Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: F1HY7RmK9hwzUXqEDEZh4MpzYoqhg64UU1nM9QMgaJ8=
Subject key identifier: 4E:B6:05:3E:FF:C5:36:3B:55:0C:22:07:E3:52:51:9E:8C:F5:27:2B
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 019CAE6C50357233E6BB56778D6025AD318C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 0791
Signing time: Mon 02 Mar 2026 12:00:59 +0000
Manifest this update: Mon 02 Mar 2026 12:00:59 +0000
Manifest next update: Tue 03 Mar 2026 12:00:59 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: 17Y4aU3hrW3yj95euMb7feH7nwfTfE3KeGTQ5qbr/1E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:50:35:72:33:e6:bb:56:77:8d:60:25:ad:31:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Mar 2 12:00:59 2026 GMT
Not After : Mar 3 12:00:59 2026 GMT
Subject: CN=4eb6053effc5363b550c2207e352519e8cf5272b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:fb:1a:58:26:61:65:f0:a7:dd:00:47:3f:c0:
6a:14:de:3f:1b:22:3a:fa:07:bf:9b:e0:d1:cd:6a:
14:9b:0c:97:14:99:73:83:2b:ef:f0:64:bc:4a:22:
1f:4e:1d:0c:75:58:58:4e:55:24:48:b6:96:71:73:
2a:32:35:32:92:25:b5:3a:f6:8e:50:01:07:29:74:
82:6b:f8:45:14:9d:24:a0:bc:86:f6:38:fa:66:df:
66:cb:70:e8:c0:ed:50:90:27:26:3d:74:e6:6a:c5:
97:56:be:9b:e7:66:3b:a0:81:d1:c5:53:c6:57:07:
3d:b2:c9:5a:73:94:53:52:3d:f6:66:d4:db:fe:8e:
8f:3a:ba:1c:35:36:cd:54:06:89:96:ae:5c:05:ec:
b7:8b:ad:ed:4e:ee:98:e9:52:a5:bd:2d:9a:b7:19:
16:b0:46:ad:0b:86:ca:2e:67:c2:07:90:99:4f:94:
ae:72:f5:d3:51:59:29:3e:01:de:43:d3:9d:82:f9:
2c:4f:c2:60:85:ac:1f:59:00:63:09:bd:f3:a9:d6:
85:79:87:68:cc:27:39:3b:bb:84:90:03:a2:ba:24:
f3:b3:06:b1:5a:62:26:e5:ef:91:4d:fb:31:3d:96:
75:86:a7:08:a9:8e:3e:75:e5:26:cc:c5:cc:ee:fc:
0f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:B6:05:3E:FF:C5:36:3B:55:0C:22:07:E3:52:51:9E:8C:F5:27:2B
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:65:08:9e:ad:fe:02:2f:39:88:ed:1d:de:db:8b:ec:98:df:
37:5e:9a:6d:79:b8:b7:cd:14:d9:5f:28:8b:a0:93:0b:b9:3a:
c8:d6:05:08:25:8d:1f:a4:26:ec:e0:cd:f0:10:08:f0:7a:b9:
56:53:cc:d4:40:ee:7b:66:f3:be:ed:05:5d:de:49:54:1f:34:
91:59:2f:f5:85:e7:5f:b7:52:3f:57:e5:0c:41:a9:4b:3c:27:
fc:89:64:3e:20:b9:78:28:b8:7e:39:42:69:c2:9b:45:66:bd:
1d:81:06:24:d0:23:fa:65:ab:08:71:26:ac:a7:8e:2a:4a:4a:
94:13:cc:c1:0a:45:08:16:7f:a0:6c:2c:d3:84:ca:73:1b:d6:
09:b5:e8:ce:57:14:ca:cd:73:86:e7:4b:e1:d4:54:54:2a:ff:
b1:9e:a1:ef:f3:fc:2d:30:78:8b:27:4e:c1:3a:d2:70:86:d8:
55:8e:27:e7:17:93:0b:43:dc:96:37:f9:72:fa:38:13:86:50:
6d:5e:17:2d:f8:d0:8e:c4:ce:65:21:ca:12:e3:ab:4b:5d:e5:
8e:ab:f2:6e:38:11:26:f0:3f:aa:ad:61:ae:5d:e4:ed:fb:a0:
42:28:79:9d:6e:6f:f4:2a:57:42:00:e1:22:bb:98:f6:1f:9b:
e8:75:fa:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:51:26 2026 by rpki-client