Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
File: iWsznbz4QR1YQAjPAptHyIqzedU.mft (raw, json)
Hash identifier: wWATuW9k9YpRCK140G+4NcO9sacZo8XCsxeu96ee9AY=
Subject key identifier: 06:82:B7:1E:87:C4:A1:69:F3:70:D9:24:6D:3F:14:E9:54:29:AD:7E
Authority key identifier: 89:6B:33:9D:BC:F8:41:1D:58:40:08:CF:02:9B:47:C8:8A:B3:79:D5
Certificate issuer: /CN=896b339dbcf8411d584008cf029b47c88ab379d5
Certificate serial: 019D3941293C858F5BC461DFEDC582278E49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
Manifest number: 6C
Signing time: Sun 29 Mar 2026 11:01:04 +0000
Manifest this update: Sun 29 Mar 2026 11:01:04 +0000
Manifest next update: Mon 30 Mar 2026 11:01:04 +0000
Files and hashes: 1: _01xdN9b6VGiDq8TdVfHkv4nsNA.roa (hash: cof+3EhtbeAEqNmK/OvBSq8ShRaGyYdb9JejvgRl8nA=)
2: iWsznbz4QR1YQAjPAptHyIqzedU.crl (hash: Bw/zA4w7UUYXRqebo0IAj27CPb31C+Ff5q44NAXxbAo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:29:3c:85:8f:5b:c4:61:df:ed:c5:82:27:8e:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896b339dbcf8411d584008cf029b47c88ab379d5
Validity
Not Before: Mar 29 11:01:04 2026 GMT
Not After : Mar 30 11:01:04 2026 GMT
Subject: CN=0682b71e87c4a169f370d9246d3f14e95429ad7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7a:8e:cb:9b:fb:b8:0b:f2:9b:45:40:89:27:
1c:1d:c4:9b:43:0e:5d:6a:b9:ca:09:d3:21:57:4f:
d4:8f:b8:6a:00:13:c0:7e:8a:85:d7:23:1e:0e:dc:
3e:eb:11:c7:f2:e1:81:ae:aa:6e:60:e4:26:0b:a0:
88:a8:db:bf:49:fc:41:97:d2:41:b3:9a:c6:56:17:
2b:76:2e:03:91:68:d4:93:7f:19:90:c0:53:ec:a9:
a3:98:a2:26:60:c7:4e:4a:4b:5f:b5:5c:c4:46:a2:
59:e8:e6:10:6c:29:29:ba:81:72:b6:5d:b3:e9:74:
14:fe:93:88:c0:9f:6f:d4:cb:68:6f:c6:d2:8e:52:
99:b7:41:ee:08:68:94:cb:bb:e2:f5:12:d0:ce:67:
cd:c0:70:41:54:e3:29:62:32:02:d9:fe:24:58:17:
3e:cf:1f:e7:3e:66:87:16:10:91:1d:bb:e4:e0:e6:
8b:ed:a0:ea:a8:6c:1d:60:f2:b2:2e:d6:aa:75:85:
8e:78:57:cb:ca:f9:02:6e:df:b6:d8:4e:99:e2:cc:
36:77:58:92:d6:44:be:9c:f0:99:8f:5e:20:3d:e3:
ea:1e:bd:5b:ff:46:48:a4:2f:e4:c9:ae:25:7f:fd:
83:9b:9a:6d:2e:c7:e2:fa:db:18:b8:10:11:9f:b2:
54:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:82:B7:1E:87:C4:A1:69:F3:70:D9:24:6D:3F:14:E9:54:29:AD:7E
X509v3 Authority Key Identifier:
keyid:89:6B:33:9D:BC:F8:41:1D:58:40:08:CF:02:9B:47:C8:8A:B3:79:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:a8:d6:74:97:f0:4d:75:2f:33:e3:33:e1:bc:db:10:fd:84:
90:13:92:bc:e0:4c:d0:ad:39:bd:9f:14:b5:83:1e:ea:64:37:
a5:87:27:95:45:d5:bf:30:71:ce:5b:b0:3e:c8:14:30:a7:72:
54:e9:fe:82:3d:dc:11:1c:eb:c5:1f:81:ed:db:31:d2:ef:75:
0f:89:43:47:0d:93:25:ef:c8:61:b5:72:f8:12:8f:f0:65:bf:
34:3e:81:f7:b1:dc:7b:37:91:ae:3c:56:2f:66:46:b2:84:64:
d4:d4:42:bf:df:d7:ad:8c:4c:f9:cf:0d:65:c9:fc:8f:73:f4:
14:8d:82:a1:34:1a:b3:64:7f:44:34:9f:22:67:7c:8e:a5:6f:
bb:a9:8d:62:8d:a5:73:d6:1a:1a:ee:9b:b9:21:6c:c8:14:0d:
a4:d2:fb:b5:d5:b0:e3:fa:18:90:ef:f3:79:f3:2e:e0:a0:75:
31:38:7f:dd:ca:67:b8:ba:2a:d3:e5:3c:4d:77:20:1e:c9:7b:
c7:4c:53:56:28:a2:82:bf:b7:13:2e:73:b1:e5:1b:46:c2:09:
59:c8:cf:17:9b:c0:14:20:60:f9:42:72:36:cf:04:92:cd:bf:
d3:53:7d:4c:4c:ce:de:cd:61:41:62:c5:36:4b:14:34:d5:30:
72:82:4f:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:38:59 2026 by rpki-client