Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json)
Hash identifier: 0b8gpYczj7Sqjevi8isSOo/V31EBzlkFF1gOvbaOANo=
Subject key identifier: DE:83:FA:1B:55:F8:28:94:2C:BB:0C:10:6B:26:07:B5:74:5B:EF:EA
Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682
Certificate serial: 019CABA21BC292C83DADF5EF04F7616E1750
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
Manifest number: 07DB
Signing time: Sun 01 Mar 2026 23:00:53 +0000
Manifest this update: Sun 01 Mar 2026 23:00:53 +0000
Manifest next update: Mon 02 Mar 2026 23:00:53 +0000
Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: yWsaSleyxiVau+XB0EqeL1Ey/bJntfK9gmLeh/QvVyI=)
2: yS7JOrLZP4AOFmgm3gsxJRJWJXE.roa (hash: IrIgEVW7MNtRvbALuTRFogWK6/R+xoKvrCBDKRLo8XA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:1b:c2:92:c8:3d:ad:f5:ef:04:f7:61:6e:17:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682
Validity
Not Before: Mar 1 23:00:53 2026 GMT
Not After : Mar 2 23:00:53 2026 GMT
Subject: CN=de83fa1b55f828942cbb0c106b2607b5745befea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:01:db:a9:23:2b:35:7d:d1:fc:22:98:35:ad:
9f:2d:fb:2e:25:55:ad:60:32:31:19:97:2f:80:6d:
ff:6c:31:67:1d:74:a5:24:c4:c6:58:07:7b:fa:3b:
80:b3:7f:e0:c9:e7:be:78:84:aa:35:d5:d5:de:f8:
87:8c:1d:89:b8:fa:28:23:d3:1d:ae:ec:38:fc:73:
80:83:c8:3f:4b:bc:2f:9f:7c:84:04:00:12:58:ea:
f1:1b:16:c2:06:e1:a5:e2:68:11:69:f7:c5:94:0e:
ac:cf:a5:f2:cc:d7:91:57:fd:40:3f:2a:c1:64:ae:
86:c3:4b:8e:34:09:1a:1a:ec:e9:f9:6d:fd:88:f9:
98:5b:ce:d1:fa:21:05:be:5b:02:e0:b1:86:ed:ec:
24:26:12:d1:12:d4:fd:24:77:0f:ff:4c:46:9d:8b:
93:a0:c0:46:0d:3e:5f:73:dd:0e:9b:f9:50:a6:c9:
bc:c1:73:51:36:2f:36:f2:6c:5d:a6:c9:07:45:09:
60:68:b6:65:c0:90:35:f8:2a:ff:5b:19:f5:8f:ff:
a8:ad:06:bc:63:33:a3:fd:ad:96:4e:de:40:81:2a:
47:3b:27:89:98:6e:4d:45:4c:dc:f2:8e:df:73:f8:
bb:bf:01:9a:25:51:02:ce:c8:fd:65:f0:65:11:9c:
73:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:83:FA:1B:55:F8:28:94:2C:BB:0C:10:6B:26:07:B5:74:5B:EF:EA
X509v3 Authority Key Identifier:
keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:9b:51:7c:ae:83:56:e6:bc:94:3a:d1:7a:d2:66:dd:b6:80:
65:ad:66:9b:c7:b3:b4:0c:13:ae:a4:22:74:a8:3e:c7:e7:45:
71:d7:7c:00:a8:0a:cc:6a:9d:70:1f:d9:f1:e9:ca:df:c1:4d:
fc:d9:c1:82:aa:9a:d0:67:2a:d7:20:02:d0:e1:39:af:97:55:
86:ac:73:70:b8:cd:ce:9e:96:c4:3c:99:8e:e6:9b:2f:48:58:
29:4e:49:70:23:e2:b3:58:c4:df:ee:2b:34:e0:29:cb:fe:fc:
93:85:51:9c:4d:e9:9c:b5:35:c7:fa:f8:1f:98:69:9e:2c:df:
8f:2b:2c:05:ea:40:3e:e7:37:70:e3:35:d2:1f:23:ec:15:bc:
14:a6:c5:4a:c7:57:91:1d:50:15:ba:92:90:fe:fa:4b:5a:e8:
77:9d:fd:7a:ab:a8:61:6e:ef:c8:a7:30:35:6e:b6:39:fc:f2:
da:6e:ce:6c:6f:50:eb:07:ed:4f:8d:87:aa:5b:a9:c7:7f:8c:
ef:da:52:aa:f2:a8:11:5f:84:65:15:1a:18:d0:fd:02:48:92:
06:08:ad:0f:8b:f1:96:ae:80:24:25:b6:90:f3:eb:37:53:61:
c7:c5:bd:22:52:31:b5:f8:ca:53:a0:fb:81:32:50:c2:d1:3f:
c0:0c:53:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:51:07 2026 by rpki-client