Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
File: T5mJlOtWGejymrO956sq0U6r_P0.mft (raw, json)
Hash identifier: 2C/MhwQBmfVIPeCOwWwoD1VBXUjm2rxXizhXJ4CSEI8=
Subject key identifier: CD:1E:C2:65:97:29:9A:2F:6F:F8:55:F0:46:ED:88:71:EB:AF:EC:32
Authority key identifier: 4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD
Certificate issuer: /CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
Certificate serial: 019CACB49FB24AB4B4D3078CB8E1E3DF928D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
Manifest number: 1842
Signing time: Mon 02 Mar 2026 04:00:44 +0000
Manifest this update: Mon 02 Mar 2026 04:00:44 +0000
Manifest next update: Tue 03 Mar 2026 04:00:44 +0000
Files and hashes: 1: T5mJlOtWGejymrO956sq0U6r_P0.crl (hash: l+4zJJ4X09NIxIIBoiYmASKmqrAcf0elQapWkFQdlO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:9f:b2:4a:b4:b4:d3:07:8c:b8:e1:e3:df:92:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f998994eb5619e8f29ab3bde7ab2ad14eabfcfd
Validity
Not Before: Mar 2 04:00:44 2026 GMT
Not After : Mar 3 04:00:44 2026 GMT
Subject: CN=cd1ec26597299a2f6ff855f046ed8871ebafec32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:37:4f:1f:7e:f0:e9:bb:1b:54:fe:0e:6c:d4:
42:71:c8:94:9c:fb:ae:66:6c:12:e5:ad:5b:1a:d8:
8e:ef:80:da:8e:3a:11:da:94:c0:21:4e:92:77:f5:
04:90:e0:ae:87:74:9c:d2:2b:c6:18:20:8e:b2:48:
0b:d4:0a:2e:8e:a5:0a:f5:2e:cf:50:84:f5:f4:eb:
ba:ed:9e:06:37:b7:40:13:e3:7d:bd:57:ef:c1:11:
43:77:50:d9:27:cb:84:01:2f:68:a9:66:2c:62:37:
df:31:56:6f:76:f1:09:9e:da:09:94:c6:1e:22:04:
4d:10:c8:ae:09:d6:e9:89:c1:68:70:cc:40:ed:47:
d4:a7:c8:9b:b3:5c:97:c5:ae:37:71:5a:d4:0d:51:
5b:b2:39:1d:99:08:23:e8:cd:4d:9f:46:2b:07:a1:
ed:e2:23:29:ae:b8:9a:46:38:67:54:4a:de:e8:ba:
a7:6e:79:0c:d5:1a:f3:28:e7:5d:48:e5:7f:37:ac:
3b:f0:75:67:33:71:72:09:5f:fb:2b:db:ec:4c:e1:
9a:0c:70:25:46:30:43:46:86:45:21:46:8c:a7:7b:
a1:a7:4c:3e:35:e6:1b:05:5c:57:56:80:ad:ad:da:
7f:f6:dc:63:84:fe:9f:07:00:09:d6:b9:82:2a:b1:
60:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:1E:C2:65:97:29:9A:2F:6F:F8:55:F0:46:ED:88:71:EB:AF:EC:32
X509v3 Authority Key Identifier:
keyid:4F:99:89:94:EB:56:19:E8:F2:9A:B3:BD:E7:AB:2A:D1:4E:AB:FC:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5mJlOtWGejymrO956sq0U6r_P0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c487-f8fb-4035-9e28-4468d12f322b/1/T5mJlOtWGejymrO956sq0U6r_P0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:3b:c8:56:0b:30:3e:bd:ab:06:9c:9e:6f:6e:6b:9d:25:95:
90:5b:93:2b:a3:09:7c:79:d2:f4:ab:de:99:6f:3c:69:8c:9d:
a6:a8:ef:09:f4:c8:54:b2:b9:c3:f7:17:a5:31:a2:77:d1:4b:
45:a4:26:f8:9d:8a:1e:93:3b:59:3d:bb:30:2d:1c:ad:7f:90:
24:e0:51:35:82:5a:74:87:db:e8:43:fd:ee:a8:32:1c:12:f6:
17:e6:ba:8d:5c:40:f0:fa:bb:d2:fc:09:68:40:26:2b:f4:d0:
d3:ca:d6:f6:fc:8d:db:d9:b6:b1:a4:4d:85:6f:91:06:63:89:
fb:2b:26:fc:a8:fd:fd:39:f6:ed:1b:f9:39:58:93:21:30:ef:
60:07:d0:ef:1f:0b:73:0d:d7:ab:6f:b7:d0:cc:1a:aa:4c:be:
c0:42:60:5c:9e:35:4e:80:bc:9c:41:8a:da:db:1c:b0:18:a7:
26:e3:fb:e7:84:5d:b0:04:ce:38:0a:ef:a1:8c:68:38:95:25:
ea:d7:d0:6a:ad:29:7a:17:27:61:fd:af:48:04:1d:7a:f5:7b:
81:c6:ca:8b:d4:d4:bc:54:54:fb:ac:85:d2:81:87:6f:a0:40:
53:1e:4c:a6:62:3c:8d:7f:43:89:da:34:44:1b:0f:f9:9d:c4:
33:8a:a2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:27:24 2026 by rpki-client