Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
File: a0dcb7gDO14R19tfLJl8hLpyXKI.mft (raw, json)
Hash identifier: DcADm7ZaHbKGNl7r0Hnygkr7eHDTJaA1gwprbZJidUk=
Subject key identifier: 02:D3:9C:34:AF:8B:85:7D:FF:9B:15:40:1D:F3:FA:DF:8E:19:77:EF
Authority key identifier: 6B:47:5C:6F:B8:03:3B:5E:11:D7:DB:5F:2C:99:7C:84:BA:72:5C:A2
Certificate issuer: /CN=6b475c6fb8033b5e11d7db5f2c997c84ba725ca2
Certificate serial: 019D37F71E4E6B3276D6304BCC068294879D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
Manifest number: 1821
Signing time: Sun 29 Mar 2026 05:00:35 +0000
Manifest this update: Sun 29 Mar 2026 05:00:35 +0000
Manifest next update: Mon 30 Mar 2026 05:00:35 +0000
Files and hashes: 1: a0dcb7gDO14R19tfLJl8hLpyXKI.crl (hash: dBU6gM1W4N85smwwlLqc/5oeS8XXHQz4hiWMTHnQjLs=)
2: h2uRyyLQQ2Shtkyxrk1UdTyzOhc.roa (hash: 9VGK+pBjMxIsPPaRSCjbbR6f7e4NiPLTe+cZavCVZO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:1e:4e:6b:32:76:d6:30:4b:cc:06:82:94:87:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b475c6fb8033b5e11d7db5f2c997c84ba725ca2
Validity
Not Before: Mar 29 05:00:35 2026 GMT
Not After : Mar 30 05:00:35 2026 GMT
Subject: CN=02d39c34af8b857dff9b15401df3fadf8e1977ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ef:db:c5:ab:9f:e0:ba:55:a3:9d:3c:78:8c:
7a:75:dc:af:7e:cc:84:fa:7d:68:e6:32:7d:9c:b0:
b0:1f:d9:ac:03:c0:fb:c4:f7:f4:60:d3:7a:a1:3e:
61:87:62:40:4f:4b:2c:f3:ad:0b:93:e8:fd:d1:4e:
16:df:1b:aa:c1:35:bb:93:2c:2c:57:0a:25:76:f0:
4a:d1:c0:f5:14:d2:e4:b8:c3:6c:46:09:2c:85:2e:
dd:0d:ef:67:47:05:83:e2:c0:a6:5b:bc:65:c8:2f:
46:26:ee:03:16:f0:08:4b:28:1b:c6:39:e9:bd:5f:
2c:0b:b1:12:85:7f:7e:4c:8f:33:85:fa:59:d9:cb:
44:9e:e5:d4:7a:73:22:9d:59:57:55:72:2c:da:19:
ed:25:3b:eb:89:29:30:0f:a8:f4:93:76:af:12:dc:
92:a8:40:03:be:ae:59:3f:dc:9b:f3:e2:09:3a:84:
16:19:c1:37:85:44:f9:06:46:a7:54:fb:52:3e:f4:
fb:99:ba:01:5a:2f:ca:85:bc:07:df:44:86:43:04:
6b:4b:89:f5:e3:9d:9c:7e:b8:32:e4:65:7c:89:56:
4e:55:01:ed:7b:a5:78:b9:3f:33:58:a9:12:5f:a3:
53:76:e7:53:f6:6e:8b:0c:67:80:fb:c7:69:27:7e:
b2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:D3:9C:34:AF:8B:85:7D:FF:9B:15:40:1D:F3:FA:DF:8E:19:77:EF
X509v3 Authority Key Identifier:
keyid:6B:47:5C:6F:B8:03:3B:5E:11:D7:DB:5F:2C:99:7C:84:BA:72:5C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0dcb7gDO14R19tfLJl8hLpyXKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9f43aa-c5c9-4ef7-8766-5a9d702e77e3/1/a0dcb7gDO14R19tfLJl8hLpyXKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:f6:3e:d3:7e:a7:c4:30:a1:77:d8:09:e9:d6:fc:7e:1a:cc:
3b:48:a1:af:e9:8b:3a:03:d9:6a:4b:6a:93:e7:11:00:d8:c1:
cb:d4:95:64:d8:bf:39:6e:eb:cb:bd:19:29:87:ff:a8:46:42:
2d:95:9a:e3:87:5d:6d:50:2b:7b:1c:b6:64:af:3f:96:25:a5:
32:b9:77:f3:2f:c3:5f:b4:7d:ac:f4:fa:1e:d8:08:c9:dc:21:
97:c6:47:f0:bc:76:c3:72:a0:27:6b:7d:17:c5:e9:30:68:eb:
50:1b:34:75:8e:a9:93:4f:26:31:40:d6:84:30:ec:8d:ca:d4:
9d:92:32:04:89:fe:e2:91:27:31:fd:f7:a0:b3:7b:0f:13:cc:
1a:b2:1d:db:2b:c6:19:f9:fb:8f:2e:11:dc:cd:5b:ab:ae:f3:
87:64:5c:48:4d:61:29:7e:2e:c8:1e:db:24:59:ae:82:92:77:
4b:1c:ab:3f:83:4c:c7:d3:6e:52:b9:df:cc:92:df:48:06:89:
23:d0:00:79:ce:c3:d5:55:93:71:37:2a:d6:5a:eb:0f:25:fd:
df:38:66:12:5a:ec:19:50:ca:6f:02:92:5c:19:db:40:24:d6:
27:38:85:e6:d2:a6:7b:4a:39:3a:61:1e:16:42:6a:59:87:a6:
4c:8e:ae:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:46 2026 by rpki-client