Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
File: ss0DX6sYpLeCYURWP2DniYpO8PE.mft (raw, json)
Hash identifier: b4rnSOA+Gg5lqe9UowjejU6dPQVCGEM11wtKlmbpz7o=
Subject key identifier: 6C:F0:7A:35:D9:10:99:6A:E4:87:E5:9A:47:A6:91:98:D3:AA:82:FB
Authority key identifier: B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
Certificate issuer: /CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Certificate serial: 019D3940D52039020ECC4500274B4BC68015
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
Manifest number: 13AC
Signing time: Sun 29 Mar 2026 11:00:43 +0000
Manifest this update: Sun 29 Mar 2026 11:00:43 +0000
Manifest next update: Mon 30 Mar 2026 11:00:43 +0000
Files and hashes: 1: ss0DX6sYpLeCYURWP2DniYpO8PE.crl (hash: Y0++i5LCuFJvE/wXBFD1VHiWi7zH9ncRw3vZnAL4E+8=)
2: tgTwpFfHXIJ-4zvGVktRl18g6vA.roa (hash: kjXIbzNvSA/lR/bgH5uNTLZdXALacffRt33zev7P/mI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:d5:20:39:02:0e:cc:45:00:27:4b:4b:c6:80:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Validity
Not Before: Mar 29 11:00:43 2026 GMT
Not After : Mar 30 11:00:43 2026 GMT
Subject: CN=6cf07a35d910996ae487e59a47a69198d3aa82fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:52:35:ee:11:08:30:2c:39:86:9b:8a:8b:4b:
ae:a4:0e:92:69:25:24:15:d9:96:41:f0:07:cb:9b:
08:70:fd:5b:e3:e7:9a:85:d4:17:c6:23:2a:c1:98:
3f:ae:df:d6:eb:39:7b:13:68:56:fa:c5:fe:de:58:
38:6a:2b:e6:c2:72:89:42:6f:2b:c3:6a:30:53:5c:
44:91:05:d8:29:a1:be:89:d3:73:8c:50:a4:78:d0:
69:2a:e9:14:c4:57:52:43:41:ed:df:ff:9f:ec:10:
6e:d6:68:9f:cb:e5:14:3b:62:b6:f2:3e:ba:f7:d0:
a5:fc:65:64:f6:16:16:b8:58:b7:d5:0b:d5:2b:3b:
60:2f:ff:bf:9e:57:cd:b7:3d:b8:6d:7a:26:07:14:
15:dd:0b:73:a5:24:71:ef:c9:23:cd:e4:af:4d:ec:
12:16:e1:b7:b9:23:80:61:6d:2e:7c:9b:39:6f:51:
03:97:9f:e9:85:01:9d:48:64:31:03:61:20:68:a7:
d9:e9:7f:48:d7:a3:12:25:fd:7a:0e:4b:9b:55:0d:
c9:78:b1:27:1d:9b:69:4a:18:fd:81:fe:7e:d1:dc:
c5:2a:69:92:db:ec:37:aa:0f:74:c1:59:23:76:42:
29:b4:0b:b3:e5:4a:17:78:96:70:03:6a:fb:c2:1f:
b1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F0:7A:35:D9:10:99:6A:E4:87:E5:9A:47:A6:91:98:D3:AA:82:FB
X509v3 Authority Key Identifier:
keyid:B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:ff:a0:5c:79:a9:ed:e5:79:25:97:6b:e0:e4:d8:39:d2:d7:
0e:a1:24:c3:20:f4:4d:c2:04:1d:36:be:c3:3e:8a:3d:0c:d6:
e5:fd:dc:d4:68:9e:a7:d0:1c:d5:f0:b0:ec:99:10:55:4f:d8:
fc:b3:c3:4f:08:7a:1f:ef:ec:3a:d8:31:a7:a2:b3:f6:35:96:
e9:a8:dd:6b:97:24:77:a5:d0:b6:ca:16:70:f1:1a:82:ce:bc:
09:92:f9:59:03:c1:d4:3e:90:97:7d:0e:71:fb:d9:05:3e:e1:
e0:ac:d7:3a:3f:e2:38:44:91:23:23:83:ae:dd:09:4a:64:4d:
88:08:62:fd:6a:ac:18:af:ca:46:df:a3:60:c6:23:9a:a8:5e:
c0:ef:8b:69:6a:f2:3e:fe:f2:06:84:e3:13:fb:92:65:66:a1:
4e:b1:ff:ee:c4:22:ca:ee:8b:fc:c3:92:62:f6:54:e1:68:55:
6a:a3:1f:cc:99:d5:72:00:ff:e6:89:ac:e7:49:c0:ee:39:7a:
8f:4a:4d:dd:93:3b:6e:80:c7:78:ed:7c:13:49:ee:19:aa:fc:
ed:97:a3:c2:66:f9:94:ac:d7:42:a0:63:0a:db:61:1e:00:0f:
39:1f:be:d7:64:60:27:c8:55:0d:a2:84:9b:92:39:a3:b6:72:
a3:fe:93:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:41 2026 by rpki-client