Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
File: RK3etuoTlfaY9C51Qa70kkJiX2I.mft (raw, json)
Hash identifier: +D8ixoEFmgEUexURvXAcDwrG4oP/nMNDoPdKvChrVds=
Subject key identifier: D2:78:6E:16:C1:DD:DA:27:0A:E5:68:23:B9:F1:03:39:27:53:84:40
Authority key identifier: 44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
Certificate issuer: /CN=44addeb6ea1395f698f42e7541aef49242625f62
Certificate serial: 019CAB34A7F39D1E6F3E0B179EB031C02834
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
Manifest number: 1843
Signing time: Sun 01 Mar 2026 21:01:20 +0000
Manifest this update: Sun 01 Mar 2026 21:01:20 +0000
Manifest next update: Mon 02 Mar 2026 21:01:20 +0000
Files and hashes: 1: RK3etuoTlfaY9C51Qa70kkJiX2I.crl (hash: xzt0AKqQQ4pNPPfnLW71A3fKGsczCyYNjUINp3D18Ag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:a7:f3:9d:1e:6f:3e:0b:17:9e:b0:31:c0:28:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44addeb6ea1395f698f42e7541aef49242625f62
Validity
Not Before: Mar 1 21:01:20 2026 GMT
Not After : Mar 2 21:01:20 2026 GMT
Subject: CN=d2786e16c1ddda270ae56823b9f1033927538440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:36:8c:92:5d:85:a6:30:2b:e4:57:e3:fe:17:
79:e2:4b:40:81:61:6e:60:81:0c:8f:c8:34:d1:fa:
28:63:a3:66:f4:f0:8f:13:3c:0c:b2:f0:3d:86:6b:
cd:ca:30:b6:19:cb:e2:67:19:8f:61:08:08:bc:06:
99:62:84:8c:80:ac:7a:a0:e7:72:ab:07:13:02:98:
3b:46:33:89:90:18:28:df:d8:be:5d:15:28:dd:7d:
57:89:82:9a:8c:98:a1:26:57:85:4e:15:8f:90:52:
53:c7:d1:79:83:de:93:48:77:13:7e:51:24:ff:3e:
e4:33:7b:bf:5f:e7:03:cf:18:14:18:fa:ed:aa:bf:
5d:62:7f:20:e8:de:e2:9b:b1:63:df:86:77:bb:29:
1f:2b:21:15:c7:94:a8:dd:59:22:13:01:36:af:2e:
7e:56:d1:59:75:cc:41:54:b9:a8:c8:2c:d3:72:ea:
34:83:eb:04:0f:ee:07:0c:eb:fb:11:4f:8c:f4:cb:
6b:af:e8:b7:86:4c:14:99:93:57:2d:48:d7:b7:13:
e8:70:63:22:47:fc:d5:6e:12:85:6a:4c:35:04:e6:
01:ff:f1:88:c2:bf:4e:98:92:de:34:22:9a:1b:06:
3f:6c:99:54:85:46:87:81:9c:bb:0f:90:3d:c3:4c:
10:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:78:6E:16:C1:DD:DA:27:0A:E5:68:23:B9:F1:03:39:27:53:84:40
X509v3 Authority Key Identifier:
keyid:44:AD:DE:B6:EA:13:95:F6:98:F4:2E:75:41:AE:F4:92:42:62:5F:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RK3etuoTlfaY9C51Qa70kkJiX2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4a6ef1-b4ee-4a14-9384-4714f971b78b/1/RK3etuoTlfaY9C51Qa70kkJiX2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:ab:1b:5c:29:12:76:d3:12:cc:67:87:e7:37:35:d3:04:de:
1b:87:c8:41:a0:52:d3:e1:28:98:02:cf:71:91:26:78:8c:ef:
84:87:47:6c:53:ce:c1:38:97:6f:06:05:08:85:11:46:40:1a:
4d:e4:2f:f2:ec:6b:79:37:7d:0c:5b:e8:27:a0:c0:ea:51:fc:
1c:4a:0b:88:28:2f:6b:78:5a:66:27:25:8d:c5:99:94:2a:4f:
25:59:41:5c:54:aa:bf:f8:fc:87:9c:04:64:1e:fb:bf:68:12:
01:7c:6d:35:5e:09:19:03:50:01:1c:04:4e:ea:0b:0a:d3:d8:
94:0b:78:02:d2:fe:24:82:85:34:ca:8f:8f:b3:44:bb:b9:1d:
d1:11:95:f1:78:b6:d3:a9:ed:85:13:ea:89:c2:6a:89:04:9d:
0d:fe:84:c5:7e:1f:f9:a7:f1:72:6f:7c:28:87:55:6c:34:29:
ca:eb:9f:a7:9e:0a:d1:53:82:09:85:2d:05:06:17:56:b5:34:
2f:e7:1b:2a:4f:79:49:bb:8d:1d:05:16:93:f2:50:d9:2e:94:
e0:b4:a5:be:ca:65:a4:0a:27:e6:25:11:e3:34:d2:cd:bb:2b:
39:72:5e:55:eb:78:43:32:6f:aa:83:9c:00:8e:ee:27:cb:ae:
c5:65:cc:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:43:05 2026 by rpki-client