Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
File: 37H24AFTpJGGEbFLawP2gS7YikM.mft (raw, json)
Hash identifier: 0lb0BpHF1itOUqlcfLMXcic+4d+O5K2DmUrR4noWvJk=
Subject key identifier: 72:B4:FD:6D:6D:11:BB:4B:2E:2D:EB:00:37:D2:B0:5A:B5:53:62:66
Authority key identifier: DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
Certificate issuer: /CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Certificate serial: 019D9A75009C78E8127D17465A79375AB8D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
Manifest number: 11CF
Signing time: Fri 17 Apr 2026 08:00:52 +0000
Manifest this update: Fri 17 Apr 2026 08:00:52 +0000
Manifest next update: Sat 18 Apr 2026 08:00:52 +0000
Files and hashes: 1: 37H24AFTpJGGEbFLawP2gS7YikM.crl (hash: Hee9/KS0SAJgv0Dn8z0vpgl7xGVCxOFwHARi7Nds3z8=)
2: FhwS6oj1IU2dmxLLYCr_Dh9nNPg.roa (hash: gw4ySzsoHkhiHwNr6SgUSv5IRZbxDqYLsZYznQCEK64=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:00:9c:78:e8:12:7d:17:46:5a:79:37:5a:b8:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb1f6e00153a4918611b14b6b03f6812ed88a43
Validity
Not Before: Apr 17 08:00:52 2026 GMT
Not After : Apr 18 08:00:52 2026 GMT
Subject: CN=72b4fd6d6d11bb4b2e2deb0037d2b05ab5536266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:55:7b:95:bb:eb:51:82:f7:a4:07:04:d5:7a:
98:97:40:5c:ae:3b:f3:c3:ce:c4:1a:c7:18:b8:ff:
a5:2b:19:b2:bf:52:ac:bf:54:b4:1b:3b:f7:9c:b7:
bf:92:b3:cf:9f:db:2e:c8:d7:0a:08:24:2f:03:4b:
52:e7:43:7e:3e:a1:75:7e:7b:7b:e7:11:d8:23:f7:
a7:58:c2:2b:9f:4f:a6:bd:3f:5e:a2:30:81:79:d5:
08:3d:45:c0:e4:02:f8:19:b1:07:22:b9:5f:90:32:
1e:33:c4:0d:8a:ba:7e:a9:a4:9a:c8:56:1d:a3:06:
7e:ac:88:f2:7d:17:04:7f:65:6b:cf:82:a4:e7:6d:
60:8a:30:ab:5f:f3:d2:eb:c4:1c:ae:d5:07:87:59:
95:64:1c:91:e2:9c:12:87:5d:5a:52:85:0e:a8:de:
ef:c3:21:b4:d8:4c:a0:b8:5c:26:f7:7f:ac:8e:91:
38:21:ff:39:b1:ff:3a:0c:55:1f:21:42:a1:42:40:
66:50:aa:88:db:73:9d:af:ba:eb:bd:b4:0d:2b:f6:
67:ff:5d:9b:4e:cc:9e:af:82:23:78:15:cf:76:7c:
40:ed:76:83:e9:42:a3:c0:ba:ff:27:ff:78:99:26:
8a:cb:a9:93:3a:52:34:c9:c8:6f:eb:90:b2:67:64:
23:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B4:FD:6D:6D:11:BB:4B:2E:2D:EB:00:37:D2:B0:5A:B5:53:62:66
X509v3 Authority Key Identifier:
keyid:DF:B1:F6:E0:01:53:A4:91:86:11:B1:4B:6B:03:F6:81:2E:D8:8A:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37H24AFTpJGGEbFLawP2gS7YikM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/5379e5-3d85-41b1-9d71-810627fb2671/1/37H24AFTpJGGEbFLawP2gS7YikM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:ae:38:10:4f:45:a6:82:96:7c:59:4f:0d:d2:e6:a7:6b:92:
5e:6e:d2:e1:0c:bc:7d:90:e9:b7:aa:36:15:4b:01:f6:02:61:
3d:bc:25:5c:2d:69:a6:a4:ff:7f:d2:8e:77:35:a0:71:d0:45:
2a:f1:c5:83:13:54:19:9c:a6:f0:0f:47:49:33:4f:90:a2:e9:
ff:37:60:4d:a4:bd:b1:b1:81:65:e5:16:a5:87:85:d9:c7:18:
02:c4:17:42:10:c8:62:63:6d:eb:15:27:0a:19:46:c5:bc:9b:
0d:c6:15:50:d9:b0:d5:7e:74:e9:43:98:78:da:58:52:2a:ab:
7f:a5:a6:89:22:53:35:76:d3:a5:94:0a:00:63:a6:7f:35:28:
72:d0:3e:cd:73:99:e3:22:0b:79:b4:bf:c3:e6:66:af:90:04:
c9:b5:61:0a:ef:49:35:1e:34:e0:79:22:cb:de:25:cc:03:01:
1e:40:63:8d:cc:9b:3c:ab:f0:8d:aa:96:36:4a:57:2d:fd:03:
b0:29:db:9b:aa:69:01:1b:44:f4:87:4c:71:9c:d8:61:9e:3d:
4b:4d:90:fb:76:00:9e:19:3a:b2:6a:29:6d:38:28:ee:cd:a8:
a1:96:14:10:01:0a:16:e2:e1:f0:aa:cd:3d:f3:cb:3b:a4:9a:
a7:20:9a:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:05:33 2026 by rpki-client