Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.mft
File: FSj8hxfpGa4HJhquKNjIRWTIpxI.mft (raw, json)
Hash identifier: XXI6Vjg41LW4VuobPZkA5UxyH95DX8nv2nauYVTCvls=
Subject key identifier: 34:D2:56:2F:1C:AF:D8:51:37:46:79:D1:74:1A:17:21:B6:6E:44:6D
Authority key identifier: 15:28:FC:87:17:E9:19:AE:07:26:1A:AE:28:D8:C8:45:64:C8:A7:12
Certificate issuer: /CN=1528fc8717e919ae07261aae28d8c84564c8a712
Certificate serial: 019CAA21CD39B6282694636F0EB1D0303DA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FSj8hxfpGa4HJhquKNjIRWTIpxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.mft
Manifest number: 11A5
Signing time: Sun 01 Mar 2026 16:01:07 +0000
Manifest this update: Sun 01 Mar 2026 16:01:07 +0000
Manifest next update: Mon 02 Mar 2026 16:01:07 +0000
Files and hashes: 1: FSj8hxfpGa4HJhquKNjIRWTIpxI.crl (hash: UMccrAOk1Eb3QK1PTYRyhZGvAdGDHZQ1V+kB26iovPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.mft
rsync://rpki.ripe.net/repository/DEFAULT/FSj8hxfpGa4HJhquKNjIRWTIpxI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:cd:39:b6:28:26:94:63:6f:0e:b1:d0:30:3d:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1528fc8717e919ae07261aae28d8c84564c8a712
Validity
Not Before: Mar 1 16:01:07 2026 GMT
Not After : Mar 2 16:01:07 2026 GMT
Subject: CN=34d2562f1cafd851374679d1741a1721b66e446d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f4:b3:7d:af:d3:37:49:46:4c:5b:98:32:c0:
86:10:61:02:0b:94:34:08:1c:56:57:24:b3:79:7b:
4d:dc:c6:57:d5:98:8e:d4:2f:ac:ea:5d:33:8c:fc:
a7:62:60:12:1b:01:08:81:0a:e2:52:16:f1:2c:f6:
1c:cf:24:ba:a6:47:27:41:5f:72:4e:dd:fa:3b:c4:
9a:10:a9:b7:1d:8c:13:b0:4f:ee:db:45:48:7f:31:
d8:5d:74:70:3f:79:ef:7a:a5:ba:09:2f:06:3d:75:
05:57:85:d6:cd:8c:70:87:fa:b2:2f:1b:a8:7b:bd:
7e:f4:ff:3b:03:cf:e8:54:5c:ca:1d:6e:88:7e:29:
8e:28:dc:90:0a:8e:9e:b9:b7:ea:8b:10:22:76:9c:
29:a1:70:dd:63:21:52:93:c1:ad:61:5f:88:b7:e6:
83:13:03:e1:9e:9e:77:03:c6:e9:69:c4:3f:3b:76:
e1:6f:8b:14:66:87:87:20:be:fd:25:63:32:83:7f:
e9:4b:f2:9e:63:4c:fa:d1:bc:5e:ba:1f:fd:97:5e:
d9:2a:b6:d1:69:5d:53:25:a1:7b:02:9f:b7:04:53:
01:93:fe:9c:b5:5e:39:c9:91:54:c2:ef:aa:ee:e7:
4e:dc:0e:62:28:ba:1a:4c:36:07:33:56:29:6b:e0:
99:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D2:56:2F:1C:AF:D8:51:37:46:79:D1:74:1A:17:21:B6:6E:44:6D
X509v3 Authority Key Identifier:
keyid:15:28:FC:87:17:E9:19:AE:07:26:1A:AE:28:D8:C8:45:64:C8:A7:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FSj8hxfpGa4HJhquKNjIRWTIpxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6dfbb6-4afa-4bbc-9d19-671072f91a13/1/FSj8hxfpGa4HJhquKNjIRWTIpxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:0b:b2:fb:79:0d:f2:44:4b:84:50:ca:97:4b:63:fb:d4:74:
60:8c:31:bb:e6:9a:d6:d0:01:3b:1c:02:c4:28:3f:41:da:ad:
81:2d:64:c0:6b:56:f4:f4:0e:34:80:33:d8:b4:b3:cf:5a:f9:
98:7e:ea:fd:b5:61:46:f9:fd:9a:74:c8:ae:3d:a5:b6:3c:e1:
10:75:66:cb:79:bc:26:ae:6c:d7:12:51:82:92:f4:e9:ba:73:
cd:3f:91:cc:b6:40:57:dc:18:eb:52:a9:6f:6c:be:50:64:6e:
4c:1b:95:ea:98:c2:44:6a:0b:d5:b9:18:0d:35:e3:f3:8c:6b:
a8:71:48:fe:c6:54:84:b2:44:f0:81:91:28:7e:c3:72:15:a0:
41:15:b8:96:d2:f9:5a:2c:32:d9:54:26:b1:b7:ee:16:5d:05:
e8:36:3a:e4:8b:b7:21:48:ed:d4:02:3c:99:27:47:19:75:f3:
79:27:0f:60:4a:21:cd:cf:39:4d:c9:18:03:cc:25:65:6c:c6:
39:0a:eb:ab:33:e4:9f:57:fb:c2:cd:4c:2f:f5:30:7c:43:93:
7e:df:f3:4d:e5:89:98:c6:f1:65:33:8b:20:ab:31:44:c3:df:
05:44:09:d9:1f:31:c7:07:b9:80:9c:aa:08:47:79:ef:17:c2:
a0:5b:89:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:14:56 2026 by rpki-client