Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
File: 43ipS5lk6l6fiwWThwK6WDFrUA8.mft (raw, json)
Hash identifier: xyT4d/3P3f+Glm66er36IS2kC2JkoLhRPPBRC3wafIM=
Subject key identifier: B2:53:6D:0B:89:25:9C:C3:63:7F:60:8D:2D:A9:00:F9:8B:AC:C6:07
Authority key identifier: E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
Certificate issuer: /CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Certificate serial: 019CADC83FF4B68A179FF406B9B3308AD56A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
Manifest number: 17D7
Signing time: Mon 02 Mar 2026 09:01:47 +0000
Manifest this update: Mon 02 Mar 2026 09:01:47 +0000
Manifest next update: Tue 03 Mar 2026 09:01:47 +0000
Files and hashes: 1: 43ipS5lk6l6fiwWThwK6WDFrUA8.crl (hash: zvmGQLAP3z9O7G1NEKYo31W827keA2Sc+2gTiFhySRI=)
2: z20tkJ9aM0VxzsTv6McuHmggfYg.roa (hash: HyTTXZdN54NL3quW2ViSSrBjGEpXj05e9dah+eMXfH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:3f:f4:b6:8a:17:9f:f4:06:b9:b3:30:8a:d5:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e378a94b9964ea5e9f8b05938702ba58316b500f
Validity
Not Before: Mar 2 09:01:47 2026 GMT
Not After : Mar 3 09:01:47 2026 GMT
Subject: CN=b2536d0b89259cc3637f608d2da900f98bacc607
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:4d:06:36:11:96:83:f8:09:4c:9b:8a:04:7f:
5c:70:60:aa:63:8d:f1:4c:6e:9a:fa:22:23:b1:ec:
3f:d9:5e:31:16:9e:bd:87:b5:2b:13:e1:ea:01:d2:
27:a4:df:e7:c1:ca:f4:ef:d5:23:27:0d:93:a6:98:
48:f5:52:f7:07:55:ec:1a:7f:71:78:bd:a6:7f:32:
53:3f:2d:84:db:03:e9:44:38:f0:a0:53:db:56:e0:
b9:f9:b0:75:44:52:b0:7c:44:4f:4f:a6:74:f1:0f:
eb:34:82:b7:1e:3f:98:98:8a:67:ec:dd:d5:67:9b:
2e:04:d9:ff:ff:e2:fd:91:7c:50:b9:2b:94:a4:7b:
8e:d9:03:98:a2:e2:12:7c:b8:e1:cd:d3:9e:a6:cf:
e0:9b:53:de:d9:d0:d4:1d:6c:9a:fb:bc:20:65:37:
de:b4:d8:54:8e:fc:35:44:56:23:45:3c:51:b3:89:
f4:61:1b:6f:19:fa:90:c7:f2:07:4c:77:eb:6d:03:
c9:2e:a2:26:d4:1e:c7:99:bc:59:74:fc:87:0e:8b:
1d:4e:a0:70:b5:03:48:b5:8c:fa:0e:2c:15:0a:2d:
6b:42:4c:de:94:5f:00:32:74:6d:fd:80:0d:cd:f6:
57:68:b4:29:96:fe:4c:51:79:13:79:7f:ff:4f:0a:
ae:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:53:6D:0B:89:25:9C:C3:63:7F:60:8D:2D:A9:00:F9:8B:AC:C6:07
X509v3 Authority Key Identifier:
keyid:E3:78:A9:4B:99:64:EA:5E:9F:8B:05:93:87:02:BA:58:31:6B:50:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43ipS5lk6l6fiwWThwK6WDFrUA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/6a5e8c-d831-41e3-84e5-f42176cd0445/1/43ipS5lk6l6fiwWThwK6WDFrUA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:2d:82:80:f9:fd:65:ef:f5:98:60:79:41:10:07:66:26:53:
86:f7:66:59:6d:bb:21:41:6f:79:95:1a:9f:76:c1:19:98:a3:
fd:f6:60:90:01:6a:42:89:b3:f6:e5:7e:19:f7:47:42:6e:f3:
8b:fb:66:95:26:e7:10:97:f5:82:c5:9f:8c:0c:7a:2e:da:45:
e9:c9:e8:ff:44:24:d1:2f:71:3c:31:68:32:07:2a:ab:5f:2e:
2c:60:39:3c:e9:24:d4:3c:df:e4:a6:b5:45:83:4b:e0:82:42:
19:e4:8c:0e:f9:2d:a2:71:96:a1:03:2a:1a:c0:1e:ae:e4:13:
7d:2a:3e:1d:27:4d:4a:bb:93:2a:6d:a9:9c:f5:ad:28:cd:84:
aa:08:6a:c8:b7:f1:41:3b:82:44:f7:a4:7e:db:10:fb:b9:c6:
d3:28:e3:0f:f2:e8:ea:ff:55:b4:8c:0a:88:87:d8:b5:24:a9:
cb:70:33:ee:8d:c5:0e:da:e2:4f:c1:eb:b0:3f:2a:3e:70:6e:
4f:57:fd:1e:89:49:03:cc:8b:ae:40:64:b1:3a:fe:93:9a:e1:
8c:cb:a1:d5:bf:e0:d1:5f:c5:36:a7:35:48:c2:18:3f:6a:aa:
03:8a:b0:cd:a7:be:62:4a:b3:37:d7:07:4a:0f:74:63:38:43:
a6:7d:2d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:10:25 2026 by rpki-client