Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft
File: RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft (raw, json)
Hash identifier: oWCtPumjjNfwv5p3YVszAGsDOzZlprrsL7ib96Z6UjA=
Subject key identifier: CC:FB:10:0F:6E:31:83:6F:A2:DE:5B:F8:1B:A5:2A:AC:95:CA:F3:22
Authority key identifier: 44:05:86:C5:46:14:B9:6E:DB:84:70:95:24:A3:34:B3:1C:99:99:FD
Certificate issuer: /CN=440586c54614b96edb84709524a334b31c9999fd
Certificate serial: 019D98F41668110D7479AE97CDB5F5D542F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RAWGxUYUuW7bhHCVJKM0sxyZmf0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft
Manifest number: 0BC9
Signing time: Fri 17 Apr 2026 01:00:26 +0000
Manifest this update: Fri 17 Apr 2026 01:00:26 +0000
Manifest next update: Sat 18 Apr 2026 01:00:26 +0000
Files and hashes: 1: RAWGxUYUuW7bhHCVJKM0sxyZmf0.crl (hash: EOrzBBxtmqmQTER9dnpWyp/Q13jLKhZZLWNa44/c7gU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RAWGxUYUuW7bhHCVJKM0sxyZmf0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:16:68:11:0d:74:79:ae:97:cd:b5:f5:d5:42:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=440586c54614b96edb84709524a334b31c9999fd
Validity
Not Before: Apr 17 01:00:26 2026 GMT
Not After : Apr 18 01:00:26 2026 GMT
Subject: CN=ccfb100f6e31836fa2de5bf81ba52aac95caf322
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ad:63:7b:69:59:5c:41:cf:96:93:b0:3c:fe:
9d:4e:73:ac:da:71:dd:c0:fa:85:72:74:29:48:d0:
c5:ff:5f:8b:9f:9c:df:df:eb:ba:93:19:b1:1b:24:
12:dd:d1:ee:45:7c:08:44:2a:a8:f7:13:ac:1e:8d:
86:4a:b5:db:e9:89:a8:5a:6b:62:a7:da:da:b9:d9:
b2:01:04:83:57:3e:8a:fa:fd:92:36:ad:d6:60:ba:
de:4e:69:03:df:fc:e1:ff:2c:f7:65:2c:1f:8f:2e:
c1:09:e3:4d:38:4a:fe:21:38:54:2b:48:8c:66:f8:
1a:3c:0e:be:a9:3b:e6:7f:45:b7:76:8d:df:76:b7:
77:9b:d8:d6:7d:ab:24:1d:6b:83:b2:6c:fb:29:9d:
db:22:bf:0c:fb:3e:41:0b:0a:b9:66:19:6b:56:ac:
6d:fb:b2:19:fb:a2:52:4e:63:94:e8:20:28:9c:5c:
98:39:d4:42:58:c2:d0:7b:c9:13:8e:7c:c6:7e:de:
e6:d0:d5:5a:0e:91:10:c8:73:7b:16:19:3b:55:23:
60:20:e7:cf:d0:30:91:5f:e2:24:7a:ae:97:1d:f3:
6c:01:70:17:d9:5d:76:6d:26:e8:76:48:b1:c1:29:
36:85:ce:9d:5c:a2:91:cd:8d:49:64:25:60:55:4f:
1a:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:FB:10:0F:6E:31:83:6F:A2:DE:5B:F8:1B:A5:2A:AC:95:CA:F3:22
X509v3 Authority Key Identifier:
keyid:44:05:86:C5:46:14:B9:6E:DB:84:70:95:24:A3:34:B3:1C:99:99:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RAWGxUYUuW7bhHCVJKM0sxyZmf0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/6bc0c8-1ad7-46ed-8ec2-c74cc54a7e85/1/RAWGxUYUuW7bhHCVJKM0sxyZmf0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:73:f2:37:2f:d1:47:fa:14:fb:fc:64:81:7d:94:20:18:b3:
8a:28:92:e2:3d:93:ec:f5:92:f7:fb:dc:4f:86:e8:6f:45:4d:
3d:3c:e9:1a:7d:f7:2f:cc:5e:6b:66:50:ca:65:1a:c0:b9:95:
dd:39:7b:05:ec:f3:92:a3:f5:84:92:fa:7e:b2:b9:d4:41:19:
82:98:8a:f7:77:44:6a:c3:b1:45:87:81:26:fd:b0:dc:52:97:
41:be:af:99:d0:bb:4d:3c:51:bd:6b:e2:f9:1f:8b:72:a6:a6:
de:06:65:b7:68:24:5d:45:bf:be:41:c0:ad:da:29:da:39:55:
b3:ef:87:8a:1f:08:12:ad:c1:24:0f:40:1e:63:a6:9b:6f:05:
11:9d:75:bd:c2:0e:ff:24:cd:db:f2:85:ac:50:19:31:2b:f4:
e4:30:b8:9b:1c:c2:7a:90:83:ed:61:41:8c:0e:07:8b:55:fd:
da:b1:fb:76:62:b1:15:04:3d:31:16:87:3a:d8:46:5d:e6:1d:
85:06:4b:e5:96:73:ba:20:a2:db:9e:1e:84:d7:26:b2:23:c2:
1c:c4:53:43:4a:78:fc:ea:15:48:a5:2e:65:4a:b3:21:f0:ad:
35:5a:75:ab:1e:12:a2:e6:7f:d0:c7:97:6e:b5:92:8d:c4:d7:
00:e3:34:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:26:12 2026 by rpki-client