Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
File: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft (raw, json)
Hash identifier: 0J5owrTlu7+0qwhyGzMpFPZc83KvDGpP+z8TwPlTGZg=
Subject key identifier: BE:76:B2:1D:8E:20:3A:DE:B2:97:6C:EA:72:23:9B:DC:A1:84:91:89
Authority key identifier: D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
Certificate issuer: /CN=d5a2196ef119221155e1683f8967d254625dae71
Certificate serial: 019CAAFD0D50EDD67F6BAE1E5FC185E88D5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
Manifest number: 1844
Signing time: Sun 01 Mar 2026 20:00:36 +0000
Manifest this update: Sun 01 Mar 2026 20:00:36 +0000
Manifest next update: Mon 02 Mar 2026 20:00:36 +0000
Files and hashes: 1: 1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl (hash: W/i/GaVZWIU4l89PZSBRlljCjY74icqbqo8vHseGmCA=)
2: AHnNibYpBfUdvSGboILQ1teAIw4.roa (hash: 42GSIkMZbcrmZ8XMph6d+mXrtH34NIs/JYMf8WUp4vM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:0d:50:ed:d6:7f:6b:ae:1e:5f:c1:85:e8:8d:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5a2196ef119221155e1683f8967d254625dae71
Validity
Not Before: Mar 1 20:00:36 2026 GMT
Not After : Mar 2 20:00:36 2026 GMT
Subject: CN=be76b21d8e203adeb2976cea72239bdca1849189
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c5:88:dc:7b:53:ff:03:63:10:03:0a:54:f4:
ec:db:c1:34:3d:6d:a0:97:be:f9:5f:f2:51:85:fb:
d9:7c:60:db:3c:59:33:95:92:a2:96:07:81:65:9e:
2f:55:3e:67:b6:d6:8e:fe:c1:b0:6b:02:75:66:0a:
ed:a1:f6:51:c2:8b:34:bd:65:85:cd:da:2e:eb:62:
1b:4a:34:f1:aa:56:9d:dc:1c:a5:d2:b8:60:7d:cf:
51:19:b5:bc:21:c3:86:1c:f3:2a:c4:b0:fe:8a:f7:
ef:19:6d:86:1d:0b:8f:8a:f6:9e:39:44:07:b7:9d:
e9:71:e7:2e:03:9b:41:c6:19:f2:e1:8e:04:4e:ac:
57:91:9f:d8:58:62:8f:43:a8:7b:c0:a4:4c:7a:7f:
0c:b2:61:18:bb:49:9f:1c:3e:68:a3:cb:36:36:7a:
ad:51:d6:37:33:2e:a5:6b:c0:f5:6f:b4:03:e0:eb:
8d:ba:30:63:38:1a:56:3a:cb:34:13:65:f4:7b:e4:
b5:21:25:1e:04:90:7a:86:91:27:a0:73:78:19:a8:
bb:a4:b3:46:5d:ba:53:49:d7:94:91:31:97:b8:37:
14:24:bf:e8:ee:b2:d1:d7:5b:1b:4e:9f:c4:04:4c:
b3:bb:4f:df:9b:4b:60:af:da:b9:61:ba:4c:e6:1d:
35:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:76:B2:1D:8E:20:3A:DE:B2:97:6C:EA:72:23:9B:DC:A1:84:91:89
X509v3 Authority Key Identifier:
keyid:D5:A2:19:6E:F1:19:22:11:55:E1:68:3F:89:67:D2:54:62:5D:AE:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b06337-6517-400b-8cb5-7afa0bcd7976/1/1aIZbvEZIhFV4Wg_iWfSVGJdrnE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:f1:d0:4c:d6:4e:4b:90:33:6a:1c:1b:5e:1d:5c:7c:12:e5:
23:00:ee:f1:ad:f0:1c:80:49:22:42:40:16:99:ba:64:53:33:
49:61:84:33:d9:3d:e6:b6:0e:fd:8b:e1:f5:31:e5:76:8e:6a:
58:2c:aa:c8:fc:a6:51:97:90:56:d8:4a:24:aa:7a:34:a7:aa:
30:a6:8e:34:50:3c:5e:7b:64:eb:f6:3a:ff:39:e7:a5:da:46:
13:62:84:f5:e2:86:d9:4a:0e:b1:61:e0:5f:79:c5:19:7c:70:
d0:59:77:e0:ba:0c:ca:d3:b7:b5:9e:c5:e9:14:e4:84:d4:41:
7c:fd:a4:6d:67:ab:e2:d2:0c:16:ab:2b:48:4d:ed:a7:33:b7:
d0:38:9b:1e:46:fa:c2:3a:2c:e1:c1:2e:5e:b2:4a:ca:71:a8:
c2:d0:54:fb:b4:19:71:04:f0:54:c6:d8:7b:17:97:a1:f9:3c:
5e:87:3b:fd:87:12:46:b2:6c:5c:28:d7:5e:2c:d2:84:ed:bc:
3a:fd:44:5b:c5:0e:8c:52:63:f0:67:17:f1:df:1e:8b:bb:99:
b0:28:23:bf:4d:8c:82:95:83:d7:9c:24:3b:b9:3f:c0:6e:9b:
03:7f:b3:75:b8:8e:25:8b:1e:48:0b:77:9d:25:73:44:02:85:
ec:81:24:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:01 2026 by rpki-client