Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
File: 23uiovC_o6dvXJkaR82YaMbR674.mft (raw, json)
Hash identifier: 9FYsakVWTtBcCzu0RehllXUW9IWZJsGfdR8Ei/rV5yg=
Subject key identifier: 0E:5F:EB:10:41:BA:6B:2F:FA:C5:FF:FB:48:D8:36:69:14:49:E2:06
Authority key identifier: DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
Certificate issuer: /CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Certificate serial: 019D37F71CF50EDDC3A1B23188D7C99A70ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
Manifest number: 1541
Signing time: Sun 29 Mar 2026 05:00:34 +0000
Manifest this update: Sun 29 Mar 2026 05:00:34 +0000
Manifest next update: Mon 30 Mar 2026 05:00:34 +0000
Files and hashes: 1: 23uiovC_o6dvXJkaR82YaMbR674.crl (hash: 6avCgBKmRdoP06nixumd/Tdy2ahkdAYbbqzzBgJ7eRQ=)
2: NRwgJUwXk3BWkcpGjCMp97lO_U4.roa (hash: cqI/kILVJcAeJ0Tz95y2zzvYBTUTuf7X5Zw7I2eBtl8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:1c:f5:0e:dd:c3:a1:b2:31:88:d7:c9:9a:70:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Validity
Not Before: Mar 29 05:00:34 2026 GMT
Not After : Mar 30 05:00:34 2026 GMT
Subject: CN=0e5feb1041ba6b2ffac5fffb48d836691449e206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:56:c5:c2:c5:bd:5c:85:45:dc:07:09:87:4d:
7f:23:f1:21:39:2f:0f:0d:07:da:b9:de:c7:34:00:
f1:93:9d:6c:1a:55:79:28:ee:65:26:3b:f6:29:08:
b8:96:3e:a0:4a:5b:87:3d:c0:96:c2:f5:f9:4b:32:
20:a6:93:3e:58:4c:0b:56:f5:37:11:d4:0d:a8:42:
1f:48:f0:d5:7c:e1:6b:b5:75:cf:03:e5:0d:be:9f:
da:e8:78:25:cf:5e:7e:7a:78:a4:c0:d6:6b:b7:ea:
ce:96:ff:33:02:eb:c5:21:fc:7c:ca:89:bd:2b:83:
e3:1b:d4:54:6d:e0:8e:00:65:c1:ae:1b:dc:7d:f6:
3e:ec:86:dd:3f:d3:5a:2e:b0:ae:5c:6a:fd:ef:2f:
f6:ba:12:0f:ec:4b:36:37:40:b3:7c:b6:20:6d:9e:
85:dd:5d:3e:1b:09:dc:61:44:5e:c4:19:b7:c9:e7:
da:68:19:6c:7b:52:81:64:38:ec:ab:44:67:05:ac:
38:aa:b0:4e:78:bf:ce:72:4e:e8:6f:04:bb:28:f9:
8c:64:0f:1d:88:c7:97:f3:a8:4e:5c:2e:5e:9f:f0:
15:9a:ff:74:18:16:6b:b2:00:2c:bd:ed:92:dc:cd:
9a:71:93:4a:88:fc:99:9b:5c:dc:5c:7f:2e:1a:79:
14:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:5F:EB:10:41:BA:6B:2F:FA:C5:FF:FB:48:D8:36:69:14:49:E2:06
X509v3 Authority Key Identifier:
keyid:DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:a7:79:b0:79:04:9a:65:26:b5:f0:28:00:c6:fc:22:aa:8f:
a7:d3:88:7d:f5:c5:c6:f3:52:8d:c4:1c:46:67:7d:d7:21:47:
09:8e:37:c2:71:e5:09:c4:c4:4d:e2:6e:c0:57:28:1c:5e:6a:
2e:ad:fa:1c:3a:94:51:26:9d:ef:16:f3:85:f7:41:2a:7d:ad:
a9:22:82:d4:30:b4:4f:4a:fd:3e:66:15:41:ab:7a:85:bf:b6:
ef:f3:6a:83:39:de:b4:80:23:22:96:5f:64:5b:ba:c4:37:c8:
5b:1b:09:c2:16:67:61:f3:2f:4b:5d:9b:20:6e:9c:2a:fa:35:
c9:17:a6:87:cf:8a:ce:07:bc:14:23:a2:6f:97:64:bf:2f:41:
0f:83:8f:06:a0:c1:04:c4:9a:9c:1a:2c:be:6a:fb:d2:dc:17:
6b:64:57:8c:09:62:4a:57:b1:7f:87:e1:77:29:61:58:20:6e:
cd:1c:c6:ad:24:37:70:fd:8f:2f:67:ce:28:aa:9f:0d:81:41:
9c:54:b1:04:fe:1c:e9:96:8b:d9:7e:de:3c:c8:28:99:e8:e6:
6b:e3:9c:bd:47:20:4a:54:27:88:b5:7e:54:53:f1:b0:01:e2:
fd:34:f3:e3:a1:63:23:7d:c7:38:1d:83:b6:66:3e:43:1d:a8:
04:38:71:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:45:43 2026 by rpki-client