Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft
File: 435CoUa5C6fNMxrWoT7vHaL7pEA.mft (raw, json)
Hash identifier: pmYmr7AZpJ6rujuUgO4S4jfhQCFhGDeYiLsrXmKqzE0=
Subject key identifier: FF:4D:5E:F6:B0:31:FC:8E:F0:F5:52:A2:7C:86:46:27:83:EB:55:11
Authority key identifier: E3:7E:42:A1:46:B9:0B:A7:CD:33:1A:D6:A1:3E:EF:1D:A2:FB:A4:40
Certificate issuer: /CN=e37e42a146b90ba7cd331ad6a13eef1da2fba440
Certificate serial: 019CAC1037CC93DBB64B8433E5FE7BC552B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft
Manifest number: 0A53
Signing time: Mon 02 Mar 2026 01:01:09 +0000
Manifest this update: Mon 02 Mar 2026 01:01:09 +0000
Manifest next update: Tue 03 Mar 2026 01:01:09 +0000
Files and hashes: 1: 435CoUa5C6fNMxrWoT7vHaL7pEA.crl (hash: t9579uAeqShq9MB7vkBF5p+xw6FCT8FXFgupehOdsn8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:37:cc:93:db:b6:4b:84:33:e5:fe:7b:c5:52:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e37e42a146b90ba7cd331ad6a13eef1da2fba440
Validity
Not Before: Mar 2 01:01:09 2026 GMT
Not After : Mar 3 01:01:09 2026 GMT
Subject: CN=ff4d5ef6b031fc8ef0f552a27c86462783eb5511
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:6d:82:74:b8:05:b1:a8:3b:de:7d:8c:6f:93:
f8:e3:0a:fd:06:66:41:42:d7:91:9f:7a:c6:20:a8:
ad:e8:1a:17:92:0b:ef:e5:58:30:2f:65:95:d9:37:
ad:1b:8a:ea:fd:43:ce:a1:2f:69:ae:1b:cb:21:91:
d7:16:2d:b3:68:fb:29:0c:88:fe:de:d0:8f:69:df:
0a:06:fe:35:0e:f5:41:65:6a:20:c2:bb:a2:ab:49:
01:ff:9a:c9:09:76:29:ec:d4:b7:4d:81:71:05:f8:
cc:32:b4:eb:50:ec:d4:09:23:0d:80:6e:10:3f:ea:
17:1f:a4:50:d9:04:3f:7d:cb:7c:19:0a:b8:ea:a9:
46:a7:d8:d4:1e:39:24:1d:e2:54:eb:98:4e:d8:78:
34:74:bd:49:6d:85:35:64:dc:be:80:88:a9:a5:bb:
a8:fe:b1:e8:eb:b3:f9:61:63:9c:8e:fb:d6:ae:10:
c3:23:bc:d9:42:2a:64:62:e6:93:60:33:f4:ce:a8:
f3:b6:12:74:8f:c1:31:da:f1:0c:f5:c5:1f:21:e9:
bc:e8:d9:be:93:6f:fa:91:e8:9e:cb:40:1f:2d:ba:
5b:40:42:4f:63:ae:81:33:ea:e6:70:a7:aa:69:a5:
f5:b0:c5:89:f3:5e:14:91:cc:1a:d8:77:e6:15:d4:
02:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:4D:5E:F6:B0:31:FC:8E:F0:F5:52:A2:7C:86:46:27:83:EB:55:11
X509v3 Authority Key Identifier:
keyid:E3:7E:42:A1:46:B9:0B:A7:CD:33:1A:D6:A1:3E:EF:1D:A2:FB:A4:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ba:fd:4a:62:83:19:e6:ab:18:7f:4c:9c:87:eb:89:20:b7:0d:
f8:7f:50:cd:c6:15:41:3c:0b:c1:fb:16:51:8e:27:ec:33:1e:
d8:15:b2:6c:17:0b:99:a7:41:5c:c0:a8:b5:ec:c9:1e:41:e4:
90:e2:1d:d2:4d:9a:d2:89:ee:f2:ce:13:87:91:07:d7:65:1e:
7d:63:10:c5:5a:b2:be:96:bc:48:a8:8b:18:7c:2b:6e:86:fb:
4c:16:a2:00:24:c3:14:e8:81:d6:0c:75:6a:a3:b8:03:0c:43:
4d:7c:33:15:68:bb:d7:aa:68:bf:2e:5d:50:e5:9e:ce:5e:83:
13:9c:c3:fa:f6:6b:9d:79:3b:b1:21:a8:06:d4:d9:06:a8:1c:
f9:56:5d:be:ce:7e:3b:08:f2:c1:20:cc:b2:e5:c5:b0:4a:22:
e1:de:8a:37:6a:8b:b3:22:86:0c:7c:b8:e4:1d:23:1c:67:95:
5f:19:dc:e5:e6:21:82:ca:80:2e:da:66:c3:60:9e:d4:b1:e7:
de:cd:43:14:24:5a:76:b6:15:a8:dd:68:98:37:59:59:6c:3e:
4e:9a:07:69:c3:bf:e0:65:2e:df:87:d9:8b:02:d9:0f:f4:e7:
8d:29:fd:09:42:ae:53:b9:ca:26:ae:68:f4:94:12:d7:8a:72:
13:58:06:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:49:55 2026 by rpki-client