Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
File: D5XJyafxmprXF-TapTDIXPmauXU.mft (raw, json)
Hash identifier: X+hwVyTSeyfvJcxpqjzLaVVGZiZexfxMvAifbp2ds2g=
Subject key identifier: 9D:DA:6D:04:C8:3A:9A:3F:9A:DA:98:B3:32:E3:0A:A0:99:57:3B:2D
Authority key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
Certificate issuer: /CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Certificate serial: 019CAAC6E9B7B0C7B50763B41AB13B8E0DEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
Manifest number: 0876
Signing time: Sun 01 Mar 2026 19:01:28 +0000
Manifest this update: Sun 01 Mar 2026 19:01:28 +0000
Manifest next update: Mon 02 Mar 2026 19:01:28 +0000
Files and hashes: 1: D5XJyafxmprXF-TapTDIXPmauXU.crl (hash: DS+sQlw69hyTzlxJHUWPFMQAZV71/EVeYYodg4b1EZo=)
2: IDbRzIjz9FoGej8HJqlL664b-8I.roa (hash: VRTrlkouQDtL6ZUrJRyEpfphRS5vZrTw/RpqnAvn+iU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:e9:b7:b0:c7:b5:07:63:b4:1a:b1:3b:8e:0d:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975
Validity
Not Before: Mar 1 19:01:28 2026 GMT
Not After : Mar 2 19:01:28 2026 GMT
Subject: CN=9dda6d04c83a9a3f9ada98b332e30aa099573b2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e2:62:d3:01:a7:08:bf:41:94:a8:af:84:d1:
4b:b7:96:f8:48:d4:d5:29:95:60:f5:7f:e1:94:ed:
7f:7f:a3:0a:d8:85:8f:c6:e6:5e:93:13:54:dd:8c:
18:17:b1:77:ae:79:43:da:1d:3e:1c:c9:2c:25:1c:
78:a4:59:fb:8c:0c:df:10:18:96:cb:94:8c:e0:29:
6e:6b:8c:03:86:11:f0:9f:77:be:22:f8:9b:87:22:
47:7f:45:7c:23:32:55:24:94:fd:a7:0d:28:17:af:
94:ab:83:c5:ee:20:65:fe:e3:d6:7e:6e:23:7d:dd:
c7:0f:83:10:72:9a:50:fd:9c:fa:4c:e9:ea:ec:75:
51:52:33:55:75:0a:e4:22:02:6f:96:03:a6:c0:f8:
9d:6f:12:a4:1b:d3:fc:e2:0a:47:b3:2b:34:48:5f:
86:f0:fe:e4:e0:47:92:d3:d4:2a:35:fc:d4:03:a9:
15:a7:1a:db:67:3a:63:bb:56:0f:38:68:23:8b:0d:
91:34:03:95:10:c8:89:c3:ce:bc:8e:ec:04:2c:1b:
0c:82:df:aa:81:8b:74:e3:55:67:e9:e5:0d:c5:84:
c1:94:cd:2f:8f:54:e3:cf:8d:db:69:16:28:aa:f1:
a8:3f:a0:db:a4:c1:c9:a8:69:2b:7b:19:5a:05:c2:
92:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:DA:6D:04:C8:3A:9A:3F:9A:DA:98:B3:32:E3:0A:A0:99:57:3B:2D
X509v3 Authority Key Identifier:
keyid:0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:9b:39:61:53:cb:d8:20:0d:38:11:02:9d:77:c4:ac:4b:14:
7b:f6:f3:82:8e:1a:9b:f8:6d:f2:ea:ae:a5:84:f2:a6:62:5a:
30:61:53:04:66:7b:09:26:69:14:36:7c:58:17:11:20:f7:cb:
95:0d:1c:91:e6:79:91:71:1a:fc:f9:b6:96:fc:fa:c8:9a:37:
05:0e:04:c0:de:98:06:c6:14:f2:c7:77:95:7e:b9:1d:55:f6:
9d:48:d2:71:63:e4:39:96:21:d6:2d:87:88:df:96:98:cb:e3:
2d:d9:12:8c:ce:6e:e6:60:c0:0f:ac:47:5a:fa:41:99:48:d1:
db:9e:7c:ef:6b:b4:6d:fb:e1:c3:93:cb:3e:b7:06:fa:ff:16:
a7:84:3c:7e:13:b3:e0:a5:a9:bc:bb:d3:dd:ef:99:ac:50:38:
c9:21:b0:23:ac:5f:48:e2:e0:e4:4e:96:e6:20:e8:05:cf:40:
37:de:9d:bc:f4:90:d0:cd:cd:ff:dc:1d:9c:0e:91:da:59:a7:
69:63:44:db:95:27:78:ae:66:e0:0b:b9:18:a3:cc:c1:86:62:
f8:0e:57:fd:a2:cc:d3:0a:ff:2a:d0:42:3c:2c:2b:49:7d:a9:
37:cd:44:0c:eb:73:f9:7f:a1:0f:c4:35:a9:87:03:9d:7c:3f:
09:91:bc:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:45:08 2026 by rpki-client