Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
File: orzYisPgLP-tPADeRrXaM2vWRwI.mft (raw, json)
Hash identifier: nInmNaZ+CxbfCGPVa9Q3eF7D+pjJXwXlw2+uTvZ1JYs=
Subject key identifier: 5B:B3:6D:21:29:27:F9:46:26:06:CF:9B:F9:B3:BE:A7:5E:91:86:57
Authority key identifier: A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
Certificate issuer: /CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702
Certificate serial: 019D39418E811D7DDECD835475A710868899
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
Manifest number: 159E
Signing time: Sun 29 Mar 2026 11:01:30 +0000
Manifest this update: Sun 29 Mar 2026 11:01:30 +0000
Manifest next update: Mon 30 Mar 2026 11:01:30 +0000
Files and hashes: 1: orzYisPgLP-tPADeRrXaM2vWRwI.crl (hash: qw4Ee5D3N7EHcuCynTzPW7gDiVGNQWwSpuYHlkZSRZo=)
2: qUQtHHzlZlnAdpcBQCFJU2QvkX0.roa (hash: qu1JzAxBAaT1Zxg22q0d5br8OX9u/IStZcSKhmMoN5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:8e:81:1d:7d:de:cd:83:54:75:a7:10:86:88:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2bcd88ac3e02cffad3c00de46b5da336bd64702
Validity
Not Before: Mar 29 11:01:30 2026 GMT
Not After : Mar 30 11:01:30 2026 GMT
Subject: CN=5bb36d212927f9462606cf9bf9b3bea75e918657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d9:8b:c8:f2:d1:ab:3a:04:0c:b7:9d:de:ca:
fb:ca:77:d1:b6:2d:8f:ec:21:3a:04:23:93:cf:74:
fb:37:1e:29:26:5c:06:97:91:04:f0:0d:99:86:cb:
f3:bd:fc:94:22:23:e9:0e:fb:58:b0:ca:ea:c6:63:
8f:ab:c7:9b:f3:b4:65:1f:0a:cd:37:77:88:59:46:
4f:60:4b:92:4b:6d:aa:72:d7:48:1e:09:9b:e1:fc:
d4:2b:95:28:a9:9f:cb:25:5e:89:ad:da:59:49:ea:
04:96:61:50:47:3e:cc:a9:f5:32:67:e1:b5:ae:0f:
ac:6e:d6:54:54:f6:f4:43:22:6d:9a:8e:b3:1c:d8:
2e:7d:2b:20:ef:40:a9:81:7f:54:95:9e:f5:d8:ec:
ef:ff:3c:29:de:04:6c:7a:f3:91:f5:57:7e:b1:69:
2d:4d:60:1c:25:2d:6f:cf:3d:af:e9:d3:82:c0:3f:
9e:d1:b5:dc:5e:b6:44:1e:5e:56:38:7f:ec:51:cb:
eb:57:b3:d6:f2:9e:5e:f9:61:e9:2f:9e:42:e8:fb:
ab:71:39:1b:ac:7b:6c:5a:15:45:4b:0c:d9:07:cc:
5d:63:65:64:16:2a:3e:59:38:cc:8f:bb:3f:e1:94:
9d:3a:72:a7:9d:a6:d3:d2:68:b6:9e:28:ef:39:be:
6f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:B3:6D:21:29:27:F9:46:26:06:CF:9B:F9:B3:BE:A7:5E:91:86:57
X509v3 Authority Key Identifier:
keyid:A2:BC:D8:8A:C3:E0:2C:FF:AD:3C:00:DE:46:B5:DA:33:6B:D6:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/orzYisPgLP-tPADeRrXaM2vWRwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/cf4db5-fb29-4b2a-a215-aab862861a09/1/orzYisPgLP-tPADeRrXaM2vWRwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:4b:1e:73:c0:5a:83:a3:28:ad:ac:e7:28:d3:f4:56:f3:28:
6b:ff:1e:2e:fd:1d:c0:f1:4c:2b:bb:aa:5a:57:cc:52:a5:81:
98:ad:7d:f0:1a:e7:1e:68:03:52:25:3f:c3:36:7c:59:e1:2f:
ba:0b:07:8b:f1:70:0a:cc:ac:35:0f:03:d3:11:11:5a:ec:19:
e6:37:b6:fc:49:2a:be:fd:a7:6a:71:2f:c7:5a:4d:52:9c:de:
e4:fb:92:7e:5b:21:17:fc:d8:bb:81:75:be:c0:4d:4f:cd:c4:
3c:65:01:1a:cf:43:4d:e9:d1:06:3d:39:44:94:87:5f:11:76:
1f:42:a9:b6:9c:2a:bf:1d:20:d2:b0:19:12:8a:a0:d1:3d:ee:
4c:f2:f5:58:83:f7:80:a0:91:9a:ee:28:59:36:a9:56:30:80:
53:08:7e:7f:82:68:70:1d:0b:82:b9:5e:88:2c:5a:85:58:2c:
1d:75:45:83:aa:cc:15:f7:46:31:ee:03:e7:99:f6:ae:23:7b:
93:9a:be:08:18:e4:c4:8f:bd:9b:51:fc:c5:16:36:70:32:ba:
65:8e:2b:a7:d9:b6:5c:f6:1f:d0:25:ba:d8:bb:24:1a:19:e6:
85:3f:99:a7:e6:1d:15:eb:65:c5:1c:8d:d2:dc:cb:b7:0a:53:
07:ec:12:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QY6BHX3ezYNUdacQhoiZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEyYmNkODhhYzNlMDJjZmZhZDNjMDBkZTQ2YjVkYTMzNmJk
NjQ3MDIwHhcNMjYwMzI5MTEwMTMwWhcNMjYwMzMwMTEwMTMwWjAzMTEwLwYDVQQD
Eyg1YmIzNmQyMTI5MjdmOTQ2MjYwNmNmOWJmOWIzYmVhNzVlOTE4NjU3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4NmLyPLRqzoEDLed3sr7ynfRti2P
7CE6BCOTz3T7Nx4pJlwGl5EE8A2ZhsvzvfyUIiPpDvtYsMrqxmOPq8eb87RlHwrN
N3eIWUZPYEuSS22qctdIHgmb4fzUK5UoqZ/LJV6JrdpZSeoElmFQRz7MqfUyZ+G1
rg+sbtZUVPb0QyJtmo6zHNgufSsg70CpgX9UlZ712Ozv/zwp3gRsevOR9Vd+sWkt
TWAcJS1vzz2v6dOCwD+e0bXcXrZEHl5WOH/sUcvrV7PW8p5e+WHpL55C6PurcTkb
rHtsWhVFSwzZB8xdY2VkFio+WTjMj7s/4ZSdOnKnnabT0mi2nijvOb5vXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFuzbSEpJ/lGJgbPm/mzvqdekYZXMB8GA1UdIwQY
MBaAFKK82IrD4Cz/rTwA3ka12jNr1kcCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3J6WWlzUGdMUC10UEFEZVJyWGFNMnZXUndJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi9jZjRkYjUtZmIyOS00YjJhLWEyMTUt
YWFiODYyODYxYTA5LzEvb3J6WWlzUGdMUC10UEFEZVJyWGFNMnZXUndJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi9jZjRkYjUtZmIyOS00YjJhLWEyMTUtYWFiODYyODYxYTA5
LzEvb3J6WWlzUGdMUC10UEFEZVJyWGFNMnZXUndJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiUsec8Ba
g6MoraznKNP0VvMoa/8eLv0dwPFMK7uqWlfMUqWBmK198BrnHmgDUiU/wzZ8WeEv
ugsHi/FwCsysNQ8D0xERWuwZ5je2/Ekqvv2nanEvx1pNUpze5PuSflshF/zYu4F1
vsBNT83EPGUBGs9DTenRBj05RJSHXxF2H0Kptpwqvx0g0rAZEoqg0T3uTPL1WIP3
gKCRmu4oWTapVjCAUwh+f4JocB0LgrleiCxahVgsHXVFg6rMFfdGMe4D55n2riN7
k5q+CBjkxI+9m1H8xRY2cDK6ZY4rp9m2XPYf0CW62LskGhnmhT+Zp+YdFetlxRyN
0tzLtwpTB+wS3g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:56:07 2026 by rpki-client