Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: eQTxxkQWAB6BxzDy+10od9/2Z8tm1p8OkgxH/6nMlaU=
Subject key identifier: E3:97:52:1A:5C:EA:E4:BD:E4:48:0B:51:38:F8:7D:2B:81:79:38:04
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 019D389C269CC63BBE1769D60530F3C11377
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 15E1
Signing time: Sun 29 Mar 2026 08:00:50 +0000
Manifest this update: Sun 29 Mar 2026 08:00:50 +0000
Manifest next update: Mon 30 Mar 2026 08:00:50 +0000
Files and hashes: 1: 8JPDTRJcWjJC1p6Bup8VRe1Gagc.roa (hash: /UT/Fa23tq8Vnw8GXuEzSsDokpGGbDVoxclf2hd11P4=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: netZJxv+mhYJekyDdQzloolzW8UwVKPMnTnJD5XuqPY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:26:9c:c6:3b:be:17:69:d6:05:30:f3:c1:13:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Mar 29 08:00:50 2026 GMT
Not After : Mar 30 08:00:50 2026 GMT
Subject: CN=e397521a5ceae4bde4480b5138f87d2b81793804
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3a:54:bf:56:90:c9:8b:c6:57:da:c4:12:be:
c7:e4:4b:e3:b5:82:0c:2e:e9:3a:f4:1f:07:49:2b:
d5:f6:22:3a:26:2a:50:28:8e:fc:c8:de:88:c5:2d:
f2:27:1c:a0:aa:d0:a6:77:66:39:50:e7:90:71:08:
f8:c8:e3:f2:7b:b8:1c:8e:a3:1d:5e:11:d3:3d:11:
84:40:19:09:70:15:d2:89:f7:c8:85:6b:63:d5:c9:
72:3e:56:b3:81:b6:b4:cb:0f:30:b3:ee:b1:f9:50:
db:8e:8d:b9:fb:e2:51:4d:c4:96:06:c0:5b:07:67:
e9:72:3c:31:b6:d7:20:60:19:19:f0:0b:9e:70:dd:
17:05:4a:ad:a0:d3:03:ea:2d:6d:5f:2d:89:0c:57:
9a:ec:f8:a0:9f:9e:e2:15:87:b8:cf:2d:85:17:c9:
6b:db:7e:c9:3b:e4:17:90:53:a1:a4:1c:78:6b:c3:
95:b4:e5:9c:b5:67:3e:3b:cd:89:a4:45:d9:a3:f2:
2c:1c:16:8c:f6:e0:d8:74:a5:8a:4f:4d:f5:ff:d9:
76:39:7a:f2:00:6c:f2:07:9c:04:41:01:bf:90:55:
ce:90:e3:72:70:ce:37:db:e4:8d:52:bf:f3:07:4f:
c8:02:eb:31:38:b1:87:27:2f:f2:20:fc:37:1e:28:
c1:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:97:52:1A:5C:EA:E4:BD:E4:48:0B:51:38:F8:7D:2B:81:79:38:04
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:9d:46:2b:6b:9a:a5:8b:7d:4d:0f:37:e5:69:c6:d6:51:96:
aa:d2:85:cd:dc:49:83:f9:70:82:68:00:f1:36:7a:b0:ff:50:
9d:66:9d:84:86:6c:7e:a3:a5:0d:3b:c8:a5:dd:b0:5d:91:0e:
eb:d2:3b:dc:13:69:c3:d7:7e:7d:a9:ac:56:96:7f:de:40:ac:
2a:b1:27:03:ba:59:0f:e7:45:bd:ce:fe:64:65:75:28:1f:dc:
08:db:02:b6:40:35:83:6d:5b:b9:8f:58:c1:c3:78:96:c0:a2:
50:59:29:ba:f2:2b:37:ae:74:26:81:b5:6c:a9:7a:68:61:67:
db:82:9f:6a:16:a0:0b:94:3c:b6:f9:02:8c:81:4b:1c:7a:81:
bc:55:9c:23:0f:81:fd:c6:f3:20:4c:e8:b8:a3:75:87:6f:f5:
34:70:15:ca:47:c8:3e:49:bb:89:05:0c:af:5b:ed:6f:e7:b0:
e6:a1:f4:83:c6:88:61:77:00:55:ee:42:a5:e0:4a:2a:f9:f9:
00:eb:23:24:b2:32:0d:b1:b6:10:d4:60:9a:57:f2:65:2f:ea:
24:6d:8b:81:7e:ae:cb:d9:7a:2f:99:d1:dc:ac:e5:7e:43:24:
21:fe:3e:7b:b0:11:6b:89:62:18:5c:df:64:e3:8f:6a:25:28:
7e:02:89:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:46:36 2026 by rpki-client