Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
File: 70eAIfcqIbdxQqRNgV3envJoTLw.mft (raw, json)
Hash identifier: x7U5CH2xhVBAa/haL4g9BjNXkoY1OZSzxoV2EAFgoQc=
Subject key identifier: 6D:D3:71:90:FA:7C:82:2F:55:79:31:1A:5E:E3:81:DB:E3:7E:A8:6E
Authority key identifier: EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
Certificate issuer: /CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Certificate serial: 019CAAFD6BD03D095D872AA20EC01F616BCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
Manifest number: 1844
Signing time: Sun 01 Mar 2026 20:01:00 +0000
Manifest this update: Sun 01 Mar 2026 20:01:00 +0000
Manifest next update: Mon 02 Mar 2026 20:01:00 +0000
Files and hashes: 1: 70eAIfcqIbdxQqRNgV3envJoTLw.crl (hash: +4bEd0/tNpWDAG1RSEZOMZ4T4p74FQX8jRW1U2FHo5M=)
2: I9nUczY20Zb-qB4txSR8cQbIwOU.roa (hash: tVztN2aCOWmTRMBNdBunPfUafnJabZOVueK23yoz3NY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:6b:d0:3d:09:5d:87:2a:a2:0e:c0:1f:61:6b:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef478021f72a21b77142a44d815dde9ef2684cbc
Validity
Not Before: Mar 1 20:01:00 2026 GMT
Not After : Mar 2 20:01:00 2026 GMT
Subject: CN=6dd37190fa7c822f5579311a5ee381dbe37ea86e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:95:90:32:7f:a9:43:56:10:95:39:d2:e8:0b:
64:7a:d4:14:e7:5b:d7:e5:2b:bb:a5:fb:ba:30:4a:
d8:89:a8:de:e6:2c:b2:cb:b9:73:50:d7:ec:cf:24:
a3:e0:3e:15:28:a3:12:4b:48:75:1b:94:32:e9:e5:
1d:a7:52:5f:73:b5:43:22:49:16:5f:fb:b8:cc:29:
00:ac:7f:7a:98:ff:27:13:da:55:b0:97:fe:bb:f5:
77:ae:26:de:e6:ec:d4:f7:17:c7:ee:8e:da:a8:a0:
2a:4c:7f:b9:1c:08:92:f1:ab:95:e3:3a:9f:59:77:
a5:f8:68:e2:78:f2:89:b7:1e:dd:f2:7c:f8:7a:f1:
93:17:3b:a3:d1:8a:d6:14:b8:51:40:a7:16:bd:75:
1d:d9:0c:e5:12:e0:c7:c9:b1:7f:a4:58:ad:3a:4d:
c7:97:28:f3:80:49:a2:4a:9e:c2:8d:5f:40:5e:d7:
f1:82:9c:bd:bc:ff:d3:fa:82:4a:9a:18:0d:68:03:
2b:78:c4:e2:6e:77:0b:42:58:f3:ea:4d:b2:d6:c0:
42:29:67:f3:e5:57:93:82:8b:60:43:ca:0e:0f:11:
e9:ba:42:b9:e0:8b:5a:89:3c:28:90:81:03:55:7c:
2a:51:64:77:7c:42:7e:6e:00:3f:ac:d7:32:21:07:
bf:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:D3:71:90:FA:7C:82:2F:55:79:31:1A:5E:E3:81:DB:E3:7E:A8:6E
X509v3 Authority Key Identifier:
keyid:EF:47:80:21:F7:2A:21:B7:71:42:A4:4D:81:5D:DE:9E:F2:68:4C:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70eAIfcqIbdxQqRNgV3envJoTLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/5172eb-6fb8-4216-8d81-3443464b9209/1/70eAIfcqIbdxQqRNgV3envJoTLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:f4:b0:82:4a:e8:ff:fb:ac:7c:38:b5:97:ba:96:dc:4e:c8:
5c:53:1f:08:f9:1f:82:28:ac:c8:82:33:03:78:bc:04:78:9c:
52:e1:e7:90:de:91:09:4a:b0:67:fb:63:ac:2b:19:0d:ce:bc:
28:5e:f2:db:96:51:4f:64:96:87:23:3a:9e:44:1d:db:cb:f9:
e8:2d:66:89:0d:3c:93:7f:da:ab:28:e0:20:5f:b2:bb:72:f5:
30:69:9d:ed:76:fd:90:5d:bc:c4:8f:04:fb:13:50:1f:a9:82:
0c:76:84:88:20:c1:fd:46:65:e6:37:f3:99:c2:15:ee:33:65:
de:29:ea:fb:5f:64:cc:54:e3:e4:37:cc:16:92:bb:70:2d:37:
48:5a:5f:d5:a7:56:97:6d:d7:ae:b8:1b:eb:97:b7:6a:55:3c:
41:89:84:38:73:12:68:48:9c:54:59:81:9b:e9:d4:0b:65:ae:
15:58:20:20:41:1f:0d:ce:38:d7:09:c8:ba:b0:48:0b:19:e0:
9f:86:80:c5:e0:82:a3:f3:41:37:3e:4e:04:bb:c3:88:80:05:
cd:8b:08:8c:c3:c4:18:d5:d3:30:15:42:bb:dc:80:a0:0c:b1:
31:38:22:a2:ca:88:0f:ed:93:33:f2:25:f3:54:7d:6c:2b:e5:
e2:f3:c3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:53:27 2026 by rpki-client