Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.mft
File: d1szbD5Il6UrOcOtquzOxr9wzn0.mft (raw, json)
Hash identifier: hC5ZH5Pv37GYIxy9BumbLFjkY7cI1U/IZS852Ns/8yM=
Subject key identifier: 58:0D:3A:93:44:C5:1A:53:B4:C7:26:9F:87:0F:D2:52:3E:13:89:A0
Authority key identifier: 77:5B:33:6C:3E:48:97:A5:2B:39:C3:AD:AA:EC:CE:C6:BF:70:CE:7D
Certificate issuer: /CN=775b336c3e4897a52b39c3adaaeccec6bf70ce7d
Certificate serial: 019D38D349AF93BE6E8BCB106DFFA31894CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d1szbD5Il6UrOcOtquzOxr9wzn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.mft
Manifest number: 17B3
Signing time: Sun 29 Mar 2026 09:01:04 +0000
Manifest this update: Sun 29 Mar 2026 09:01:04 +0000
Manifest next update: Mon 30 Mar 2026 09:01:04 +0000
Files and hashes: 1: 2C6Ya6h31uul1QKjxJOYJtW0-Js.roa (hash: GfQhpseBFat/Xeckvhncromu6LqqPVkLS18vLbabiRM=)
2: d1szbD5Il6UrOcOtquzOxr9wzn0.crl (hash: /Qs/boUGeJSqsiLrpS5SborMQjAPM6lTv4pNV8skvCM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/d1szbD5Il6UrOcOtquzOxr9wzn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:49:af:93:be:6e:8b:cb:10:6d:ff:a3:18:94:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=775b336c3e4897a52b39c3adaaeccec6bf70ce7d
Validity
Not Before: Mar 29 09:01:04 2026 GMT
Not After : Mar 30 09:01:04 2026 GMT
Subject: CN=580d3a9344c51a53b4c7269f870fd2523e1389a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:50:42:e7:87:b7:5b:a3:0d:34:eb:7c:48:9b:
e3:54:fa:20:a5:90:c6:ff:8a:47:2c:9b:fd:61:cf:
57:0d:31:71:3f:d1:7c:38:38:14:d6:64:47:84:15:
f8:ae:50:b0:b0:57:cb:ae:a4:c1:a7:15:82:10:d7:
9a:f3:d5:13:52:31:01:b0:6f:85:af:29:76:11:d5:
35:24:90:79:f9:92:eb:c2:b5:ee:e4:08:7f:36:97:
89:72:97:81:46:ce:cb:19:4d:28:61:46:8a:96:e1:
6e:3c:f8:54:6b:c1:ea:2d:0f:00:ce:e3:2a:06:d3:
46:4f:ff:26:f5:75:1e:17:52:47:dd:27:3d:db:01:
a1:d1:f8:1b:03:9a:51:70:01:d6:27:d0:7d:d5:f0:
6e:9f:d9:39:b3:89:6d:a6:5b:60:70:94:34:ad:ab:
83:89:76:32:ac:f4:de:27:b6:81:be:ab:b8:cf:74:
8d:50:98:ac:55:45:f8:25:aa:e3:90:d7:38:88:80:
f7:b7:1a:53:79:e3:87:71:36:6b:31:ca:53:b4:37:
4b:2c:45:2d:1f:ac:db:4b:e3:82:8e:d9:2e:ad:1a:
89:97:da:d6:31:7e:fd:25:28:ba:33:d7:bf:57:a8:
76:07:0c:5b:a1:70:7e:46:6c:df:38:12:02:b9:d1:
c3:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:0D:3A:93:44:C5:1A:53:B4:C7:26:9F:87:0F:D2:52:3E:13:89:A0
X509v3 Authority Key Identifier:
keyid:77:5B:33:6C:3E:48:97:A5:2B:39:C3:AD:AA:EC:CE:C6:BF:70:CE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1szbD5Il6UrOcOtquzOxr9wzn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/00476a-8ac7-456c-b93d-3dc14170d62a/1/d1szbD5Il6UrOcOtquzOxr9wzn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:40:1f:f5:71:41:2a:bd:03:74:5c:4e:95:a2:f7:fd:8f:01:
97:28:03:16:26:63:70:15:9b:90:9d:e3:67:6a:14:5b:cc:c4:
43:cd:19:4f:e7:1d:e4:b3:e7:9c:68:74:2b:8d:00:f2:49:fb:
0e:df:55:9d:ac:b7:8a:92:e7:ce:b0:34:51:89:9b:75:4b:72:
93:c3:20:84:c3:bf:18:bb:30:da:b1:86:aa:60:1a:b0:94:28:
b6:19:66:fb:90:81:f5:99:71:6a:76:37:ff:99:c3:91:bd:2f:
e9:1c:bc:8c:85:c4:16:b0:a0:1b:e5:ea:f1:f1:4a:f4:75:f0:
1d:0e:c2:30:fc:a1:5d:f7:85:c0:67:55:2f:89:55:1d:01:69:
5b:cf:82:d4:09:5f:a7:ce:52:f3:95:e3:c1:b9:b9:73:6f:7f:
5b:48:7e:75:af:6e:d6:3b:a5:65:7e:27:4d:82:95:a8:bb:1e:
5c:06:c4:41:ec:0e:45:52:81:3e:35:39:3e:3d:41:30:5d:06:
c7:31:02:08:0a:66:bc:22:7e:4c:1b:73:9c:ca:fd:96:a5:b2:
3c:13:fc:ba:71:c0:15:56:b6:b3:24:94:d2:b2:80:02:49:a7:
da:48:65:a1:fe:8b:7a:1e:9e:f2:4b:dd:67:d8:c4:c4:3a:b6:
54:4b:82:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:53:18 2026 by rpki-client