Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
File: jR4EozwylZxnL0X0a-EIZLgemEo.mft (raw, json)
Hash identifier: GGO/72e6MslHCMRjZyN/SPtLn4GQEin53Jx7eE5/yRk=
Subject key identifier: 57:86:26:E6:65:FD:49:1B:D3:43:9C:D5:D1:4E:50:E2:11:CB:C8:DE
Authority key identifier: 8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
Certificate issuer: /CN=8d1e04a33c32959c672f45f46be10864b81e984a
Certificate serial: 019CAA2151AA6AA32F584C2627D77242170E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
Manifest number: 1840
Signing time: Sun 01 Mar 2026 16:00:36 +0000
Manifest this update: Sun 01 Mar 2026 16:00:36 +0000
Manifest next update: Mon 02 Mar 2026 16:00:36 +0000
Files and hashes: 1: jR4EozwylZxnL0X0a-EIZLgemEo.crl (hash: Ua+HaDXL+ByA1m3aPtxkVLS6nJxDj6I8iuUydq6HkXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:51:aa:6a:a3:2f:58:4c:26:27:d7:72:42:17:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1e04a33c32959c672f45f46be10864b81e984a
Validity
Not Before: Mar 1 16:00:36 2026 GMT
Not After : Mar 2 16:00:36 2026 GMT
Subject: CN=578626e665fd491bd3439cd5d14e50e211cbc8de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b1:15:e0:cd:ab:b5:ab:ef:13:bb:24:80:23:
48:d1:de:bf:98:82:63:f3:e7:d6:6d:a0:35:46:7f:
b9:25:28:f9:3b:91:55:62:e3:d2:aa:0c:3c:3a:4e:
5d:50:41:5c:a2:19:46:3d:ce:44:d3:70:20:58:66:
37:1d:e6:1e:77:46:7c:68:fa:89:ee:97:c5:a5:0c:
69:c1:65:d3:9f:08:bc:0b:22:4b:7c:34:e3:05:f4:
94:1d:20:d1:fa:32:e9:82:fb:b5:ff:6e:41:12:70:
a4:a1:94:b6:8b:24:f5:8f:a9:ca:d1:d7:ca:89:15:
99:5e:b1:bc:cc:96:47:e0:a7:b2:04:ec:d1:bd:34:
23:34:97:0e:06:aa:18:eb:27:ed:4c:57:c1:fd:85:
f7:22:12:b4:37:0d:87:46:db:1c:8e:75:78:f4:fc:
8b:55:c1:86:94:3d:9d:ff:1e:45:ac:ba:05:a5:86:
e1:fb:43:d8:d5:64:d0:b9:57:9c:80:7d:f6:32:9b:
67:0f:78:cf:25:3e:d4:e5:79:eb:06:1f:7a:2b:42:
ba:b0:0c:a9:43:bb:14:93:09:73:d7:41:dd:bc:e4:
a5:cb:58:3c:68:f9:f0:6e:40:d3:fa:33:98:15:35:
61:ea:99:05:4d:ec:e8:27:75:8f:ee:6c:57:06:c0:
f0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:86:26:E6:65:FD:49:1B:D3:43:9C:D5:D1:4E:50:E2:11:CB:C8:DE
X509v3 Authority Key Identifier:
keyid:8D:1E:04:A3:3C:32:95:9C:67:2F:45:F4:6B:E1:08:64:B8:1E:98:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jR4EozwylZxnL0X0a-EIZLgemEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/ee63f3-7d48-49e7-aea7-e249e73eccf1/1/jR4EozwylZxnL0X0a-EIZLgemEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:10:d2:67:69:56:cf:8e:e9:74:7c:4c:44:7b:3b:e7:de:b5:
c4:b4:d1:2e:b9:32:bb:59:3b:a2:9c:1a:f7:10:9d:e4:a3:bd:
2c:33:67:51:58:0d:fb:74:23:8e:78:6a:a4:2a:74:39:f0:90:
7a:51:95:da:3e:c0:38:97:3e:27:30:14:f9:48:51:68:a7:f6:
af:88:e3:ac:b5:5e:10:44:b2:4a:39:06:e1:b2:44:51:25:7d:
2f:ee:06:35:b3:aa:c9:84:9c:67:b6:ff:a9:aa:bc:35:d2:2a:
ce:fb:97:a2:01:bc:63:c8:ff:37:85:e3:78:15:1d:cf:37:83:
bc:8f:45:3f:1d:ae:87:c9:18:ac:0e:97:d8:b0:6a:39:d1:c7:
28:41:ca:d5:f9:ac:4b:a1:98:22:33:12:1c:2c:b2:0f:39:2d:
57:2c:a4:5e:14:f2:e3:0c:ac:9d:ff:b1:9a:0f:d2:cb:d4:88:
e5:51:68:8b:21:c5:6a:a2:ff:f1:12:47:2b:fa:e0:2f:7f:a2:
37:fe:44:ba:89:52:00:bf:72:80:40:dd:35:dc:69:19:24:e9:
e0:83:11:16:60:6a:e4:29:8c:1d:f8:e4:ec:b1:ed:29:09:e8:
7f:37:18:74:e9:db:5c:12:44:0d:32:84:9b:87:66:fc:60:3f:
12:ab:89:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:57:47 2026 by rpki-client