Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
File: RDTtvhtBAbKKviMvK88qAUiXglo.mft (raw, json)
Hash identifier: XFRz5WDSzL/shYKZ2ymwKs2pyVSMCAYZWalBGIR0uIc=
Subject key identifier: C8:77:5E:D8:0F:CF:0A:9A:49:C7:14:5E:4B:B5:83:52:17:45:BE:F4
Authority key identifier: 44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
Certificate issuer: /CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Certificate serial: 019CACB4BF9D17E46B3AE53D3EE62756DFE1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
Manifest number: 1232
Signing time: Mon 02 Mar 2026 04:00:52 +0000
Manifest this update: Mon 02 Mar 2026 04:00:52 +0000
Manifest next update: Tue 03 Mar 2026 04:00:52 +0000
Files and hashes: 1: 0RKDNEhHY3U7JF4bDR-bWWyiJjU.roa (hash: 49fHIUMiegzFY7JDd1vv16iA2bhJSfLTshnAhqZJFTQ=)
2: RDTtvhtBAbKKviMvK88qAUiXglo.crl (hash: +aVmBxgYa1bZ9/u6OHx6ORmy3eoI/5PQs9b/ird+P7U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 04:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b4:bf:9d:17:e4:6b:3a:e5:3d:3e:e6:27:56:df:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4434edbe1b4101b28abe232f2bcf2a014897825a
Validity
Not Before: Mar 2 04:00:52 2026 GMT
Not After : Mar 3 04:00:52 2026 GMT
Subject: CN=c8775ed80fcf0a9a49c7145e4bb583521745bef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:15:68:21:8d:a7:c8:31:c0:d6:2f:1f:e7:8e:
50:32:bb:57:5b:d2:90:a7:f5:a1:b9:a5:a8:86:11:
4c:b6:aa:bd:46:30:06:be:83:44:98:32:0f:66:c5:
b2:24:5e:3f:e6:e7:7c:78:45:84:e9:10:cd:95:70:
6c:30:3a:00:8b:62:d3:64:35:04:07:d1:1c:ad:05:
30:af:07:85:5a:2d:8d:47:5e:f1:bf:eb:ee:5b:96:
39:c2:0b:51:05:cd:cc:58:0b:69:a1:f2:f6:e4:2e:
c4:56:20:c1:c0:26:e9:c4:67:89:a3:24:21:11:c7:
7e:7b:bd:8b:7f:fe:2a:09:17:e7:14:84:0c:92:51:
2c:9a:40:8a:94:9b:1a:a0:02:66:e5:f4:17:dd:b5:
dc:44:f5:b1:98:00:33:bc:cf:29:bd:dd:69:4a:6b:
43:de:06:c5:5e:17:2c:c5:e1:25:15:73:ec:0c:6c:
57:d6:f1:f4:aa:37:91:fa:ba:be:99:d8:9d:cb:89:
49:7a:27:67:29:84:d5:94:31:e2:c5:3b:8e:bd:af:
b9:19:3b:f6:ae:01:fa:6d:73:35:8f:5b:e7:d9:e9:
14:b6:c4:a4:44:9a:bb:78:d4:5d:52:1d:4e:20:b8:
51:c7:eb:c0:ac:d1:28:b8:63:72:2b:ac:44:e0:63:
97:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:77:5E:D8:0F:CF:0A:9A:49:C7:14:5E:4B:B5:83:52:17:45:BE:F4
X509v3 Authority Key Identifier:
keyid:44:34:ED:BE:1B:41:01:B2:8A:BE:23:2F:2B:CF:2A:01:48:97:82:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RDTtvhtBAbKKviMvK88qAUiXglo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/639f64-1df1-46d5-add9-10caf54986ff/1/RDTtvhtBAbKKviMvK88qAUiXglo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:38:6c:c8:55:12:65:6e:74:e1:cf:ad:b9:fa:7e:52:c4:ef:
d1:f0:21:97:0b:f2:a8:c1:65:ce:a8:3b:e6:99:0b:ec:18:9e:
a0:d8:3d:79:55:5b:ea:19:bb:70:8b:f2:56:0f:6f:4d:22:c9:
c2:3f:a5:ac:84:32:00:87:c1:4a:73:f5:2d:99:eb:ee:da:cd:
f1:47:6f:89:ac:88:79:81:73:c0:12:53:46:89:20:39:cc:4f:
4e:27:bf:f6:a5:87:95:29:9c:5b:fc:aa:63:13:1e:ca:03:b7:
ec:64:52:ad:77:96:24:ec:dd:20:0f:0e:d1:95:87:e8:22:3f:
2b:e0:e9:3f:80:1b:72:57:6b:d2:5f:9e:e3:6e:0f:37:d1:23:
52:20:7e:88:37:d4:12:a0:2f:91:6c:c7:82:9b:8c:08:8a:c6:
71:bf:86:ee:33:66:12:29:88:84:c7:12:18:23:07:9a:24:2f:
a2:34:ed:b4:05:54:96:ca:c6:01:b6:fc:03:4d:b4:de:d2:58:
1c:c0:b6:5a:13:a3:b7:75:0c:28:8b:12:d2:a9:92:9a:3e:7f:
34:7e:3e:4e:11:fa:ca:19:95:75:09:ae:20:97:7a:4e:57:a5:
90:ad:a5:a4:a0:20:3b:ac:a7:e3:44:94:83:86:ac:33:91:13:
c8:be:94:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:35:50 2026 by rpki-client