Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
File: 0nXXqLrAR39VCd_xG5GVymDfh9o.mft (raw, json)
Hash identifier: 2jPGUaTpEqqLYhmbnZhOqq4ubUhsf8T96QtdGk7ePvA=
Subject key identifier: 85:B6:7F:7F:67:07:A0:E4:DA:E2:9F:7E:EB:34:45:3F:87:A3:19:DE
Authority key identifier: D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA
Certificate issuer: /CN=d275d7a8bac0477f5509dff11b9195ca60df87da
Certificate serial: 019CADC78E009598ED3BA00ACCCCA498AC3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
Manifest number: 184F
Signing time: Mon 02 Mar 2026 09:01:02 +0000
Manifest this update: Mon 02 Mar 2026 09:01:02 +0000
Manifest next update: Tue 03 Mar 2026 09:01:02 +0000
Files and hashes: 1: 0nXXqLrAR39VCd_xG5GVymDfh9o.crl (hash: HVlftE54pRo35vGf0DId5Pgw40XcbdVEffB3dAJIMPU=)
2: WuVc3nuSKHmp3Zm0YnwHWiUHPTA.roa (hash: kgJdmFJQtmaA3Y3jCaieWqKoWOzHXlfXNx+CHVD0plg=)
3: sobZNfIjDe2cd4xpnGMsxz02kHM.roa (hash: SYHfOD2MolO9wPRbmh+BGKpcolf47Ts9z4O246ZjZYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:8e:00:95:98:ed:3b:a0:0a:cc:cc:a4:98:ac:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d275d7a8bac0477f5509dff11b9195ca60df87da
Validity
Not Before: Mar 2 09:01:02 2026 GMT
Not After : Mar 3 09:01:02 2026 GMT
Subject: CN=85b67f7f6707a0e4dae29f7eeb34453f87a319de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:81:49:b0:7b:1e:21:33:d5:88:35:50:6e:fa:
4b:75:37:e6:66:9c:a9:3c:d8:41:0a:5b:6a:47:ef:
ca:bc:5c:b2:63:98:a7:77:29:17:d1:ab:30:49:a1:
27:47:45:d1:c4:df:8a:b3:de:3b:fb:c0:55:1b:5e:
ac:b9:69:a6:93:92:a0:b8:9b:3e:1b:08:29:02:4b:
a3:da:19:90:95:08:65:68:66:81:e5:3e:8c:1b:57:
02:e1:84:c3:b8:0f:01:cc:25:9f:df:4d:ea:c2:f8:
c2:81:9b:01:0f:99:fb:aa:6a:af:96:3d:04:31:21:
3f:67:5a:c5:42:f5:48:e7:e2:bd:e4:bb:c5:00:fc:
eb:3a:60:d7:aa:5a:90:42:2d:e1:11:1d:85:4e:76:
9f:bb:79:a9:88:1a:95:ab:ab:b6:56:70:22:5f:a6:
8d:50:72:fa:10:f2:8a:9a:01:81:73:d2:8e:89:dd:
62:a7:dc:ba:d8:4b:1a:55:2d:26:55:14:2b:74:de:
a7:93:fd:b5:66:e0:8d:74:43:58:55:2c:4f:dc:4a:
41:08:bd:83:d4:b9:68:6b:70:80:18:ae:0d:03:dc:
ec:da:78:4a:d5:d3:e4:bb:48:6d:29:19:c5:1e:97:
a5:6b:d2:55:ba:fc:86:03:7c:90:05:d5:57:e1:75:
b8:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:B6:7F:7F:67:07:A0:E4:DA:E2:9F:7E:EB:34:45:3F:87:A3:19:DE
X509v3 Authority Key Identifier:
keyid:D2:75:D7:A8:BA:C0:47:7F:55:09:DF:F1:1B:91:95:CA:60:DF:87:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0nXXqLrAR39VCd_xG5GVymDfh9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/7beb04-317b-448a-82ed-565b1447037b/1/0nXXqLrAR39VCd_xG5GVymDfh9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:a6:65:f0:4e:a2:d3:9e:dd:53:60:58:41:b5:ca:e2:db:48:
e6:53:8c:d8:d1:fa:4e:28:24:95:cc:de:7a:1a:20:ac:90:b3:
99:c4:d2:80:99:df:bc:3d:01:9b:2e:97:49:8c:77:ec:ab:8f:
f8:08:06:da:e9:f8:51:dc:61:a9:c4:81:3d:76:9f:c8:83:34:
dc:3f:5a:11:ae:7f:fd:49:1c:3b:a1:65:61:9e:8a:21:64:03:
bf:d9:bf:f0:55:38:06:7d:76:8e:48:b9:60:b6:35:f8:2d:25:
09:ef:aa:9a:ed:a4:89:cc:b7:dd:4f:4f:5f:8b:98:1d:f9:d0:
3a:ab:2a:36:aa:ce:24:32:ba:3a:ee:9b:8c:7f:58:3b:fd:76:
c5:62:da:05:f4:6c:01:22:d1:c1:26:64:97:91:bf:91:98:c7:
42:6f:63:00:5b:c8:05:d1:09:7d:d5:4a:6d:91:c0:86:13:d5:
cb:a0:e1:42:bd:5c:61:60:79:dc:ef:ff:58:9a:38:db:84:0d:
ee:a9:46:82:17:25:be:5c:59:64:b2:c6:30:a7:76:16:2d:6c:
08:2d:96:3f:8a:23:da:99:47:95:02:39:75:7a:35:2c:f8:09:
65:1f:ab:f6:42:de:8e:8a:0f:8a:a0:be:7d:d5:f7:fd:a7:39:
83:e9:b7:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:44:31 2026 by rpki-client