Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: wwZaqnYb9SQhxQzDKnyOOFL8chrbiqmlCgreIoHYYFs=
Subject key identifier: 56:AC:42:C4:A0:05:36:52:19:B4:28:9F:0D:DE:CD:5B:14:EF:AB:05
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 019CABA266F19531FB7AC9CBBF94EA5B3F76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 054F
Signing time: Sun 01 Mar 2026 23:01:12 +0000
Manifest this update: Sun 01 Mar 2026 23:01:12 +0000
Manifest next update: Mon 02 Mar 2026 23:01:12 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: HzW6b/Eit2XP2aHW7VwnJWLrwYylkK9SztLZ7+uqFDc=)
2: qTWraqPBRkXUgfYW4gfB3AS-jm0.roa (hash: Rbt0ZTsq9hRwXO+cnDLn20WShDhAg5xFObZyVKiajFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:66:f1:95:31:fb:7a:c9:cb:bf:94:ea:5b:3f:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Mar 1 23:01:12 2026 GMT
Not After : Mar 2 23:01:12 2026 GMT
Subject: CN=56ac42c4a005365219b4289f0ddecd5b14efab05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6e:d3:89:c5:f1:e9:5e:05:4d:22:d2:86:cd:
ca:aa:4e:a5:d8:29:41:1b:47:d8:e1:22:85:87:ac:
c5:e2:ab:74:5a:0f:65:1e:be:94:b0:fc:34:8b:d2:
ed:be:00:4d:df:57:95:24:0d:b1:03:51:8a:fd:69:
93:53:92:19:e5:fb:c6:a4:dc:d9:e6:89:83:ef:93:
ee:61:0a:3d:5f:d7:ae:d8:ae:64:cb:77:a0:d2:4f:
a1:75:57:4c:f8:6f:20:e1:0c:85:4c:30:35:77:7f:
a7:c1:9b:8c:00:0f:f9:dd:24:55:86:9b:f8:5f:eb:
e7:1f:1d:f9:2f:66:21:48:80:b5:93:6e:69:c1:e0:
76:57:92:e9:93:96:92:34:24:a9:63:8c:a4:0d:da:
c2:ed:f1:23:0f:ab:50:1f:9d:b7:af:72:2c:e9:74:
ae:9d:ff:9e:5a:7d:62:45:a4:05:70:0b:8b:34:d0:
06:1d:a5:35:4d:eb:d5:9f:92:7c:c8:a7:3a:5d:93:
dd:57:42:0c:4f:f9:21:80:66:59:c7:64:88:9b:c9:
1f:53:4c:20:c0:a5:8b:55:14:1b:62:8b:d7:b6:1d:
ba:37:25:3a:39:c1:9c:8a:37:90:71:38:c2:24:29:
aa:49:6b:7c:d3:d0:63:c6:1c:c1:74:d2:1a:1d:3a:
6c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:AC:42:C4:A0:05:36:52:19:B4:28:9F:0D:DE:CD:5B:14:EF:AB:05
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:a6:24:39:5e:93:d1:bf:b2:dc:5e:f4:ec:2e:3e:fd:b0:50:
08:fc:7f:46:2a:7d:70:2c:57:86:b1:30:c5:b1:cb:71:92:58:
dd:ae:e4:11:0c:2b:e9:3c:10:da:74:c5:46:15:fa:c0:c6:b2:
95:64:7b:4f:bc:e9:a1:61:5e:71:c8:ff:77:95:dd:a4:4b:3e:
7b:36:6e:71:64:a2:e9:bb:a7:d6:cf:3a:52:bd:2e:33:61:19:
b4:67:f8:aa:1e:6e:46:81:87:fa:d5:98:c7:0c:55:ba:69:1b:
f7:7d:c8:fe:27:06:96:68:be:9a:9d:3c:48:e2:0e:1b:fc:fc:
7a:95:b5:46:01:c7:32:7a:a5:f6:12:fc:29:c7:df:a4:e1:d7:
6b:33:6d:e9:56:a7:fa:59:2f:9a:43:68:7e:2d:24:4d:ba:9b:
16:f4:32:6a:bf:45:3e:d4:c0:81:9c:71:9c:3d:82:b7:b7:8e:
7a:b7:4f:1b:1d:00:58:ab:e2:f2:8f:7c:03:8d:b3:e7:65:9c:
cd:2e:86:9f:16:7f:7e:38:2c:d0:5e:2c:c0:a7:62:f2:e6:6c:
10:96:47:36:3c:12:2d:a5:d6:13:35:91:20:ad:9d:e6:36:40:
31:f9:a9:e2:0a:f6:c6:95:62:bd:2c:e8:41:1c:1d:79:30:34:
78:ac:36:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:50:17 2026 by rpki-client