Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
File: 27s70rCfy7vfiVsOOpxaAGRW_aY.mft (raw, json)
Hash identifier: 40m+eycnKWstNnNxBjLUiSUrEjFtZB5xXvscFwmaXBk=
Subject key identifier: E1:0F:99:D1:4E:91:93:EE:28:C4:55:EC:C6:CB:32:A3:60:1F:54:EA
Authority key identifier: DB:BB:3B:D2:B0:9F:CB:BB:DF:89:5B:0E:3A:9C:5A:00:64:56:FD:A6
Certificate issuer: /CN=dbbb3bd2b09fcbbbdf895b0e3a9c5a006456fda6
Certificate serial: 019D98508795614BA4502A81CFEC5DFB8BD9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
Manifest number: 0A2B
Signing time: Thu 16 Apr 2026 22:01:47 +0000
Manifest this update: Thu 16 Apr 2026 22:01:47 +0000
Manifest next update: Fri 17 Apr 2026 22:01:47 +0000
Files and hashes: 1: 27s70rCfy7vfiVsOOpxaAGRW_aY.crl (hash: 5TQ5YR7O/kMKJogo/LnJ5GAXQbtk/7kRcarPczxJDMU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:87:95:61:4b:a4:50:2a:81:cf:ec:5d:fb:8b:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbbb3bd2b09fcbbbdf895b0e3a9c5a006456fda6
Validity
Not Before: Apr 16 22:01:47 2026 GMT
Not After : Apr 17 22:01:47 2026 GMT
Subject: CN=e10f99d14e9193ee28c455ecc6cb32a3601f54ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:e5:b2:13:85:70:ba:2a:73:41:98:34:1a:
a0:85:6f:ce:df:ae:12:3f:3d:9f:d9:1d:b9:6f:c2:
65:4c:ed:5a:8e:6c:49:f4:e6:f4:4b:b2:ae:4b:89:
0b:d2:ad:bc:34:eb:34:90:0c:78:b7:9b:b7:e2:98:
a7:4c:a5:8e:9d:32:1e:02:f9:ff:29:25:a8:8a:e5:
59:5e:d7:35:d5:ea:f0:0c:a3:25:6b:d5:5d:0d:b8:
6e:27:15:4d:d5:61:be:87:cd:63:2d:45:08:72:6b:
55:35:3c:e3:13:fa:5d:de:0d:b3:00:1d:a6:a5:34:
6d:4f:9b:e5:3b:82:90:58:1f:0d:da:23:60:c7:72:
8e:e1:75:96:66:fe:6c:54:56:4b:8d:2f:ec:72:81:
0c:97:35:99:c8:b6:a2:92:83:64:56:db:6f:6d:88:
7d:d7:db:1a:b4:9c:4f:29:35:01:44:b5:9e:e2:a2:
cd:81:dd:54:be:4a:b0:0a:b8:e0:73:93:8a:6d:46:
a2:2c:9d:0e:d6:d2:0d:f9:49:af:86:e0:9b:0c:0f:
85:9f:a6:d6:82:6c:58:5e:de:f5:82:63:a4:d7:c3:
5d:91:f0:b5:d5:96:b5:fc:85:6d:80:6a:01:bb:99:
40:3b:e6:01:cb:3c:56:c9:23:69:ba:92:03:75:90:
8c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:0F:99:D1:4E:91:93:EE:28:C4:55:EC:C6:CB:32:A3:60:1F:54:EA
X509v3 Authority Key Identifier:
keyid:DB:BB:3B:D2:B0:9F:CB:BB:DF:89:5B:0E:3A:9C:5A:00:64:56:FD:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/27s70rCfy7vfiVsOOpxaAGRW_aY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/c32529-b08b-4235-b9b9-e869b34d2c6a/1/27s70rCfy7vfiVsOOpxaAGRW_aY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:31:bd:b8:0e:54:a4:bc:b8:0b:b4:39:b9:cf:a6:8e:d8:63:
a1:1f:28:f8:e3:d9:2b:62:f5:d8:28:e0:08:33:05:3c:ae:b6:
fa:72:71:9a:93:f2:c6:7e:59:1c:e9:46:28:81:71:c0:99:df:
4d:05:84:0a:7a:f9:25:73:a1:0b:19:c0:ba:f8:38:8f:0c:91:
fb:2c:b8:c2:41:41:aa:3b:79:4d:9a:e5:86:aa:20:1f:a4:24:
2f:7d:39:ac:5c:d0:33:24:aa:bd:ff:b9:23:5f:74:d6:16:86:
60:44:23:c2:1b:07:aa:64:46:de:8c:9a:37:c0:1b:e6:1e:ff:
30:4c:7d:82:f4:86:c0:73:03:74:b7:a9:9f:86:0c:19:61:01:
9a:89:78:a5:c7:17:f2:45:46:28:6e:c4:35:8e:0e:ba:3f:90:
1c:de:49:33:4e:90:99:8f:32:1b:95:62:50:6d:c9:e6:12:db:
fa:17:27:ee:71:cb:18:6e:25:cf:94:90:d8:c0:25:e9:81:87:
16:0c:99:9a:33:bc:30:9c:94:49:ff:d2:70:e2:6e:0f:d0:06:
ca:ec:26:ad:c1:d4:ab:c8:17:dd:2a:8e:6a:fb:7d:ea:7d:e7:
ee:81:02:53:f1:a0:2f:f5:c1:90:81:84:4f:ed:e2:0c:2f:99:
f8:2c:1e:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:58:38 2026 by rpki-client