Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
File: bQ1uHM2JDfL16cFF7LpGiZzOs70.mft (raw, json)
Hash identifier: MCOUBQ/kdOOmEJlLFPDgCzf/S/yKFHIf6Bnm5dXx/Y0=
Subject key identifier: 23:30:8E:3B:73:53:E5:C2:5D:50:DF:90:2C:BB:F7:4C:6B:C8:A6:A1
Authority key identifier: 6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
Certificate issuer: /CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Certificate serial: 019CADC778E44B1900A0B34575E74A0D5202
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
Manifest number: 14D7
Signing time: Mon 02 Mar 2026 09:00:56 +0000
Manifest this update: Mon 02 Mar 2026 09:00:56 +0000
Manifest next update: Tue 03 Mar 2026 09:00:56 +0000
Files and hashes: 1: bQ1uHM2JDfL16cFF7LpGiZzOs70.crl (hash: cOXpWiEe4IetttPSqRTa0EyeNLQLDPUOfYjGwFxXPtA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:78:e4:4b:19:00:a0:b3:45:75:e7:4a:0d:52:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d0d6e1ccd890df2f5e9c145ecba46899cceb3bd
Validity
Not Before: Mar 2 09:00:56 2026 GMT
Not After : Mar 3 09:00:56 2026 GMT
Subject: CN=23308e3b7353e5c25d50df902cbbf74c6bc8a6a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:35:1d:d8:a8:c0:62:cb:c3:ed:5f:52:c0:3c:
88:8b:05:ad:01:d1:ed:7a:79:4d:79:f4:e9:f4:67:
6c:d8:c9:00:6e:61:15:ae:43:3f:02:d4:13:50:de:
d4:c8:75:81:fe:7c:58:d7:ef:0c:cb:f8:f3:92:a1:
57:2f:2d:5e:42:28:5f:5a:8d:5a:e6:94:00:e4:43:
d0:c9:e6:bf:c4:64:ca:89:4b:f1:5e:07:b2:8a:2c:
18:4e:a8:59:59:30:1e:25:2a:20:08:5b:d8:ac:f9:
e2:01:d0:85:d0:8e:0e:c7:d5:32:6a:08:7b:b5:7f:
dc:ac:52:8d:7b:4b:be:4d:73:d6:2a:74:cd:88:4d:
64:6c:e6:fa:25:99:d0:8b:8e:dc:02:51:2d:37:5e:
d2:50:4b:71:f0:f3:11:65:a9:a1:d7:14:98:d9:28:
04:54:54:c9:84:ab:e5:15:c1:be:d8:2b:b1:21:68:
73:e3:3f:b1:5b:30:a8:9c:7f:36:e7:02:f4:d8:9f:
a6:a2:01:8c:6b:e5:23:d8:5f:4b:30:1d:a0:f4:91:
38:07:c2:80:10:c8:e7:8c:c4:9d:c5:1c:17:d0:c7:
53:52:92:5d:7b:35:08:04:12:29:77:c9:8e:a5:b2:
cc:7f:a4:36:0c:40:d5:38:54:f1:20:76:9c:12:8c:
17:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:30:8E:3B:73:53:E5:C2:5D:50:DF:90:2C:BB:F7:4C:6B:C8:A6:A1
X509v3 Authority Key Identifier:
keyid:6D:0D:6E:1C:CD:89:0D:F2:F5:E9:C1:45:EC:BA:46:89:9C:CE:B3:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQ1uHM2JDfL16cFF7LpGiZzOs70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/277154-efba-48ed-bb0c-650b70bad7a9/1/bQ1uHM2JDfL16cFF7LpGiZzOs70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:61:3c:eb:03:89:42:a2:ed:14:62:db:0c:59:f0:ed:79:b7:
14:a6:10:c7:af:69:b1:c6:18:e8:88:20:08:3d:fe:45:45:65:
88:75:ac:58:82:28:a4:24:d1:f1:42:75:86:5f:bf:a8:51:d7:
55:f4:ca:d2:ff:52:10:01:d7:22:0c:70:7f:5f:81:cf:d2:4f:
d4:4e:17:c0:31:d0:d6:f2:32:c8:39:c3:e7:5c:bd:f1:43:0d:
7e:c6:de:bf:b8:a1:0b:b7:99:01:96:8e:2f:bc:aa:9f:a0:6b:
b1:58:65:07:eb:89:10:8e:38:0c:a2:e3:0a:c8:b2:4f:02:31:
1b:b6:c7:53:3b:91:dc:38:80:2d:f7:40:11:95:d6:46:7d:44:
ab:3f:c0:20:cc:64:cf:a2:29:03:68:74:92:81:c8:93:ca:2f:
a9:71:6f:a6:50:17:a8:83:d1:4c:72:46:93:e3:7d:af:bb:4b:
d7:9b:33:f8:aa:ba:bd:a3:fc:62:c5:a2:02:e7:72:38:33:09:
61:0c:f3:3e:61:c2:83:20:c1:20:3b:ba:6d:68:34:b9:3a:36:
e9:1d:1a:ac:3e:d8:9f:99:16:c8:93:2a:e5:ba:37:4c:30:0d:
26:5e:71:56:cd:81:5a:32:bc:23:63:94:d6:fc:54:83:36:6a:
1b:5b:55:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:26:31 2026 by rpki-client