Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
File: iWsznbz4QR1YQAjPAptHyIqzedU.mft (raw, json)
Hash identifier: e61+Ng+2cwa12ab/OkB5Xo/qnS8DAoWUyFmvPheV7iY=
Subject key identifier: C1:06:C3:A9:32:42:72:3E:C8:F2:76:11:C8:13:5B:83:FB:3E:1C:72
Authority key identifier: 89:6B:33:9D:BC:F8:41:1D:58:40:08:CF:02:9B:47:C8:8A:B3:79:D5
Certificate issuer: /CN=896b339dbcf8411d584008cf029b47c88ab379d5
Certificate serial: 019CB0244273D3FCFF66F4FDBD3194B73A3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
Manifest number: 25
Signing time: Mon 02 Mar 2026 20:01:31 +0000
Manifest this update: Mon 02 Mar 2026 20:01:31 +0000
Manifest next update: Tue 03 Mar 2026 20:01:31 +0000
Files and hashes: 1: _01xdN9b6VGiDq8TdVfHkv4nsNA.roa (hash: cof+3EhtbeAEqNmK/OvBSq8ShRaGyYdb9JejvgRl8nA=)
2: iWsznbz4QR1YQAjPAptHyIqzedU.crl (hash: YaPzXqijVXo2QgQYFK04+dBQtbZsWtoNFyetYZCzUiw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 20:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:24:42:73:d3:fc:ff:66:f4:fd:bd:31:94:b7:3a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=896b339dbcf8411d584008cf029b47c88ab379d5
Validity
Not Before: Mar 2 20:01:31 2026 GMT
Not After : Mar 3 20:01:31 2026 GMT
Subject: CN=c106c3a93242723ec8f27611c8135b83fb3e1c72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6f:96:0e:b1:50:04:10:8e:95:99:f2:a1:49:
a7:54:38:ea:3d:a7:e0:70:b8:3f:a8:f1:ae:99:1e:
a5:94:5d:02:1f:c8:e7:f7:b4:30:fd:a6:3a:8f:68:
16:9f:29:8d:fa:62:53:cb:45:dc:8d:83:fc:9b:c2:
ef:82:94:ca:9a:82:7a:4c:d2:6e:72:91:c7:45:85:
cb:92:d5:eb:2e:b6:55:53:81:f7:42:f2:4d:6e:bf:
9c:b6:06:0f:6b:1a:e3:37:d6:bc:7c:bf:9e:21:9a:
07:25:e3:7f:c4:88:0a:7a:09:79:7f:7d:2b:79:96:
72:c1:b7:bb:01:8a:00:3e:31:cc:c5:30:9a:24:31:
72:08:17:13:91:42:80:49:b9:cd:42:45:02:9d:c5:
08:f6:17:1a:1e:a7:f6:8d:33:15:93:8d:b2:7f:93:
b5:e8:b2:44:20:8e:e8:1b:b1:d2:73:d6:65:61:12:
3e:09:94:cf:aa:c5:56:7c:bf:a8:87:8d:3a:6b:53:
2e:4b:7c:e1:34:e7:2f:6b:3a:ea:03:0a:aa:88:59:
75:24:ec:22:02:36:12:aa:c4:07:97:8f:66:86:a7:
cd:f9:9a:64:8b:34:9f:b4:9f:c3:fb:7b:65:65:b8:
d9:d9:4a:8c:78:f4:4f:35:b7:1c:dc:8e:9a:e1:5c:
c8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:06:C3:A9:32:42:72:3E:C8:F2:76:11:C8:13:5B:83:FB:3E:1C:72
X509v3 Authority Key Identifier:
keyid:89:6B:33:9D:BC:F8:41:1D:58:40:08:CF:02:9B:47:C8:8A:B3:79:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWsznbz4QR1YQAjPAptHyIqzedU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/74c76f-5d70-4eef-99f5-131cc48640dc/1/iWsznbz4QR1YQAjPAptHyIqzedU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:bd:d1:ef:ef:d8:d2:c9:a1:e3:c6:ce:90:94:6d:68:98:82:
ed:b8:08:4c:7e:80:ea:90:06:c7:a3:1c:49:05:5a:22:4d:78:
ae:87:b4:be:39:46:b9:5b:ac:76:b7:06:1d:1f:37:1a:bb:91:
8d:1c:2d:0d:b5:4f:de:d7:ee:20:70:25:2c:f7:53:c2:b7:1d:
68:a7:f9:0c:60:fe:b9:e0:89:b2:50:8a:30:a9:39:ce:6d:27:
e9:43:ad:70:6e:be:9b:2c:6d:af:25:94:fc:fb:0b:02:f2:99:
a9:fb:79:4c:42:e8:86:7e:c6:69:05:6e:87:52:8b:a7:56:eb:
a9:6e:c0:6b:71:56:78:86:20:f4:a7:b2:65:e9:f5:9d:fd:40:
41:63:fc:1e:8b:29:de:cf:31:cd:ac:22:51:89:d0:06:e1:1d:
94:71:78:b3:af:33:26:ad:19:05:0b:3f:5e:04:18:00:7f:bc:
48:0b:d1:a9:fe:fd:99:6e:48:78:d6:00:21:a2:62:c7:80:37:
d0:73:d7:c8:aa:58:84:8f:c0:36:f0:7f:38:ba:52:36:db:b4:
1b:9c:ce:19:e4:a6:12:fe:38:64:da:6c:45:96:f8:9a:e9:98:
98:7d:5b:f7:72:7d:27:c2:24:a6:60:74:c9:bd:13:58:70:ff:
c0:a5:1b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 07:12:21 2026 by rpki-client