Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
File: cW9tEfDOYyMBgac_haZmFw9zib0.mft (raw, json)
Hash identifier: +Pb5WzJBDRePdfPDhLrFByomnpoWOq/Z+PPbpt+fIo8=
Subject key identifier: A4:AE:FC:27:A7:76:F0:EF:A3:3D:03:31:EB:D6:16:F0:16:CB:4B:3B
Authority key identifier: 71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
Certificate issuer: /CN=716f6d11f0ce63230181a73f85a666170f7389bd
Certificate serial: 019CAAC6E7654782673C62F3B71E756CD893
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
Manifest number: 0D68
Signing time: Sun 01 Mar 2026 19:01:27 +0000
Manifest this update: Sun 01 Mar 2026 19:01:27 +0000
Manifest next update: Mon 02 Mar 2026 19:01:27 +0000
Files and hashes: 1: 6f1i3xvOw5Akrk8EPZTaku38e58.roa (hash: yAZKqI7wHi0H5V8PrGtfeSpp18rf8v5uoZXgPYXu5QA=)
2: cW9tEfDOYyMBgac_haZmFw9zib0.crl (hash: maHlS8gAKSfVfwWI9jXUVcaqtsRFoj2bVnrfQQKjZfQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:e7:65:47:82:67:3c:62:f3:b7:1e:75:6c:d8:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=716f6d11f0ce63230181a73f85a666170f7389bd
Validity
Not Before: Mar 1 19:01:27 2026 GMT
Not After : Mar 2 19:01:27 2026 GMT
Subject: CN=a4aefc27a776f0efa33d0331ebd616f016cb4b3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:f9:94:cd:7c:c6:a8:8b:64:67:d4:40:cd:39:
46:1b:22:b5:c1:24:a2:74:18:85:86:9e:48:7e:80:
0c:60:2a:6a:67:66:e2:77:6c:30:a2:ed:37:57:1b:
43:84:0f:00:cf:f7:fa:29:66:6a:79:8c:51:a6:6c:
f8:4f:5f:93:d9:07:bc:49:d6:9b:ab:86:f6:11:69:
16:ec:09:98:c9:4f:b3:68:6c:5e:37:03:5e:da:cb:
3b:31:08:8a:39:d7:0f:2a:14:58:7a:3d:c1:62:b1:
3e:24:39:73:7d:36:47:40:e8:3d:25:0a:ad:76:54:
11:62:8e:26:d1:3a:4a:18:90:48:11:be:cc:32:7a:
ce:57:a8:f4:04:20:31:12:65:c6:83:0a:47:e2:39:
b3:ec:16:05:8a:ba:07:00:84:ed:8c:f7:b0:e7:de:
a4:97:7f:02:34:b3:f6:c1:cf:c7:22:e2:47:43:88:
25:33:7f:c1:be:d1:eb:84:53:43:c2:57:16:59:fc:
8e:da:c1:57:00:a7:b4:43:2d:63:1c:b6:e6:17:d8:
ba:48:8f:cb:d6:77:ec:5b:4a:8b:30:97:dd:2a:57:
1e:79:50:ca:1f:d0:54:cc:44:a0:db:ab:96:12:47:
bf:26:ac:c0:d5:91:05:fb:7f:26:83:28:2a:c1:07:
1b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:AE:FC:27:A7:76:F0:EF:A3:3D:03:31:EB:D6:16:F0:16:CB:4B:3B
X509v3 Authority Key Identifier:
keyid:71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:80:ac:a5:37:e8:c0:61:3b:72:30:be:d2:b0:58:38:6c:05:
ac:23:b4:09:2f:75:61:a1:e8:ca:f5:5f:f6:45:36:1d:4f:8b:
f6:12:f4:24:de:be:3d:0a:43:44:32:38:e9:5c:7e:b5:4c:29:
19:4e:cc:08:8e:90:82:9e:20:e6:97:92:98:b6:c6:40:ee:a5:
b2:f1:91:db:c3:4e:c0:a0:b8:74:46:9a:33:02:5e:96:d8:45:
ec:2a:56:06:f7:61:19:42:3e:89:35:79:27:94:16:90:dd:43:
11:20:f5:be:e4:61:ca:a8:ea:6a:64:98:5d:9e:0e:02:53:fc:
fe:a5:a8:dd:68:27:45:90:92:f9:67:02:82:df:ce:60:c0:f4:
51:7c:d5:47:93:41:0f:56:e8:01:be:f7:e4:9a:41:96:09:b2:
c5:7f:a0:34:39:0d:49:eb:2e:36:d9:e3:96:0e:13:53:13:9b:
64:ab:78:87:9f:92:30:ab:cd:4b:49:cf:97:ce:3c:21:eb:1b:
0a:f9:88:4c:47:70:3c:79:46:9c:3e:e6:3c:d2:0b:0c:c9:91:
a6:95:f8:81:1b:9f:e2:97:aa:8e:c5:ea:68:51:9c:24:56:38:
3b:5b:99:e4:ca:a7:22:78:e1:86:4d:1a:b7:9f:68:a4:f9:a7:
0e:c8:4f:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:59:30 2026 by rpki-client