Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: ukrdcge0LPPLntSOcBhrHTr91q95lA4d93P7qsnxbnQ=
Subject key identifier: B3:29:B7:4B:AE:2F:53:1D:4C:9A:03:86:23:28:60:C2:15:89:83:A5
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 019CAF10D6B4A0BF25748CDB37A6E524DF5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 17DB
Signing time: Mon 02 Mar 2026 15:00:42 +0000
Manifest this update: Mon 02 Mar 2026 15:00:42 +0000
Manifest next update: Tue 03 Mar 2026 15:00:42 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: EzoA93ElSbrUxKg9DuA+R//5TwgfxHo6boHuMa0KeM4=)
2: O3NHX1xusGOC_jwAncPD2CBztNE.roa (hash: tIvb5cVDrsiT8uq8kfesqrbk5rRYub73yqvQwpeTOXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:10:d6:b4:a0:bf:25:74:8c:db:37:a6:e5:24:df:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Mar 2 15:00:42 2026 GMT
Not After : Mar 3 15:00:42 2026 GMT
Subject: CN=b329b74bae2f531d4c9a0386232860c2158983a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:fe:de:a6:91:c1:50:26:59:59:44:c4:65:80:
b1:b3:23:ce:33:6d:02:82:9f:6c:e5:29:ab:07:d8:
38:1c:f9:9e:88:91:4f:7a:8e:a3:72:08:6d:df:3e:
93:73:f3:95:0b:4a:c6:ae:02:22:30:2b:d5:69:09:
8b:3f:a8:d0:d5:1e:67:36:72:19:10:4f:57:34:67:
aa:3d:8b:70:5a:4d:de:3e:3d:c0:46:86:ea:6f:c8:
90:21:ff:c8:29:5d:8e:4d:02:c9:08:1e:3b:2f:96:
b2:0c:40:3e:f8:be:53:d4:5a:a5:56:c1:26:e2:49:
a6:b7:d7:e1:e1:ee:10:46:a4:a1:7b:e0:9c:df:e3:
3c:23:2a:11:ce:dc:9d:1f:89:95:8f:5e:3d:61:dd:
a4:43:74:ca:54:43:13:ee:b2:48:cf:e5:44:6f:21:
c2:2d:50:a7:03:c3:d9:8c:1e:e1:60:58:32:15:12:
ac:9f:99:78:ef:b4:ac:1b:fb:f5:2f:07:73:db:d8:
62:4c:c4:7b:15:bd:be:37:39:62:e0:57:61:78:4d:
e6:0e:c7:61:a2:87:c7:71:2c:f2:5c:46:72:36:7e:
6b:6e:26:aa:c2:5d:41:04:f4:23:fe:a9:26:c8:7f:
1e:e7:c3:c3:7c:a8:55:b8:72:ff:83:c0:f1:31:d8:
d1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:29:B7:4B:AE:2F:53:1D:4C:9A:03:86:23:28:60:C2:15:89:83:A5
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:3c:64:3d:72:ee:2e:f1:da:d6:5b:7e:af:1b:eb:a6:82:78:
6c:3a:2a:b9:30:9a:9d:68:3b:89:f2:43:17:da:ca:fe:27:61:
61:1d:a4:6c:c7:c0:74:0e:b9:94:78:32:c5:47:9a:0d:1c:91:
48:71:ac:37:75:7c:fc:67:f7:26:93:e4:f3:d0:04:0f:b6:20:
77:20:ea:16:65:2b:95:9b:c2:cd:1a:c9:8f:15:f2:ae:c8:47:
f5:31:1b:6f:5e:dc:a3:81:a1:8f:fb:26:11:5b:5e:72:fa:66:
af:bb:9c:1b:bd:a2:09:5d:c7:2d:ea:71:8e:2b:8b:c1:56:99:
eb:ce:0c:d4:50:e0:35:c9:7e:d3:33:6f:3e:65:80:42:2c:72:
9b:ee:d3:63:28:3f:bc:a8:bf:45:cc:eb:7a:7e:87:1a:d1:60:
83:20:5c:d8:71:e0:0c:23:a5:fa:b9:d2:d1:18:0f:53:4d:2e:
8a:fa:29:d4:86:98:39:ad:cd:94:bb:72:23:5d:82:0d:d3:f3:
8d:76:2f:a4:db:a6:7e:9b:52:f6:b3:46:e9:7d:a2:b3:05:5b:
7c:7b:07:8a:b3:77:3a:e5:45:9f:a7:9c:04:7b:38:df:f0:50:
69:ea:c3:e1:dd:e6:7a:32:e0:57:bd:13:dd:01:1c:9b:20:e1:
fb:bb:7a:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:26:09 2026 by rpki-client