Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
File: rjRcTQnm4iTh2vRmV9PHEYewIjY.mft (raw, json)
Hash identifier: +hlohPFLoGrgbX0nHdEMXsORHMEKUvRKJW6rZjJIPks=
Subject key identifier: 07:3D:35:19:3E:11:D8:36:97:6C:3A:23:FB:BD:25:07:3B:38:A9:6F
Authority key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
Certificate issuer: /CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Certificate serial: 019D9A06C0D9327A8BCC39C668ED3455BE6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
Manifest number: 080B
Signing time: Fri 17 Apr 2026 06:00:26 +0000
Manifest this update: Fri 17 Apr 2026 06:00:26 +0000
Manifest next update: Sat 18 Apr 2026 06:00:26 +0000
Files and hashes: 1: rjRcTQnm4iTh2vRmV9PHEYewIjY.crl (hash: 8eLSBijpWXAftfJClGj7Ud3gcrZETBHkJPr8agOtFa0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:06:c0:d9:32:7a:8b:cc:39:c6:68:ed:34:55:be:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae345c4d09e6e224e1daf46657d3c71187b02236
Validity
Not Before: Apr 17 06:00:26 2026 GMT
Not After : Apr 18 06:00:26 2026 GMT
Subject: CN=073d35193e11d836976c3a23fbbd25073b38a96f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:11:4b:22:23:e1:d2:1c:35:6f:57:7b:52:f7:
a7:a5:00:f2:79:0f:29:05:70:17:fe:c1:7e:fe:9c:
4d:80:45:74:d3:e4:c6:45:37:0e:15:16:28:dc:34:
0c:70:8f:12:7a:db:42:a0:14:fd:97:d9:6e:6c:40:
ea:50:d1:3c:84:bb:3e:fc:e3:61:b6:e9:d4:b3:0a:
93:f0:9a:4d:b5:ef:37:d8:90:b3:c5:8d:96:72:ea:
f8:e6:00:59:97:19:20:b7:30:d7:fb:38:e6:f2:74:
d4:45:e9:66:3a:10:25:27:79:23:e0:ed:ac:24:60:
e2:f7:45:36:04:6c:ef:98:7a:87:84:da:75:6c:bc:
47:cb:c0:b9:34:8f:11:a2:98:f6:a0:66:30:1d:e6:
52:ff:15:c2:9c:43:6c:47:e9:b0:2c:b4:f8:ba:34:
74:39:46:90:21:41:d3:c3:94:1c:30:16:42:3a:c7:
dd:31:2d:1c:54:f6:eb:79:dd:1d:e3:6d:f4:f6:84:
f4:9d:86:94:c2:6e:22:75:85:8f:12:a3:ea:eb:e2:
e1:b2:ac:1b:fa:e7:ba:b3:d9:65:2f:73:2d:dc:26:
aa:4c:f8:93:b2:8c:b3:d1:f2:ca:5d:1b:a5:98:2b:
b2:b0:0c:ae:ac:c5:ac:e0:f9:8b:eb:59:3c:3b:98:
2d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:3D:35:19:3E:11:D8:36:97:6C:3A:23:FB:BD:25:07:3B:38:A9:6F
X509v3 Authority Key Identifier:
keyid:AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:21:70:0c:8f:e7:3a:39:05:45:30:e0:b6:e2:2c:a7:91:d1:
5f:0d:31:74:55:29:3c:9d:72:f5:bc:34:8d:4e:5b:eb:be:09:
08:e1:a8:0d:56:3f:13:0e:db:a7:6d:af:6f:3b:3e:df:b3:76:
5a:a0:85:1f:7f:02:8f:85:3e:b5:b5:e4:8e:7f:0a:b3:cf:90:
1e:d5:d0:e4:7a:40:02:03:e5:09:0a:7b:2c:be:01:2e:60:fe:
78:43:b2:fb:67:f5:6f:0a:29:a5:45:7e:9a:48:e0:b1:e1:b4:
e1:af:ff:fc:75:76:27:0a:ff:09:ec:e1:63:e8:8f:a2:6c:4d:
c6:67:85:6f:40:6e:46:b0:27:f4:ab:1c:5d:08:8f:fe:5a:b8:
c9:f2:05:d2:b7:62:69:32:9e:c3:02:5d:69:63:a4:50:02:51:
f5:a7:9a:63:85:41:65:d5:aa:53:00:32:39:54:23:32:aa:ce:
e3:43:9e:5a:c4:e4:b2:48:0e:3c:f5:2f:9b:6d:34:70:a8:44:
0e:12:5c:02:35:b3:e6:45:55:7e:e0:d1:9b:5a:ad:24:98:b4:
c4:5d:4a:a4:c9:ae:d6:47:aa:cf:58:30:89:e3:76:e5:84:4d:
b1:6d:4f:f4:8d:ba:b9:8f:b7:47:05:fb:db:40:bb:7e:63:b2:
0f:7e:d2:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:15:03 2026 by rpki-client