Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
File: l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft (raw, json)
Hash identifier: AGa3NX/Gcy28iU+/hy62E8qsaSLDAbWqvsuwDlxPoKA=
Subject key identifier: B4:87:EF:49:8E:1C:4B:C2:8A:C4:70:11:7C:E3:75:99:80:72:21:A2
Authority key identifier: 97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
Certificate issuer: /CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Certificate serial: 019CABD9086DD9E28B30A7E372A497514D71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
Manifest number: 1841
Signing time: Mon 02 Mar 2026 00:00:53 +0000
Manifest this update: Mon 02 Mar 2026 00:00:53 +0000
Manifest next update: Tue 03 Mar 2026 00:00:53 +0000
Files and hashes: 1: l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl (hash: E5hm/m4hSVijfJEfeZZX3pn57VuRpZs7eVJYD0pxcvU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:08:6d:d9:e2:8b:30:a7:e3:72:a4:97:51:4d:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97577f84188e283fdb5d7a6fcccc4856c19949b8
Validity
Not Before: Mar 2 00:00:53 2026 GMT
Not After : Mar 3 00:00:53 2026 GMT
Subject: CN=b487ef498e1c4bc28ac470117ce37599807221a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:ff:f0:b7:f1:27:85:08:d0:e2:44:b3:25:a5:
5d:a3:fb:47:f4:44:f3:ab:14:04:d1:a1:ac:7b:e0:
bc:87:8c:72:52:a6:2e:49:c9:12:51:32:d3:82:af:
ff:2c:5e:dc:32:0e:49:5c:d0:39:c2:77:75:68:80:
ea:6e:f8:db:26:ca:cc:ca:ed:11:0f:cf:b8:e7:81:
4a:ef:12:14:c5:4a:37:13:d8:58:81:2f:24:b2:e2:
f0:32:ba:9d:70:36:5d:12:9d:65:33:0a:d4:f9:62:
6e:c7:86:aa:08:65:00:f0:0c:36:8e:34:c5:d3:6a:
72:e2:9a:1b:08:46:77:76:1f:b6:e3:50:da:cf:27:
8b:24:65:1c:1b:b2:4a:c8:03:1d:ce:6b:19:25:f2:
6d:69:f2:98:28:bd:11:47:cf:c3:77:b7:8e:a5:4e:
1d:a9:5c:c3:98:af:c8:35:24:92:de:a5:1b:68:11:
3a:b6:09:16:65:db:37:44:36:50:6a:78:60:5e:b9:
3c:bb:7f:9e:fc:ec:bf:49:c5:56:c4:16:f8:ed:0a:
76:98:df:30:3c:b6:47:81:77:2d:1a:7a:25:73:a2:
3d:12:24:3b:a8:39:46:79:f2:b6:d9:36:a7:f2:55:
2d:87:5c:e1:f1:bf:18:27:1c:33:cb:40:14:56:92:
8f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:87:EF:49:8E:1C:4B:C2:8A:C4:70:11:7C:E3:75:99:80:72:21:A2
X509v3 Authority Key Identifier:
keyid:97:57:7F:84:18:8E:28:3F:DB:5D:7A:6F:CC:CC:48:56:C1:99:49:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l1d_hBiOKD_bXXpvzMxIVsGZSbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/b384ba-40ec-42a4-8330-a1a64b49fa50/1/l1d_hBiOKD_bXXpvzMxIVsGZSbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:de:63:cd:2d:e7:f1:da:4c:5e:d7:02:93:9a:fe:44:19:c0:
e8:80:0b:ed:48:65:bc:87:65:79:88:57:21:4e:33:74:3c:9a:
63:18:f0:4a:c8:62:d4:cf:75:8f:65:ce:da:ef:ac:f7:a4:aa:
05:05:0b:9d:7a:11:65:07:b5:eb:0f:7a:bd:35:63:b1:91:6f:
89:b4:7e:da:be:6d:92:e1:8b:3d:b4:ee:67:96:10:cc:6e:db:
46:c2:2b:07:3c:3d:02:16:e2:00:b8:71:6b:21:e0:73:89:48:
81:5d:94:d0:dc:8b:88:6f:c4:56:df:76:ea:5c:14:c0:b8:06:
f2:61:ac:8f:f7:25:6b:65:fa:1a:a3:7a:54:4c:6a:d6:08:9c:
49:42:48:ee:fa:01:54:03:09:4a:78:9b:9b:07:6c:63:f5:c3:
d1:0c:6e:b1:59:21:77:9c:4c:9e:51:9f:a4:fb:85:72:1c:36:
7e:7a:89:61:0c:3c:c8:04:f5:5a:01:04:2f:6c:71:22:99:9f:
af:b4:bc:eb:16:dc:1a:75:07:66:17:63:b0:e5:5e:75:b2:0d:
9c:3a:20:5c:8b:cb:c1:a6:de:f6:d7:7d:b9:c1:b3:35:a3:f4:
5a:ed:ea:b4:bd:30:76:ee:96:ca:d9:b6:70:9b:bd:36:38:10:
91:64:0a:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:15:23 2026 by rpki-client