Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
File: U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft (raw, json)
Hash identifier: 7bE25sbQH3YOnPnuutTzvKI7rvzh+lEs2ruTiU8pldc=
Subject key identifier: 9E:8A:3B:44:8C:86:22:80:74:B0:E9:B0:E7:00:9C:EE:DF:E1:6C:32
Authority key identifier: 53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
Certificate issuer: /CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Certificate serial: 019CAEA35992521C74FD3CAC89C68007B491
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
Manifest number: 1845
Signing time: Mon 02 Mar 2026 13:01:06 +0000
Manifest this update: Mon 02 Mar 2026 13:01:06 +0000
Manifest next update: Tue 03 Mar 2026 13:01:06 +0000
Files and hashes: 1: U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl (hash: zCRLJCLebNk63JFKoZhG65QAQkOUTkwbtnMtyYwEx/4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:59:92:52:1c:74:fd:3c:ac:89:c6:80:07:b4:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=536583de836fcc28e70bf66eadb8d38f3f64f4e1
Validity
Not Before: Mar 2 13:01:06 2026 GMT
Not After : Mar 3 13:01:06 2026 GMT
Subject: CN=9e8a3b448c86228074b0e9b0e7009ceedfe16c32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:73:ed:98:ae:1b:51:a6:7d:8f:73:d5:50:ac:
1a:62:42:2c:0d:b2:4c:45:ad:b2:f4:2a:90:0a:2f:
0a:dd:84:30:53:72:69:63:d2:57:9b:d6:97:ac:34:
05:6a:f3:20:fa:61:bc:19:06:d8:ab:2c:ee:e8:24:
26:da:84:46:92:e3:2f:9a:1c:7c:9f:6b:73:f4:b8:
51:9f:81:34:40:81:4b:c7:51:1c:21:a9:98:cd:4c:
19:bf:de:ca:65:81:0b:bd:31:21:af:73:b2:1f:d3:
b5:fd:a0:22:46:2e:2b:ec:29:e2:3b:95:c3:96:40:
9b:0c:fc:eb:e5:3b:6c:62:7e:e4:39:cb:7f:e7:18:
5f:a8:64:7b:cd:0f:25:2a:4e:73:94:cc:c8:9f:b8:
ff:1c:ca:dd:a9:57:42:ce:75:b8:f2:5a:c2:8c:d1:
65:26:eb:f4:c8:9f:95:46:2f:b4:8d:cd:5d:fb:27:
bb:c9:07:5e:5b:92:02:6d:2a:72:83:fb:23:da:62:
b8:41:e3:e2:ab:91:17:55:ec:6e:17:62:f0:fe:2c:
f9:4c:30:3a:5c:51:33:7f:40:cf:10:6d:2c:91:3b:
06:62:6c:a4:f4:c7:9a:8f:1a:9e:69:83:85:94:38:
d6:18:a1:7b:fc:19:0f:3e:2d:3f:f7:c5:d0:62:54:
02:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:8A:3B:44:8C:86:22:80:74:B0:E9:B0:E7:00:9C:EE:DF:E1:6C:32
X509v3 Authority Key Identifier:
keyid:53:65:83:DE:83:6F:CC:28:E7:0B:F6:6E:AD:B8:D3:8F:3F:64:F4:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U2WD3oNvzCjnC_ZurbjTjz9k9OE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/6f263a-4193-4309-9c7a-82a6990df38d/1/U2WD3oNvzCjnC_ZurbjTjz9k9OE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:17:1f:4a:ed:da:46:59:2a:1a:ae:ee:0c:3f:b1:f2:27:6e:
ee:fb:44:f3:33:9b:04:b3:9e:0c:48:29:e6:2b:e3:27:4e:75:
30:cf:61:7e:e5:2e:ca:46:04:6a:3b:de:40:67:16:fc:ec:a3:
6c:45:6f:55:fe:3a:16:84:f8:0d:36:45:53:b4:ae:fc:8c:1b:
0d:a3:20:1a:ad:df:ff:54:bf:c2:a3:d3:c9:e6:af:a0:c5:fe:
ed:be:73:b0:42:5a:07:b5:8c:60:cf:84:fe:6a:a1:8c:4b:74:
f7:2f:b2:cb:72:3c:cc:4d:5e:3d:47:21:6b:0b:07:9f:37:87:
ae:a8:31:77:5f:d1:3c:f2:4e:4e:a0:32:0c:39:de:68:ab:dc:
48:f3:da:b1:43:1e:69:ba:78:f1:e8:22:85:0c:ba:74:fc:dd:
3a:08:22:5d:75:f3:60:b3:e9:79:d5:ad:60:d2:29:8c:ad:0e:
be:45:6a:42:8d:97:7c:bf:99:53:55:15:cb:6b:35:b5:22:0b:
0d:46:bd:ac:ac:2b:c1:45:a1:d4:d0:bc:77:09:e8:7b:54:97:
14:be:ec:95:f7:99:f3:39:e1:47:43:68:dd:cc:28:7a:4c:6c:
8e:c3:94:58:f2:72:c3:aa:23:cf:a6:2f:26:d6:ad:7d:cd:db:
37:5d:d9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:48:11 2026 by rpki-client