Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
File: C1XbSaXB_JAcoahcjSXxPxhuL_o.mft (raw, json)
Hash identifier: VzbVlT2yK//zC8YzJuYhOwAp/PfbF4ChBQ4COfkZcAk=
Subject key identifier: 05:4D:C3:1C:83:D4:F2:D4:E0:EB:56:CC:DB:CD:93:F2:80:56:86:EE
Authority key identifier: 0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA
Certificate issuer: /CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
Certificate serial: 019CABD994A81C5ED5F264411ACF74AC3AC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
Manifest number: 1843
Signing time: Mon 02 Mar 2026 00:01:29 +0000
Manifest this update: Mon 02 Mar 2026 00:01:29 +0000
Manifest next update: Tue 03 Mar 2026 00:01:29 +0000
Files and hashes: 1: C1XbSaXB_JAcoahcjSXxPxhuL_o.crl (hash: tDCA7pEI+/6U9sMpMhepNOagKYFmTTHDP/o9pybx+xQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:94:a8:1c:5e:d5:f2:64:41:1a:cf:74:ac:3a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b55db49a5c1fc901ca1a85c8d25f13f186e2ffa
Validity
Not Before: Mar 2 00:01:29 2026 GMT
Not After : Mar 3 00:01:29 2026 GMT
Subject: CN=054dc31c83d4f2d4e0eb56ccdbcd93f2805686ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f3:12:2f:6b:e5:89:22:64:2f:eb:e5:19:1e:
dc:2b:7a:ad:6a:95:d5:99:54:7b:ff:99:06:94:ec:
b4:74:40:f3:aa:22:58:24:6f:64:83:d6:1c:79:66:
73:f0:7d:62:e3:51:07:0b:82:93:71:c6:43:a8:37:
b2:62:e8:c0:0e:7c:3f:e3:a5:38:cf:2c:c8:02:f5:
85:8b:49:dc:54:cb:37:6e:88:64:8a:5a:bd:c9:17:
99:f6:56:ea:62:00:99:3e:00:b5:73:47:af:68:cc:
28:d6:70:7a:52:a9:f6:ab:e8:72:99:b3:2a:84:1c:
de:5b:18:34:7e:e2:8e:4c:1e:40:ca:a0:3d:87:e2:
14:d4:d4:0c:7f:e8:37:98:75:21:2c:50:ad:9f:4a:
29:0f:67:35:e1:0e:3f:0f:dc:75:64:91:81:4a:4f:
fd:91:8d:91:63:d3:3d:95:cb:dd:7f:99:05:35:dc:
78:84:bb:aa:c8:98:8d:f8:7e:d4:a4:f4:b9:e6:b0:
58:6b:63:58:85:dd:16:61:2d:59:70:ce:ea:88:2f:
0d:e5:11:76:de:03:ab:9a:5e:ac:41:ac:61:c8:aa:
58:23:13:70:22:15:3b:39:ef:6b:c9:99:90:9e:a2:
3a:33:c6:d7:f1:ee:d7:6c:60:95:fd:b4:63:1d:d7:
37:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:4D:C3:1C:83:D4:F2:D4:E0:EB:56:CC:DB:CD:93:F2:80:56:86:EE
X509v3 Authority Key Identifier:
keyid:0B:55:DB:49:A5:C1:FC:90:1C:A1:A8:5C:8D:25:F1:3F:18:6E:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1XbSaXB_JAcoahcjSXxPxhuL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/523988-5a00-40a6-b044-a27e74f75d26/1/C1XbSaXB_JAcoahcjSXxPxhuL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:c4:25:3e:6f:0c:bd:86:3d:86:8d:13:29:1f:8b:a2:76:3b:
f4:f3:61:44:38:6a:eb:33:fa:b0:20:e5:fa:77:85:a9:09:7f:
fb:01:6b:ae:da:98:fe:52:63:3b:32:a3:be:fa:0f:c6:de:9b:
f9:b8:a5:09:b9:a5:f0:c9:46:88:3a:fe:8e:53:79:c6:34:8d:
2b:8b:28:15:d5:82:aa:2c:65:d6:5a:10:4a:ec:63:8d:18:40:
50:72:23:b6:4c:b8:05:54:88:f8:22:53:78:89:e3:ef:97:98:
a2:c6:5e:5b:1b:12:af:c4:29:3d:36:87:1d:c4:98:da:a4:db:
1d:20:ed:bc:e2:3c:14:b1:41:9f:9a:3c:3c:60:5a:be:a8:c0:
1c:ab:a2:21:e8:eb:f9:18:de:82:a6:ef:03:87:88:1b:1d:f8:
83:5c:c2:70:0e:e7:06:c0:30:ce:a4:7f:ad:52:ad:30:0c:a4:
9d:00:ca:9d:57:24:9c:0e:4d:e8:a8:95:a6:38:42:6f:ba:ed:
5a:9a:55:98:d1:b3:9e:c3:d9:06:a7:8d:bd:2b:6d:78:f1:03:
d0:20:de:b5:c1:9c:54:e9:43:dd:1f:a1:cb:68:89:73:af:c5:
4d:94:11:af:16:23:09:b5:b1:8d:fa:6a:77:79:65:be:30:a2:
33:98:d8:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:52:10 2026 by rpki-client