Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
File: X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft (raw, json)
Hash identifier: qwZRs9yiVhIknmoYdgG6TVoDkpKon3/r9raGMZK+f0M=
Subject key identifier: 87:08:72:50:94:5D:0D:3A:82:F5:FB:19:AA:77:EB:5D:FE:9E:18:0E
Authority key identifier: 5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
Certificate issuer: /CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Certificate serial: 019D992B5C538A1A11E5F30B3851877ECB92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
Manifest number: 0698
Signing time: Fri 17 Apr 2026 02:00:48 +0000
Manifest this update: Fri 17 Apr 2026 02:00:48 +0000
Manifest next update: Sat 18 Apr 2026 02:00:48 +0000
Files and hashes: 1: X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl (hash: O+fPdBUR1dMo6c6R2gDZ61OgzGsmWCWArluGGvyJmRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:5c:53:8a:1a:11:e5:f3:0b:38:51:87:7e:cb:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f7a123546fe51a9e4bedf83eee03752bd9639d6
Validity
Not Before: Apr 17 02:00:48 2026 GMT
Not After : Apr 18 02:00:48 2026 GMT
Subject: CN=87087250945d0d3a82f5fb19aa77eb5dfe9e180e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:50:54:92:4c:75:98:31:e2:4b:38:87:59:70:
89:64:f7:43:a3:13:a5:ad:1b:21:06:1a:c9:e8:30:
c4:7c:0d:01:7f:4c:11:63:54:25:1c:08:0c:3f:c3:
11:d7:dc:a0:c6:94:7e:f7:81:c9:47:f1:35:11:f8:
6d:53:27:f4:a9:1a:93:7d:47:8a:96:60:bd:c0:b2:
30:9d:d3:7f:d5:ba:10:31:ce:99:23:b9:5c:92:19:
4e:04:3e:da:78:20:ef:20:98:67:af:2a:b0:6d:01:
a9:1f:43:82:64:01:c7:4b:3b:f2:fb:1d:4e:0b:c8:
11:a7:21:cb:71:74:ff:57:7f:3d:da:01:d6:cf:1d:
2c:eb:50:9c:8b:46:93:4d:0b:7c:eb:1c:b8:d7:41:
a4:85:31:b4:c7:88:a1:db:c3:ed:9a:8f:a2:b2:de:
58:f2:14:fb:f9:f8:2c:68:9c:5a:30:dc:fb:fe:98:
df:af:b2:d1:da:1b:06:29:9f:b6:24:94:f2:22:09:
ee:9b:bb:06:0f:13:d7:63:f2:cc:5d:91:3c:bf:f5:
ac:9d:6e:42:87:98:03:30:ad:0d:b6:d6:ba:4b:f3:
4f:19:94:d8:2d:a3:52:c8:63:82:ca:21:bb:c0:b1:
7a:ca:26:d2:58:fe:7f:22:f3:85:4b:0a:5d:e3:09:
c4:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:08:72:50:94:5D:0D:3A:82:F5:FB:19:AA:77:EB:5D:FE:9E:18:0E
X509v3 Authority Key Identifier:
keyid:5F:7A:12:35:46:FE:51:A9:E4:BE:DF:83:EE:E0:37:52:BD:96:39:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X3oSNUb-Uankvt-D7uA3Ur2WOdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/0de238-8d0b-40ff-b569-b2ff681da6bb/1/X3oSNUb-Uankvt-D7uA3Ur2WOdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:50:1b:7a:e4:c9:9c:71:1a:da:75:a2:55:80:da:71:1c:b3:
33:90:46:53:16:0c:6e:89:4a:0c:cf:c1:4f:c4:6d:7d:87:1e:
87:53:8e:75:36:31:89:b1:31:6c:08:99:f2:aa:95:23:bd:23:
d9:d4:b1:38:96:85:d4:e2:17:aa:15:e0:21:85:f2:2c:9a:c1:
91:97:5c:86:91:4a:dc:2c:29:7f:7d:9f:56:1f:e2:22:2b:b2:
79:d0:4b:e8:19:cd:31:b9:62:58:32:e2:51:f0:41:85:58:d2:
0d:37:a4:65:0d:35:02:b4:db:a5:44:e2:50:3e:34:c6:bf:68:
05:4b:a9:6e:b0:4f:93:cc:c9:a9:76:76:9f:4d:4d:d7:d2:99:
23:f8:e8:6b:9f:85:cf:33:fa:e2:1d:ef:02:34:05:59:8d:60:
6b:8d:fa:1f:e4:46:ec:b3:bb:1b:ea:97:88:d8:9e:70:ad:8c:
12:00:8a:1a:36:ee:ea:f1:05:7b:4b:d0:6a:aa:75:00:c8:20:
8f:14:c9:63:00:05:cd:ba:60:30:a4:f8:9f:16:0d:57:bf:66:
2d:34:f7:e5:12:8e:cd:b0:49:ff:e4:fb:d0:38:2d:dd:f9:af:
8c:8e:75:9e:6b:7c:4d:ae:bc:20:40:80:3f:ae:fe:8d:85:89:
4c:1a:ea:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:26:10 2026 by rpki-client