Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
File: 670ir7gN-togA9QOVG2v03_4af0.mft (raw, json)
Hash identifier: QhbXQnssvBk2DdzyGhjIhptRJ6BN2KgnTdP9nnLO8wo=
Subject key identifier: BD:D2:8F:8F:74:97:5C:1C:65:EC:80:D5:73:2A:4D:03:A9:51:AD:06
Authority key identifier: EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
Certificate issuer: /CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Certificate serial: 019CAA58EF5AACFA56E006523392C83808FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
Manifest number: 073A
Signing time: Sun 01 Mar 2026 17:01:21 +0000
Manifest this update: Sun 01 Mar 2026 17:01:21 +0000
Manifest next update: Mon 02 Mar 2026 17:01:21 +0000
Files and hashes: 1: 670ir7gN-togA9QOVG2v03_4af0.crl (hash: Ks3Vwo4RGP0WbwwFtss6mhzmRrjJKgYn6/YNBoHNjFY=)
2: euUp3-ezlCpILlf7qWV0a93H1yQ.roa (hash: kzeXchF7R0DCrCVUSaQcyQotUqQoTUlPfhRZvehXMko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:ef:5a:ac:fa:56:e0:06:52:33:92:c8:38:08:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebbd22afb80dfada2003d40e546dafd37ff869fd
Validity
Not Before: Mar 1 17:01:21 2026 GMT
Not After : Mar 2 17:01:21 2026 GMT
Subject: CN=bdd28f8f74975c1c65ec80d5732a4d03a951ad06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c6:9a:25:ad:7b:47:d9:ec:b5:bb:c9:39:2e:
d1:ff:b1:9a:9a:d3:d4:3b:85:0d:ab:1a:b8:52:67:
40:21:44:0b:3b:71:d3:f5:cf:5a:4e:99:cf:f5:d9:
99:f2:5d:33:fe:b7:23:b5:83:3a:4f:78:57:7d:af:
44:51:ad:44:12:30:44:e3:79:51:e0:2c:56:25:e3:
e8:5b:45:6e:80:dc:8e:db:ee:24:be:f0:e8:d6:f5:
9a:96:9d:5e:9a:a5:95:8a:c0:b7:9a:c9:80:23:e7:
fa:c6:74:ad:07:d1:65:cb:04:2b:0d:f8:c3:09:7a:
3f:04:47:43:33:a5:d8:3f:e0:80:38:d0:dc:a4:f7:
de:88:41:eb:92:4a:fe:0c:52:b5:a6:e9:2f:23:48:
54:eb:a1:79:68:cb:bc:81:53:f9:22:01:60:c5:7f:
c4:0b:17:4e:43:fb:6c:40:c8:d0:3b:2a:3f:68:76:
51:0a:e5:d6:05:9a:0e:02:5c:98:fb:1b:80:17:a6:
1d:9c:9e:7a:79:e8:ee:73:3a:bb:7c:0d:37:ce:00:
8a:06:ef:79:51:dc:0b:95:1f:d7:66:0e:cc:b1:b3:
dd:fa:8b:ab:21:ef:ae:3e:be:ea:ef:b0:30:5f:76:
74:ed:2f:fd:34:eb:6d:5e:13:8f:aa:a4:47:05:4b:
04:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:D2:8F:8F:74:97:5C:1C:65:EC:80:D5:73:2A:4D:03:A9:51:AD:06
X509v3 Authority Key Identifier:
keyid:EB:BD:22:AF:B8:0D:FA:DA:20:03:D4:0E:54:6D:AF:D3:7F:F8:69:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/670ir7gN-togA9QOVG2v03_4af0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/7d3565-7b00-4d81-9ab3-919eaba61b94/1/670ir7gN-togA9QOVG2v03_4af0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cf:66:d1:ea:5e:b2:b9:bc:3b:0d:10:b5:9f:77:2a:db:cb:5a:
c9:c4:6d:c2:43:8c:fa:ab:0c:0a:37:36:f9:31:49:c4:8b:7d:
62:87:db:d5:bb:5d:b7:00:d7:74:5d:5a:20:e5:0e:f1:97:4a:
3d:bd:65:45:6a:c0:b9:8b:9f:07:cc:8a:47:aa:f7:c1:f2:b1:
f3:37:50:09:23:b5:16:6b:25:a8:f3:72:f9:23:c8:58:f2:09:
ef:41:71:76:52:86:36:43:c1:93:39:09:97:6a:02:43:81:9b:
5c:09:a7:3a:d7:23:9a:bc:0f:55:5a:e3:85:ac:44:ba:18:5e:
59:2e:18:e8:3e:39:7a:54:45:d3:ac:53:47:08:a0:1a:79:a2:
ae:08:66:64:4e:c0:86:eb:f5:77:62:4a:35:02:f4:27:61:16:
ea:16:f8:22:14:bd:f5:93:c9:14:b5:e1:e3:c0:7f:08:ce:e5:
99:eb:0f:80:54:03:95:97:2f:84:c5:0c:b4:09:42:63:61:c9:
ec:f2:3c:1a:68:c9:9c:e0:10:fd:18:20:f1:ff:46:21:48:c7:
f3:89:83:74:a1:0b:5e:29:e9:c3:64:a7:57:f5:bf:45:34:a3:
28:de:44:05:5e:4e:e0:31:b0:c1:0f:c8:af:2c:e7:16:04:fd:
f3:8d:a6:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:35:40 2026 by rpki-client