Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
File: fD2KpDg1BKMa_0sAaBCga88DBa4.mft (raw, json)
Hash identifier: FiLBOhezpe/mwplUi99ShHc+thws5uQWgCu3r0ozq+o=
Subject key identifier: B1:23:D3:74:03:89:12:89:10:EF:0F:CB:D0:77:CB:C7:5B:23:61:5B
Authority key identifier: 7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
Certificate issuer: /CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Certificate serial: 019D38D3B8B1E44AEC125D1F4F9AD8C29601
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
Manifest number: 146B
Signing time: Sun 29 Mar 2026 09:01:32 +0000
Manifest this update: Sun 29 Mar 2026 09:01:32 +0000
Manifest next update: Mon 30 Mar 2026 09:01:32 +0000
Files and hashes: 1: fD2KpDg1BKMa_0sAaBCga88DBa4.crl (hash: t3a0QrkSWJZlszV7UgBHic/eR7Oj27AsGukR218GD98=)
2: ynivGHGV8Z6F2cby7L1fi45lXJI.roa (hash: p2d61mUjDisc5jYXXPmal+v44ksSKZ1nKZ0hR92ybdU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:b8:b1:e4:4a:ec:12:5d:1f:4f:9a:d8:c2:96:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c3d8aa4383504a31aff4b006810a06bcf0305ae
Validity
Not Before: Mar 29 09:01:32 2026 GMT
Not After : Mar 30 09:01:32 2026 GMT
Subject: CN=b123d3740389128910ef0fcbd077cbc75b23615b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8c:e5:7d:37:de:6a:ad:9b:5a:eb:f1:a9:e5:
49:3b:c3:bb:90:75:c4:64:45:04:17:62:96:c6:0f:
47:ef:f7:25:96:da:67:88:a5:c4:1b:d4:2a:49:7b:
c9:28:1b:d3:31:db:7b:c5:15:c3:71:21:41:ae:2a:
d6:fb:27:69:18:80:9e:11:28:17:58:5c:27:28:84:
ec:65:5b:52:e1:28:21:10:0e:6d:2f:82:24:fc:c5:
7d:44:08:74:90:d4:16:46:cb:4d:3a:4e:4a:a5:ed:
49:d0:ed:fa:ce:ce:56:fa:43:d6:f7:49:5c:8b:8f:
2a:c1:cd:5d:44:eb:1b:12:a3:27:22:5b:d8:88:19:
4f:ff:b4:d2:dc:5c:48:58:91:a5:ef:c0:bc:38:29:
b6:9a:5e:48:ee:24:ae:41:68:36:9f:01:dc:b7:32:
ab:0a:27:79:e4:1d:6e:33:57:3f:d1:b6:38:6a:ef:
76:a1:da:02:a4:b7:b8:49:16:77:ff:43:b6:40:b7:
ff:22:c7:1c:1d:32:85:c1:a6:e3:e9:d3:44:b3:99:
a4:84:0b:2d:98:68:16:49:7f:23:5f:d6:8e:57:f1:
d0:d6:22:b0:da:ed:bf:20:8a:2e:e0:d5:51:93:98:
e0:1b:e3:b0:f6:67:2e:4f:25:4f:35:35:45:d0:b1:
1a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:23:D3:74:03:89:12:89:10:EF:0F:CB:D0:77:CB:C7:5B:23:61:5B
X509v3 Authority Key Identifier:
keyid:7C:3D:8A:A4:38:35:04:A3:1A:FF:4B:00:68:10:A0:6B:CF:03:05:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fD2KpDg1BKMa_0sAaBCga88DBa4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a42e94-15b7-4272-9eb0-99db21244edf/1/fD2KpDg1BKMa_0sAaBCga88DBa4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:e2:52:02:fc:8e:de:09:bd:53:bb:d8:7f:06:11:69:57:30:
9d:0e:97:48:fe:9e:e1:dd:4b:82:0b:4e:28:2e:7e:bb:f8:38:
f0:cc:08:a9:a0:64:0c:33:2b:f7:84:65:d7:81:b9:8f:46:c1:
56:80:80:e8:f6:e9:6c:b2:1d:ed:bf:79:33:74:77:98:d7:30:
fa:2f:42:fa:71:a6:40:06:54:d8:2e:37:92:80:cc:b0:9f:f0:
f7:2b:8e:30:45:85:4a:8c:50:3c:47:db:31:6d:18:78:b3:d8:
c6:0c:07:fd:fc:97:60:38:a5:c1:f9:38:b3:56:be:34:3c:50:
c5:d4:8b:0d:8f:8d:1c:dc:f7:42:73:bf:2e:ea:53:fe:38:ef:
7f:5d:e2:48:f5:26:4f:64:b1:ac:a2:8e:7a:90:03:26:a9:b5:
63:d5:34:16:e7:72:0a:bb:b6:35:fb:d3:31:7b:fa:80:e6:69:
91:72:83:82:94:cc:57:83:c3:a7:b6:25:da:b6:c1:02:e8:e8:
82:5d:12:62:5a:01:ae:ed:2e:02:51:ea:8d:00:2a:bb:ff:52:
d6:33:20:ea:73:9a:34:72:88:4f:91:8a:d8:f2:ec:ed:41:8a:
4e:5d:b4:75:5b:87:9d:ab:f0:b6:48:95:5f:13:67:1c:f7:98:
be:f0:f2:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:01 2026 by rpki-client