Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
File: JOuXPcgi1CNuy911UB0mxD4chzk.mft (raw, json)
Hash identifier: 9IopNCA+Kr2TxwpXzvrO++XJTyKTfz0a5OUCF0lqQmc=
Subject key identifier: D5:F6:27:BF:F5:1B:74:97:D2:FD:39:B3:D2:3C:03:3F:96:E9:BB:BD
Authority key identifier: 24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
Certificate issuer: /CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Certificate serial: 019D98F4A5173C9ED5FD7164DAB094AEB97E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
Manifest number: 0D65
Signing time: Fri 17 Apr 2026 01:01:03 +0000
Manifest this update: Fri 17 Apr 2026 01:01:03 +0000
Manifest next update: Sat 18 Apr 2026 01:01:03 +0000
Files and hashes: 1: JOuXPcgi1CNuy911UB0mxD4chzk.crl (hash: v9MDjaaG8CoZEu+yr6T7134kWRV9WXSLpm5n8ZptkAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:a5:17:3c:9e:d5:fd:71:64:da:b0:94:ae:b9:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24eb973dc822d4236ecbdd75501d26c43e1c8739
Validity
Not Before: Apr 17 01:01:03 2026 GMT
Not After : Apr 18 01:01:03 2026 GMT
Subject: CN=d5f627bff51b7497d2fd39b3d23c033f96e9bbbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:14:a9:ee:29:46:8e:13:c1:6d:bc:33:9d:4b:
c3:d9:11:0e:93:ca:d1:fc:04:c5:43:53:f6:ea:85:
ba:23:ad:db:a3:17:12:dc:e0:8f:1e:95:0e:a3:d3:
6c:c5:19:2f:7b:01:0f:3b:6d:ae:da:e8:7d:e6:8b:
dc:f9:93:3a:43:0f:de:b2:be:54:11:da:cc:d3:eb:
fb:92:f5:b0:b4:ad:99:de:a8:dd:f5:ea:74:12:fd:
0d:fa:2f:c8:a1:37:55:d7:70:b4:ea:65:49:c7:6d:
90:a4:e8:72:99:63:dd:87:30:64:c9:8c:9b:3c:97:
2b:f6:1b:78:b3:39:b1:1a:c5:e2:91:f4:33:77:42:
86:11:43:f5:81:66:d4:72:7e:05:f9:da:21:7c:e9:
75:1c:e1:4f:1d:27:b4:ff:76:aa:3f:e4:e2:ff:bc:
66:98:6a:0f:75:48:9d:36:4c:91:bd:68:37:0d:a3:
77:08:b7:de:26:6f:73:8f:0a:86:70:95:de:e0:7b:
30:d9:f0:09:f7:d7:8c:5b:e4:5c:ca:a6:54:f4:d3:
99:e3:6f:79:82:7b:0e:4f:4e:47:af:5a:68:4c:eb:
99:8d:80:11:e5:ec:d0:b8:1e:07:bd:7d:96:1f:b3:
92:35:3e:1f:cb:57:08:85:8d:5f:71:a7:f4:54:a7:
2d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F6:27:BF:F5:1B:74:97:D2:FD:39:B3:D2:3C:03:3F:96:E9:BB:BD
X509v3 Authority Key Identifier:
keyid:24:EB:97:3D:C8:22:D4:23:6E:CB:DD:75:50:1D:26:C4:3E:1C:87:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOuXPcgi1CNuy911UB0mxD4chzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/9cedd9-113b-4061-a632-4e1d167f0a9c/1/JOuXPcgi1CNuy911UB0mxD4chzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:6c:9f:e5:65:36:19:7d:0d:4d:d2:36:71:3b:b1:b7:b3:a0:
fb:11:ff:47:1b:94:c4:f2:ff:35:d2:e7:a1:be:55:38:21:aa:
7d:31:62:4e:b8:84:8f:7b:02:a7:72:a5:b9:f0:36:c6:bd:c0:
2d:1a:10:0e:d5:3d:ab:b8:17:51:65:5c:4d:f4:2c:10:bc:2b:
1f:5e:61:78:5c:f5:60:91:40:da:21:6a:d1:ca:f3:0a:93:cc:
16:4e:7b:1d:be:bf:94:42:c5:27:e7:1e:fb:9d:df:79:40:76:
78:99:69:ac:52:a1:91:91:fb:86:90:ad:fa:68:d0:17:d4:c4:
5f:0d:0c:2b:9b:42:d3:ed:5a:64:6d:af:4c:05:39:9c:ed:8a:
6e:ac:3f:4d:55:b0:91:77:0f:7a:10:1f:e1:32:f2:9c:99:1d:
74:54:95:5a:67:71:4c:84:2d:2a:26:a3:a8:43:47:9a:7c:f8:
e0:5d:31:02:24:3d:f9:27:f3:65:49:02:b9:07:1b:97:32:e8:
83:43:24:f4:14:1e:11:79:25:e8:71:4f:27:6f:e2:47:b3:0a:
f7:a0:b5:59:10:e1:6e:3d:04:32:ea:0f:55:73:6c:5d:7f:d1:
b6:a2:ba:94:d5:f1:d0:ed:64:61:00:8c:34:b4:e2:97:e1:c2:
55:3c:7e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:14:11 2026 by rpki-client