Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
File: d7AlLypnrNQplw-mSmQXd29y2NY.mft (raw, json)
Hash identifier: +HC/gUv7/FQ6itwTR2zDddstj1eQBr2TpqVkw2vjDeg=
Subject key identifier: 20:0F:25:1C:20:DC:A6:B3:59:45:C3:EC:6C:E9:39:47:4E:80:09:83
Authority key identifier: 77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
Certificate issuer: /CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Certificate serial: 019D390A53D8D4E82750775128264406D6AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
Manifest number: 076C
Signing time: Sun 29 Mar 2026 10:01:11 +0000
Manifest this update: Sun 29 Mar 2026 10:01:11 +0000
Manifest next update: Mon 30 Mar 2026 10:01:11 +0000
Files and hashes: 1: GZzLxFCp1bVkiSpEsTLVVr4H9XI.asa (hash: ivqvyTFoXDuekBB8qUC8sgSfxDY8iNPCYAvAp+TmOlY=)
2: d7AlLypnrNQplw-mSmQXd29y2NY.crl (hash: UPS4WhIkUIOuqa0LqcZhTN9FD04IAsA707g0oJJ0yWw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:53:d8:d4:e8:27:50:77:51:28:26:44:06:d6:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Validity
Not Before: Mar 29 10:01:11 2026 GMT
Not After : Mar 30 10:01:11 2026 GMT
Subject: CN=200f251c20dca6b35945c3ec6ce939474e800983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:58:a3:ea:8e:be:da:06:d2:8b:dc:e4:81:e6:
0b:cb:51:be:10:61:77:05:af:2d:ad:3c:dd:31:e7:
72:7f:92:25:b6:56:ce:0a:73:3e:52:b2:c5:eb:c0:
28:62:47:68:d8:67:f9:6f:7c:76:e8:b2:cb:08:8f:
ed:ac:82:65:6e:9b:10:35:1e:a5:40:7e:b4:00:1f:
ca:78:bb:9f:09:bf:2d:1b:22:22:b7:3c:30:11:06:
2f:8a:9b:80:22:e2:ed:e2:e7:bd:88:e9:74:ed:b2:
7b:1e:95:c1:9c:25:78:20:f1:7d:81:9c:c3:11:08:
98:30:6a:99:b1:05:2e:89:0c:b4:ef:02:28:8b:a9:
bb:2f:ab:37:c3:d9:3c:5e:bf:d2:46:83:89:74:f1:
b6:d5:12:a1:a7:f9:f6:95:e6:15:a2:07:72:6f:ed:
f0:54:52:dd:c8:72:56:ea:96:76:f1:77:1a:fa:46:
00:6b:dd:00:80:ea:51:75:2a:05:65:ec:a1:9c:80:
63:5d:7d:e9:ab:71:ab:00:73:3c:06:a1:3b:e1:d9:
a1:21:22:34:04:71:44:7e:ca:40:f4:a8:c5:9f:78:
c9:0d:2e:f3:58:ec:cb:eb:0b:90:2c:d8:ff:24:0e:
5d:7d:c4:ae:ff:bd:2f:26:e2:d4:75:9f:b7:57:1d:
87:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:0F:25:1C:20:DC:A6:B3:59:45:C3:EC:6C:E9:39:47:4E:80:09:83
X509v3 Authority Key Identifier:
keyid:77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:e2:ae:c2:da:45:fc:56:e1:17:f3:ad:95:31:87:a0:fd:05:
ff:6f:0a:85:fe:22:60:cd:8b:b1:ae:06:ff:66:10:40:a6:28:
92:39:17:d0:a0:50:ec:0a:23:61:f0:28:b0:01:07:2a:a3:fc:
df:44:61:a7:6b:a4:6b:93:35:30:50:1c:bb:97:33:c6:b8:3e:
65:47:9d:cd:e9:8f:7a:d8:e2:46:4d:43:e2:39:e4:1b:46:ed:
a9:c0:85:f5:db:ea:e6:04:f7:db:a7:f2:8c:f9:10:c2:40:39:
c4:82:70:47:53:86:81:94:21:39:59:ef:14:e2:ee:14:78:9a:
7c:1a:0a:fa:85:d2:25:ef:59:68:9d:5e:27:38:95:33:c4:88:
8f:7f:ea:37:62:93:b2:af:96:e5:1d:38:8e:73:13:70:a3:3a:
99:1a:a1:c4:c8:cf:4f:0b:cd:98:17:2a:87:42:bb:fe:24:c8:
37:f5:76:b2:51:a3:fe:d5:a0:af:8d:c7:d5:a9:d5:f3:d6:84:
eb:cd:f7:bd:cd:28:04:1e:fd:05:91:e2:aa:41:d7:51:f5:af:
57:22:e9:3f:a8:55:e2:7e:c4:1d:b9:5d:03:1a:ba:74:e0:bf:
dc:a1:3b:0d:40:9a:75:d0:7c:27:ab:13:ce:7b:07:f4:a9:8a:
d9:5a:bd:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:49:56 2026 by rpki-client