Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
File: w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft (raw, json)
Hash identifier: sUu5Z87o3q+1Zg1IAjI2G+SmoPLDVryXaQIMdHhRvHY=
Subject key identifier: D1:5C:75:56:2B:F5:29:64:0D:6C:CE:C6:58:6F:A6:A9:F1:97:1B:E8
Authority key identifier: C3:BC:2D:2F:68:17:B9:4C:26:AE:FD:D8:9F:F9:43:A8:8F:3F:1C:84
Certificate issuer: /CN=c3bc2d2f6817b94c26aefdd89ff943a88f3f1c84
Certificate serial: 019D9A06ABB722D7A134F55F104536A0FF2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
Manifest number: 0880
Signing time: Fri 17 Apr 2026 06:00:21 +0000
Manifest this update: Fri 17 Apr 2026 06:00:21 +0000
Manifest next update: Sat 18 Apr 2026 06:00:21 +0000
Files and hashes: 1: w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl (hash: cjnpJ8RmCXfW3MnVI5oLjsmpatN17Zc75XdduWdXBKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:06:ab:b7:22:d7:a1:34:f5:5f:10:45:36:a0:ff:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3bc2d2f6817b94c26aefdd89ff943a88f3f1c84
Validity
Not Before: Apr 17 06:00:21 2026 GMT
Not After : Apr 18 06:00:21 2026 GMT
Subject: CN=d15c75562bf529640d6ccec6586fa6a9f1971be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:48:57:86:ec:7e:09:5f:1d:dc:e5:5a:37:9c:
ae:e0:27:bd:45:67:f5:68:c3:1a:3b:b0:60:3f:99:
86:7f:1a:49:ec:a5:78:26:3e:3a:14:6c:3f:a8:01:
95:ff:a9:00:df:ab:ba:a2:3e:ef:b5:c7:70:d7:e7:
0d:5f:a2:c9:7c:a2:86:61:4c:bf:5c:e7:3c:6e:79:
bc:34:c4:35:3d:92:ee:c2:8a:f4:57:35:94:e3:03:
86:a6:ff:fc:81:5c:54:f1:8f:88:2b:a1:8d:48:b7:
84:d2:0f:ba:b0:57:b1:75:6f:7b:ce:9a:ca:b9:6c:
ee:7a:42:92:5d:f2:c8:54:81:71:ee:86:68:05:a1:
30:d4:bc:66:99:10:4b:2f:2e:c6:7f:3f:c0:28:d6:
42:6f:c7:56:0e:ec:76:3f:9c:29:28:57:76:5a:35:
4d:1e:1c:a9:dc:4e:c5:b8:d2:5e:b7:83:a3:69:5b:
9f:38:5d:5b:4b:a4:0a:14:9a:1b:d2:f0:d5:02:0c:
fe:a3:4b:1c:58:a9:70:0a:a4:ed:cf:5c:f0:35:ab:
08:a2:c4:ee:fd:7a:c7:81:f5:62:b4:9f:1f:a3:0e:
8c:05:a4:2d:40:a7:3f:94:c0:7b:3c:18:83:66:72:
ea:8c:df:95:68:f0:90:f9:01:f0:27:50:bd:c2:4c:
d8:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:5C:75:56:2B:F5:29:64:0D:6C:CE:C6:58:6F:A6:A9:F1:97:1B:E8
X509v3 Authority Key Identifier:
keyid:C3:BC:2D:2F:68:17:B9:4C:26:AE:FD:D8:9F:F9:43:A8:8F:3F:1C:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:48:03:2e:8e:c4:55:98:ee:1d:53:9f:ab:b8:3e:e1:eb:25:
93:3f:6c:c2:c3:35:1d:32:38:8d:36:ff:a8:84:35:5d:2d:58:
b4:87:42:2f:c9:2e:57:3f:27:13:59:4d:83:ce:81:d2:e9:f8:
0d:3c:10:7a:41:d2:7c:b7:fa:bc:24:31:62:dd:06:3c:c0:7a:
2f:03:d6:a7:63:26:f3:0c:a0:f2:4f:6c:ee:12:8d:6d:1a:f1:
75:0c:a5:94:4c:d1:8f:fc:81:25:c4:86:c8:9d:4e:bf:82:94:
f3:b8:5c:5f:ce:6e:e4:2a:eb:0b:7d:61:77:fa:9c:0e:da:ec:
28:fa:f2:17:1b:81:dc:23:18:17:f5:2c:0a:3a:28:8d:be:aa:
c3:ac:ee:c6:53:1b:4a:90:89:d3:a1:21:e4:d6:91:d6:cc:bf:
d9:1a:55:07:3b:ba:c3:ea:95:11:00:b9:a7:3e:9a:70:dd:a0:
0b:5d:84:f0:1e:1d:d8:10:5a:b5:00:d1:42:c5:2f:29:42:3f:
3e:1b:76:6f:29:7a:c3:77:7e:a8:b0:1c:d7:e2:ec:96:1d:9b:
89:31:76:2a:d3:f7:20:73:22:95:51:a0:95:22:b6:e8:bc:00:
93:1a:b2:36:d0:bf:4c:b3:7f:f1:c8:11:81:91:df:fb:92:6b:
7f:66:d9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:25:16 2026 by rpki-client