Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
File: mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft (raw, json)
Hash identifier: hD6HgX6SFDTSOMLKnwip5+XdDjlsHGdf6l7t4cxV/Xs=
Subject key identifier: 64:BE:FF:F2:A3:E4:EC:7B:7C:C1:72:E0:C0:11:96:19:61:16:00:73
Authority key identifier: 9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
Certificate issuer: /CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Certificate serial: 019CB70203BCB7E82036E1B348D16887CEBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
Manifest number: 12EE
Signing time: Wed 04 Mar 2026 04:01:28 +0000
Manifest this update: Wed 04 Mar 2026 04:01:28 +0000
Manifest next update: Thu 05 Mar 2026 04:01:28 +0000
Files and hashes: 1: mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl (hash: KxYPVC/tN+5uRZAdfEQYs0Uzu1Ny2AUCzJtX3JRq4To=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b7:02:03:bc:b7:e8:20:36:e1:b3:48:d1:68:87:ce:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9af9d1e55f43e4fdd6d24fb4b0eda6e9d128aa51
Validity
Not Before: Mar 4 04:01:28 2026 GMT
Not After : Mar 5 04:01:28 2026 GMT
Subject: CN=64befff2a3e4ec7b7cc172e0c011961961160073
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6c:83:90:ec:a3:48:64:03:d1:72:b1:08:37:
6c:00:57:2c:6c:b6:77:3d:a1:cf:25:10:7b:52:05:
69:dc:89:20:ed:e8:61:72:fa:49:d6:e4:73:e7:c4:
d4:3d:f4:dc:ac:44:ed:f9:d7:56:7a:6a:db:14:cd:
a7:eb:f8:5a:9d:4c:99:05:cc:48:b7:5c:5b:79:9c:
52:3e:b4:cf:9f:14:62:ad:7d:dc:06:93:bc:09:3c:
07:fe:df:d6:a1:d9:5d:3e:6e:7d:52:1f:31:3a:58:
47:18:51:05:7c:55:ce:25:34:e6:b3:fa:f2:b4:6d:
e6:05:28:05:80:c4:b9:dd:65:6c:e8:9e:e8:82:8d:
45:a0:1d:9c:2a:63:03:17:db:23:d7:ac:6f:1c:7c:
ed:8b:83:0e:91:78:8d:d4:25:2e:13:bb:de:bf:9f:
8c:cc:ac:7a:0a:45:e4:8f:13:f8:4d:01:e7:d6:41:
dd:1a:75:c7:97:a8:f6:90:d4:0e:0c:af:70:90:a4:
d6:47:e1:60:97:07:bd:c7:8b:5f:b0:9d:59:d7:ea:
c3:4d:96:a3:25:36:8d:a4:3a:11:bb:26:3f:f7:3e:
08:9e:cf:f6:ef:09:3f:29:c2:de:60:ac:25:59:c2:
f4:ef:d7:af:32:ff:61:4d:7e:be:71:aa:da:49:b7:
61:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:BE:FF:F2:A3:E4:EC:7B:7C:C1:72:E0:C0:11:96:19:61:16:00:73
X509v3 Authority Key Identifier:
keyid:9A:F9:D1:E5:5F:43:E4:FD:D6:D2:4F:B4:B0:ED:A6:E9:D1:28:AA:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mvnR5V9D5P3W0k-0sO2m6dEoqlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/0c5ed7-0e72-4ead-906c-291a3164a0b8/1/mvnR5V9D5P3W0k-0sO2m6dEoqlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:19:25:5d:db:47:3f:da:56:b9:26:c2:79:ff:5d:1a:15:59:
30:13:69:bb:15:8b:60:49:1d:d3:e3:ba:9e:dd:8b:9e:4a:24:
2b:6f:8c:24:63:31:75:e7:56:42:59:5e:0b:42:ff:a9:2e:38:
6e:aa:7c:f8:a4:ea:a5:2c:5c:a4:ae:bf:c2:21:77:73:d3:86:
9f:8d:c8:ec:e9:7f:13:03:85:6b:f6:c9:39:87:9c:27:87:b2:
c2:df:1e:b9:ee:28:a6:0c:ab:d5:d2:aa:49:96:ee:fc:5c:c5:
e8:1a:0b:ce:16:7c:50:24:b3:85:2b:9e:b1:b3:9f:d9:df:ab:
64:38:2f:7e:ab:86:b0:62:00:ce:44:57:7c:29:10:5f:c1:b0:
b6:4a:63:e4:90:e0:db:97:a8:6b:5b:01:1f:78:9b:d5:49:8f:
56:04:2e:5d:ae:84:34:a0:b6:5b:03:35:21:f4:04:fd:c9:39:
ec:01:d9:24:e4:15:9b:58:ef:55:0a:d3:39:0f:3f:60:ef:d9:
d4:68:f9:85:2d:90:39:bc:d7:be:aa:e0:6b:ca:6f:02:3f:1c:
bd:3d:aa:00:dd:2e:8f:4e:88:43:51:6e:4c:8e:1f:2c:c8:a6:
83:90:2e:78:1e:b7:98:0c:d5:d5:32:d7:bc:37:08:bd:9d:40:
66:ee:5d:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 4 10:08:34 2026 by rpki-client