Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
File: d9Vhc4owymkonMhFMN5d73SjqYI.mft (raw, json)
Hash identifier: LjVQAgCn9f5CArw+7/E+HsIqSot+j8DcSzkhIR9bBIU=
Subject key identifier: 0C:08:CE:F8:4A:71:AA:77:72:C0:C7:D4:5C:77:D1:FF:83:D0:F8:5D
Authority key identifier: 77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
Certificate issuer: /CN=77d561738a30ca69289cc84530de5def74a3a982
Certificate serial: 019CAF47BC5D7786B3D137BE0282DFC492B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
Manifest number: 21
Signing time: Mon 02 Mar 2026 16:00:39 +0000
Manifest this update: Mon 02 Mar 2026 16:00:39 +0000
Manifest next update: Tue 03 Mar 2026 16:00:39 +0000
Files and hashes: 1: d9Vhc4owymkonMhFMN5d73SjqYI.crl (hash: 6nnofbibn9E+o4ucXQ8UzLnVcva2pg2jUhWSHSj19B8=)
2: wBGjgdfu_nLRR4DjOBdo0PtKJMM.roa (hash: PPK9ixZ6Q7KuFLEJo2Wk9bDSxb6ZvTbGERhmOzUiZuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:47:bc:5d:77:86:b3:d1:37:be:02:82:df:c4:92:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d561738a30ca69289cc84530de5def74a3a982
Validity
Not Before: Mar 2 16:00:39 2026 GMT
Not After : Mar 3 16:00:39 2026 GMT
Subject: CN=0c08cef84a71aa7772c0c7d45c77d1ff83d0f85d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:65:93:d0:6e:e0:19:89:01:2d:5d:33:53:e5:
77:7e:42:3f:2f:98:9d:bd:6e:af:ef:d7:b8:8b:fd:
51:42:26:09:72:e5:11:5c:a3:d4:00:71:dd:05:6d:
9c:9d:91:f9:c8:4e:59:7d:01:2d:89:d7:9b:e4:54:
f7:c0:ad:76:bf:e2:62:9a:db:98:32:3c:1a:87:f9:
e2:f4:52:13:6f:77:32:6d:74:0a:6f:51:2a:ee:82:
26:04:a0:87:85:28:ab:e8:c9:fa:72:a8:dd:e2:a7:
f8:2e:ca:73:30:af:f5:2e:b7:56:dd:9a:28:83:a7:
af:77:98:fc:bc:66:a1:f7:98:73:80:c6:e3:fc:fe:
55:b5:1c:44:bf:fd:39:f8:89:1e:82:9b:95:96:f5:
c2:41:00:fd:9b:46:0c:4a:94:83:61:19:63:e8:07:
9e:25:71:3e:d0:ff:1d:75:a8:05:13:cf:a1:56:50:
45:cc:3e:4a:ae:f7:72:75:66:30:97:66:03:50:88:
7c:65:d5:73:ac:93:b0:51:2e:f0:d6:ab:51:76:76:
fa:59:cc:91:7d:02:e5:b4:05:c4:0f:d9:69:6a:3c:
e7:de:1d:81:6f:5c:a5:2a:e5:88:31:24:6c:a1:e3:
6a:9b:98:f9:e8:0f:01:dc:ce:5a:fb:f1:23:c2:9f:
35:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:08:CE:F8:4A:71:AA:77:72:C0:C7:D4:5C:77:D1:FF:83:D0:F8:5D
X509v3 Authority Key Identifier:
keyid:77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:9c:b4:b2:29:9e:b5:49:bd:c5:0e:9a:3f:81:83:f9:90:35:
a9:c9:6a:bf:6c:7b:c8:72:de:36:92:31:48:86:09:4d:66:a8:
6b:15:0f:c5:0c:38:ac:bc:99:04:8f:29:d2:dc:67:d3:16:1d:
9e:55:0e:8d:c6:90:1b:78:67:50:b3:7d:97:dd:e8:27:7d:8c:
88:1f:bc:57:d0:2c:51:9f:40:62:36:77:7d:54:a4:37:91:b8:
64:f2:cf:83:35:79:3d:7b:fb:f4:33:70:82:74:a5:a7:3d:a7:
7e:47:bf:a5:09:f9:65:69:71:13:16:49:0c:96:4e:d2:92:53:
75:5d:5d:8a:f8:f0:30:f3:c4:86:16:52:ea:a8:38:44:d9:ea:
57:f4:bc:9d:0f:ba:5e:6a:e7:ec:1f:88:91:07:51:40:92:8a:
31:a6:54:fd:ca:28:74:a4:c7:0b:56:a7:ec:6d:b4:10:c8:47:
ea:2b:8e:4e:87:33:30:0d:c6:25:2e:12:7a:10:86:3a:7e:cc:
99:ba:2f:49:71:32:9b:0d:87:ce:9c:c8:2e:8b:2b:20:89:2f:
67:52:d0:0b:aa:19:a8:5a:06:25:b3:24:de:1c:0d:34:f5:d9:
29:61:5e:b9:a5:31:8f:e9:f1:ef:62:9f:26:df:a0:4a:17:5d:
98:fe:eb:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 00:37:33 2026 by rpki-client