Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json)
Hash identifier: Btoya+QX2wDNjDGY28uWdf0IcW5s51B+jLvaf1oqLqY=
Subject key identifier: B7:95:F8:3E:3C:0C:EA:99:FE:E6:1E:FD:7E:0B:63:94:14:73:DD:0C
Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Certificate serial: 019D38D37F1A71DBAC507289D61E27291749
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
Manifest number: 06C0
Signing time: Sun 29 Mar 2026 09:01:17 +0000
Manifest this update: Sun 29 Mar 2026 09:01:17 +0000
Manifest next update: Mon 30 Mar 2026 09:01:17 +0000
Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: DPyvyXXB0hAZFjw1KxMYnPFhHcwP8acf3/Pd55cASRk=)
2: Lljg_xH1KTEyF8YtQpFDhU2fq9M.roa (hash: G0j8nubF5nQiwgPwwabVEZQZZTMIJxsI563KIITxMI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:7f:1a:71:db:ac:50:72:89:d6:1e:27:29:17:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Validity
Not Before: Mar 29 09:01:17 2026 GMT
Not After : Mar 30 09:01:17 2026 GMT
Subject: CN=b795f83e3c0cea99fee61efd7e0b63941473dd0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:25:5e:b9:05:eb:04:e7:be:fd:6a:b0:63:60:
c6:d2:42:99:b4:88:71:95:19:d0:55:9e:2d:7b:65:
f7:52:61:3d:68:c1:0d:d3:bf:03:59:5e:3a:be:e3:
f5:61:37:b5:8c:5e:0c:6d:8f:7d:62:02:77:36:ab:
46:bd:ca:35:e2:08:a6:cd:39:b3:2f:06:3a:a7:f6:
b2:9f:bd:cd:85:10:ae:99:b8:11:d1:a4:ee:ff:bd:
67:88:57:d1:fc:74:c3:5b:9d:a7:1d:12:72:32:16:
14:2e:06:e2:5b:0a:78:8f:8d:12:a3:c2:4d:ab:78:
1a:bb:08:45:c3:11:3c:02:8d:fb:01:26:d3:ed:6b:
b7:06:0e:5e:26:78:ab:2a:08:a2:8d:fc:f0:7b:bc:
d9:68:95:9b:b3:4f:41:98:8b:42:c7:70:b7:65:3d:
0a:16:89:46:34:d6:84:2b:18:26:7a:cf:31:3b:2a:
de:00:d4:96:80:bb:91:71:fa:db:51:08:a2:60:05:
e8:f9:df:d7:d7:8a:aa:75:04:5b:12:95:a6:a8:62:
ff:c1:a9:60:1a:47:88:e4:b3:95:dc:1e:d5:21:43:
fc:eb:66:35:b4:2c:5a:28:90:6a:0f:a7:db:55:34:
b0:59:ea:b8:0b:e1:44:8d:02:5a:ef:99:46:e2:40:
0c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:95:F8:3E:3C:0C:EA:99:FE:E6:1E:FD:7E:0B:63:94:14:73:DD:0C
X509v3 Authority Key Identifier:
keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:1b:b9:bc:be:75:2e:a1:a3:b0:df:34:12:03:8a:27:a2:61:
d9:78:7b:42:6d:b9:c7:f5:0c:f9:e6:26:cb:52:90:e5:46:4a:
82:32:19:2b:54:1d:c2:df:5f:b4:82:67:ee:ca:a4:08:6f:de:
a4:91:43:1b:c9:6e:6a:09:c0:b3:ad:52:9a:8c:b1:79:cd:40:
da:ae:2e:e2:55:56:3d:11:35:c6:41:9f:e8:6e:3a:28:80:e1:
09:a7:13:0e:f2:be:16:a7:3a:87:b0:72:a2:82:a9:0d:34:5b:
73:6c:6d:02:90:e2:66:73:2f:07:77:87:17:7a:6b:64:d1:49:
49:ee:4f:70:37:6b:ad:eb:d9:97:52:e9:6d:bb:b0:8e:97:7a:
4f:d5:b3:57:5a:09:bf:dc:ae:4a:3d:73:0d:86:b7:92:7d:50:
7e:57:f5:f8:4b:5b:00:98:5a:11:ba:ef:fb:ea:4c:5c:15:35:
5b:14:5c:8a:64:bf:5c:27:17:0c:bd:cf:55:11:81:50:e3:5e:
04:96:95:be:a9:10:26:df:79:ba:ab:e4:ed:94:2a:8c:a8:b4:
ba:57:3b:c2:79:e5:eb:ab:d3:bc:1e:a0:73:79:ac:14:fa:07:
88:15:90:9f:52:eb:30:e6:44:c7:8e:56:b0:f6:a7:5f:5e:26:
cd:bd:7f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:57 2026 by rpki-client