Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
File: rARWSrE5dm8d7mSLNaChi702IQk.mft (raw, json)
Hash identifier: C5CFNEI5LdUZ6fjKJyLsIyzys7TDMFPLnpMdXavt9y4=
Subject key identifier: 84:FA:A7:9C:B4:F9:67:C8:7D:31:F2:EC:85:0E:F2:92:D1:8E:24:18
Authority key identifier: AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
Certificate issuer: /CN=ac04564ab139766f1dee648b35a0a18bbd362109
Certificate serial: 019CAD9055469D63099F9D7E82924F81D928
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
Manifest number: 1844
Signing time: Mon 02 Mar 2026 08:00:43 +0000
Manifest this update: Mon 02 Mar 2026 08:00:43 +0000
Manifest next update: Tue 03 Mar 2026 08:00:43 +0000
Files and hashes: 1: rARWSrE5dm8d7mSLNaChi702IQk.crl (hash: CMclPcMeno9DL8/4d8gu0z/g+AEqjH1zWgQIP9N7epg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:55:46:9d:63:09:9f:9d:7e:82:92:4f:81:d9:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac04564ab139766f1dee648b35a0a18bbd362109
Validity
Not Before: Mar 2 08:00:43 2026 GMT
Not After : Mar 3 08:00:43 2026 GMT
Subject: CN=84faa79cb4f967c87d31f2ec850ef292d18e2418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e9:13:40:5f:ae:ab:4e:b7:4c:7b:ab:db:54:
7e:05:13:b1:dd:58:0f:fb:28:f0:1d:75:85:b1:cf:
c8:90:2b:de:83:43:0c:cd:49:84:c5:d5:27:dd:96:
1e:dc:a5:cf:f1:77:eb:c3:21:86:c6:9b:dc:c7:8a:
29:24:f0:8e:d5:35:81:e4:ea:d7:f6:0a:6c:93:31:
fb:6f:a8:be:8f:60:36:6b:e0:01:1b:41:c3:9f:76:
cf:73:07:77:fe:8b:74:fc:f9:fe:5f:20:6f:77:12:
f2:46:ed:02:32:44:56:ff:63:24:44:19:22:51:57:
7c:5b:62:73:e8:08:08:0d:34:25:ca:f7:1b:ea:d0:
93:f0:c8:af:d5:a3:bd:8c:72:8d:29:55:0a:66:f0:
17:b8:e7:7c:2a:47:2d:6b:ae:61:c9:52:16:93:90:
31:1d:e9:c4:2e:bd:60:d4:53:fd:d7:21:bf:a9:ad:
c0:59:be:da:c7:16:5a:94:d8:d7:4a:89:e0:1f:47:
da:63:43:f2:ec:f5:48:80:31:e7:3c:e4:9e:37:a6:
73:dc:5b:42:e9:2c:a0:ff:af:78:cb:6a:04:3b:11:
78:27:f6:8f:b3:44:ee:96:dc:e4:a8:17:83:4a:6e:
f1:13:a3:62:5c:0a:06:ff:c0:cc:6d:19:2f:59:b1:
db:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FA:A7:9C:B4:F9:67:C8:7D:31:F2:EC:85:0E:F2:92:D1:8E:24:18
X509v3 Authority Key Identifier:
keyid:AC:04:56:4A:B1:39:76:6F:1D:EE:64:8B:35:A0:A1:8B:BD:36:21:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rARWSrE5dm8d7mSLNaChi702IQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4668d1-22a4-432e-81fc-284e9bcf82c5/1/rARWSrE5dm8d7mSLNaChi702IQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:49:e7:6c:88:75:a2:c2:5c:f6:1f:53:e8:a4:8c:33:31:de:
8f:60:0f:71:e1:9d:75:04:88:4c:c9:ce:f1:44:16:a5:18:18:
46:6e:b7:2d:93:69:dd:a0:69:38:06:49:91:9c:11:43:d6:47:
e4:0c:51:86:87:22:53:34:a5:be:11:91:b0:b0:35:9f:6f:29:
16:c2:ec:ba:95:98:a2:5b:16:c6:73:d0:40:60:77:fb:89:ae:
c0:37:f4:34:59:ed:05:75:2c:bd:68:af:08:74:50:03:d3:d8:
2a:74:2f:00:b2:68:b3:85:b2:2d:4d:ea:97:b4:95:2f:d5:ef:
42:c8:aa:ed:b7:12:46:a3:e1:94:36:3b:dc:e3:20:d2:cf:4b:
aa:f4:e5:79:ca:e7:20:7b:6f:56:91:04:c2:7f:19:62:13:6a:
44:c0:2e:af:1b:5b:d8:10:7f:26:5c:81:c3:be:28:61:95:05:
0d:02:fe:b9:1f:ac:3e:5e:23:14:d3:fd:0f:71:b4:c1:ea:5e:
65:96:a4:18:55:7c:28:1d:6d:e3:ac:08:87:de:73:31:78:1a:
56:04:0a:48:2a:38:e2:c6:82:87:ee:28:7e:2f:32:60:e9:a1:
9b:99:6f:15:79:c3:7e:b6:04:f8:58:e2:58:93:46:95:9a:26:
0b:ff:40:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:16:46 2026 by rpki-client