8c:b7:db:49:b7:f3:82:19:95:96:91:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31afb771a4b9110b114aa807afb7086b1a65379e
Validity
Not Before: Mar 1 22:01:22 2026 GMT
Not After : Mar 2 22:01:22 2026 GMT
Subject: CN=96b7c16aa1a7f20306ffe12fec6d97e10c14ebb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:78:e5:fa:27:1f:42:1a:fc:50:06:c3:3a:68:
35:6d:98:48:d3:ed:77:4a:c0:af:d6:1c:28:f7:28:
a4:96:65:85:17:c1:82:1b:fd:66:87:79:0f:8d:a8:
2b:bd:da:04:43:5d:20:87:c9:df:05:08:71:c9:99:
ef:e8:43:ee:fc:fa:70:0b:b6:19:5b:6e:0b:7e:59:
f9:40:81:75:71:d4:f2:64:5e:1f:66:d6:cd:e7:80:
bd:7f:3d:57:25:25:8e:13:ad:61:c7:31:c5:60:40:
8a:fb:2c:a8:16:fd:a1:cc:a0:e2:67:47:86:28:20:
69:28:81:d5:d7:be:2d:40:e3:79:88:8f:08:63:f8:
9b:c1:d5:13:cf:f2:f0:f8:b7:15:d6:aa:2d:5e:2d:
44:01:73:46:03:00:87:e4:b1:8b:0c:d2:94:51:e9:
48:5f:38:77:81:bc:03:de:47:44:26:53:93:6f:71:
ed:25:1a:f8:37:ed:8d:37:24:b2:3c:ed:39:be:04:
55:ac:c3:12:d2:8a:8f:8e:8b:1a:6b:98:8a:9e:09:
95:37:70:a2:c9:67:33:1f:60:b9:11:60:30:cc:b4:
ae:1a:ef:0c:d9:3f:47:8d:cc:c5:85:9f:f3:1a:ee:
bb:9a:8b:7d:c5:eb:a8:5f:c8:ee:fd:3e:08:6f:f0:
20:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:B7:C1:6A:A1:A7:F2:03:06:FF:E1:2F:EC:6D:97:E1:0C:14:EB:B6
X509v3 Authority Key Identifier:
keyid:31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:cb:7e:80:5b:84:d4:a7:af:26:5a:31:12:90:97:04:66:ae:
52:0a:28:3c:40:f0:9f:ca:6e:c7:0e:22:b3:fd:cd:18:a9:fa:
ac:0b:e5:4d:be:6c:cc:f8:9d:71:64:5d:1d:6d:1f:9d:af:0d:
dd:c5:85:af:b4:53:1c:6e:e6:91:7a:e6:fd:bc:76:96:ad:4c:
f4:15:c4:e6:f5:97:77:63:8c:46:39:b7:a1:a0:b9:a4:1e:c7:
0f:b9:c7:a3:1c:93:e5:cb:29:27:7b:fb:84:d4:f7:3b:7f:03:
9d:28:6d:64:33:96:5e:d4:be:1c:03:69:fa:8d:44:09:8e:27:
93:bb:a5:4c:be:43:18:7b:3e:52:cf:6a:f9:4f:d7:87:90:ae:
a1:39:5e:8d:cb:47:a7:02:2c:b4:1d:e2:de:46:cb:3b:97:e6:
ac:73:75:18:85:2b:b3:e6:fa:d5:76:9a:c8:52:8f:1d:8e:14:
02:4f:f8:cc:b0:98:bc:17:c6:b7:76:56:44:d4:7e:b3:b1:a6:
7e:18:4c:ef:ad:12:52:15:ea:ae:d8:ee:37:4a:d9:d6:23:c9:
30:b7:a2:7d:d5:01:c6:b5:51:2e:53:35:15:c9:eb:7d:d1:cf:
56:19:3e:e0:7c:1b:7e:88:b6:fa:d0:a4:c1:4e:8e:4b:56:96:
b4:03:2c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:45:58 2026 by rpki-client