Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
File: CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft (raw, json)
Hash identifier: 50eRw6z+WwAHWu5Jfqie2pZaMYL67l6t+XnWSd37YBs=
Subject key identifier: DE:BD:FA:B7:4A:F5:C1:A1:35:94:52:C0:58:5F:77:FE:05:13:96:F4
Authority key identifier: 0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
Certificate issuer: /CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Certificate serial: 019D382E711D9F29484FE609DF17C8262B87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
Manifest number: 1849
Signing time: Sun 29 Mar 2026 06:01:00 +0000
Manifest this update: Sun 29 Mar 2026 06:01:00 +0000
Manifest next update: Mon 30 Mar 2026 06:01:00 +0000
Files and hashes: 1: BZsgeYjNsI-TrRFg5BP7kG-awrA.asa (hash: ufP7A3glS5C1ttJSNJgnaiCLyGOMe/t4RYLh1fKQTdc=)
2: CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl (hash: Sr6Qm+zBBrhPJuPSd8BSmuIPEyZJM/pKlU0OoDJ1w0I=)
3: PCXd-9EviSUuR2-KbIZUWi0riBQ.roa (hash: nefgPfEo2Djt4hqoZTxg0xbxcxTGKZQtmu/1O0o4rzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:71:1d:9f:29:48:4f:e6:09:df:17:c8:26:2b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Validity
Not Before: Mar 29 06:01:00 2026 GMT
Not After : Mar 30 06:01:00 2026 GMT
Subject: CN=debdfab74af5c1a1359452c0585f77fe051396f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:2d:e5:88:18:be:0b:46:bb:8d:d3:ac:7f:d3:
f1:1d:cf:01:eb:2a:23:85:dc:f3:7b:d8:ef:bc:5a:
4b:11:e2:57:69:12:ac:ee:29:2d:03:1c:bd:94:a2:
16:e4:d8:41:d0:48:a3:a2:d4:d8:2b:aa:8e:71:67:
67:95:52:83:b2:a9:19:9a:b3:6a:1e:bd:17:99:0d:
2e:a0:98:08:5a:d3:a0:3e:6a:2e:f0:af:01:cd:91:
97:b9:25:58:1d:60:42:f7:9c:29:29:63:9c:ca:7f:
ab:5a:79:31:c7:34:5f:f9:bc:18:83:8f:48:27:10:
dd:74:eb:e2:97:a2:5a:62:17:53:7e:8e:08:16:6b:
62:1e:0b:a1:15:17:5c:a0:0e:6b:fb:d6:e9:04:94:
71:64:e7:ca:af:95:d6:55:2d:4d:27:de:b7:fe:a1:
65:7f:ed:b9:ee:43:a5:bf:55:4d:52:ef:f7:62:6b:
23:2f:2f:bb:74:ab:46:ca:be:e2:ea:22:5a:8a:4f:
e8:25:db:92:22:ca:53:f5:74:b5:c3:f3:51:73:f4:
21:b3:c0:17:ef:e4:3b:f1:11:02:01:54:5c:88:d5:
26:e4:0a:79:3d:18:b0:ca:da:3f:43:c8:12:fc:85:
4a:33:35:29:f2:ce:b2:35:39:82:77:b6:be:7d:1c:
77:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:BD:FA:B7:4A:F5:C1:A1:35:94:52:C0:58:5F:77:FE:05:13:96:F4
X509v3 Authority Key Identifier:
keyid:0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:0b:72:60:9a:77:3a:e2:69:03:47:d1:4c:32:5c:2c:04:11:
57:ac:4f:23:08:05:bd:02:d1:14:d8:23:3d:61:05:1f:f5:e4:
17:3c:d1:62:45:0d:6f:9e:c7:06:da:e3:11:7e:c6:c5:91:7c:
da:43:83:38:12:8a:65:67:39:c6:3a:31:9b:3a:ad:eb:d0:a2:
47:23:46:a9:be:fa:e9:14:17:68:a4:b1:40:f7:b8:f8:ec:0c:
24:81:82:f3:ad:58:a6:7d:06:86:5d:c7:ac:f2:e8:de:85:4a:
a3:ce:37:3e:8b:bc:4b:cb:01:25:cd:96:e9:58:d4:d1:9e:c2:
25:54:27:3b:f5:f1:a2:c2:2e:92:71:74:e2:41:7a:f3:cb:27:
65:d4:c1:ef:f2:6a:63:d5:7b:e2:bc:b0:52:7a:7e:5f:4d:68:
42:6a:80:d1:96:cb:aa:1a:5c:e2:da:07:c9:72:31:1b:f3:b2:
3b:56:61:de:85:1b:6d:16:e8:eb:d5:2a:8c:2f:10:7e:1f:90:
f0:51:89:6c:ed:dd:45:63:92:e7:70:98:4d:87:f3:e8:68:cc:
c4:a8:45:65:62:49:16:b0:cd:92:dc:39:64:ba:89:70:c2:7b:
ea:55:70:74:77:e3:62:e0:36:c6:3f:cc:6e:f0:60:8d:af:f0:
7f:01:a9:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:11 2026 by rpki-client