Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
File: RWF9LghjWN2nvbDcRmyhyG7U_so.mft (raw, json)
Hash identifier: kUnztzRvpThMzcyFWYKYXKbCoChIm754iIWeTVfzgxw=
Subject key identifier: D6:01:B4:B0:70:E0:D5:A0:91:23:F5:57:AA:5F:40:E6:56:C2:15:65
Authority key identifier: 45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
Certificate issuer: /CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Certificate serial: 019CACEB813ADB2E6E6741F73372611683E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
Manifest number: 17DB
Signing time: Mon 02 Mar 2026 05:00:40 +0000
Manifest this update: Mon 02 Mar 2026 05:00:40 +0000
Manifest next update: Tue 03 Mar 2026 05:00:40 +0000
Files and hashes: 1: 7WMHMRqYOCVJJOdVZn2toCGJ2Gg.roa (hash: u4kYKOpJoWTw0MlXSHwcNaxRXss2R6FxZn1Z49E09Go=)
2: RWF9LghjWN2nvbDcRmyhyG7U_so.crl (hash: nJd2YNy/MuHPe9XRxmln9Y8H9QHS/olUhVEZo3C5JC0=)
3: Y9TiWW63huz2Y3RHyUrV0t01KvA.roa (hash: rNdERlf12PuGe5Ze8mFCZtIt+e3TVhdioA/m3kjwSCA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:81:3a:db:2e:6e:67:41:f7:33:72:61:16:83:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45617d2e086358dda7bdb0dc466ca1c86ed4feca
Validity
Not Before: Mar 2 05:00:40 2026 GMT
Not After : Mar 3 05:00:40 2026 GMT
Subject: CN=d601b4b070e0d5a09123f557aa5f40e656c21565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3f:01:0c:92:1c:56:f5:ff:bd:1c:41:01:55:
ef:f1:b4:c3:bd:b6:b9:94:c3:b1:b7:0c:ca:ef:80:
25:3f:e2:79:a7:0b:2e:2b:2e:21:b8:ab:fe:99:30:
73:06:50:1d:4e:43:ad:21:0a:c5:92:04:e9:7e:87:
24:74:6a:e2:af:dc:fb:a8:fc:ff:33:49:c9:18:54:
14:04:89:da:71:14:a2:6a:16:9f:65:17:c9:a1:a2:
fe:e6:2c:6d:a1:99:8a:ae:6f:81:57:1a:38:58:4a:
e7:cb:c2:18:1f:f3:81:03:6a:d2:d3:39:0a:39:f9:
36:79:68:fe:e5:42:5a:69:70:9f:b2:15:8e:34:a0:
2f:8e:90:fd:e7:2e:3b:52:49:60:0b:ac:5b:af:7d:
38:e5:fd:28:f0:f2:75:93:f5:8d:7d:9d:16:28:51:
11:fa:68:25:e8:48:50:33:07:b3:97:01:01:a8:cc:
3b:a8:10:cb:4b:db:94:a6:f1:4f:08:85:b0:2c:41:
75:d3:dc:6c:07:6a:85:c0:94:68:8f:21:c6:28:45:
46:e5:23:e6:47:17:1d:1a:bf:be:0e:0f:35:0f:88:
74:1e:e1:16:c1:d8:6d:80:a9:ab:71:23:d8:12:04:
9c:7a:9d:95:a2:6b:77:be:d0:17:d8:93:6f:c7:3c:
23:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:01:B4:B0:70:E0:D5:A0:91:23:F5:57:AA:5F:40:E6:56:C2:15:65
X509v3 Authority Key Identifier:
keyid:45:61:7D:2E:08:63:58:DD:A7:BD:B0:DC:46:6C:A1:C8:6E:D4:FE:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RWF9LghjWN2nvbDcRmyhyG7U_so.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d81b59-c05a-48fe-b5b1-158927337689/1/RWF9LghjWN2nvbDcRmyhyG7U_so.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:f2:85:11:cd:5b:ef:b3:bd:70:87:0b:a6:bb:12:2f:52:d5:
13:ad:a9:eb:8b:58:99:f4:10:23:c1:59:12:89:7c:8e:24:cc:
de:a7:1b:d1:5b:bf:76:36:e8:1d:31:9a:47:17:06:8c:3d:47:
7c:74:5c:50:48:b1:b5:a7:a2:52:1b:2b:e6:05:be:12:58:84:
fa:91:8e:ce:75:1b:df:eb:88:46:60:01:46:87:e0:35:e9:c9:
09:e6:22:25:5d:30:49:79:b9:d2:3f:ce:06:d7:ae:b5:d7:fd:
70:50:7d:71:91:18:06:0b:e9:fd:4c:b2:01:be:6c:75:48:9c:
49:be:18:3b:5d:ec:52:af:58:c9:4e:d0:b0:da:1e:8a:5d:29:
92:31:71:be:9d:4e:b4:1f:ef:61:47:5a:ca:fe:f7:fc:16:cb:
03:5d:ec:fb:a0:92:68:f7:18:7c:f2:b5:62:b2:a6:af:b6:a9:
a8:a5:8d:61:d3:a5:6f:e8:f6:18:7c:65:b0:a1:a6:5a:fb:c3:
8a:00:cf:af:ad:25:eb:e3:ec:da:e4:2b:ce:16:66:eb:3d:8d:
ea:c3:90:a4:0b:bf:ce:b7:e9:5b:fa:76:e3:2a:3e:5c:ef:3c:
9d:82:33:52:f5:7a:70:f6:7a:de:89:22:bb:49:84:9e:f0:f7:
f0:6c:0c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:44:49 2026 by rpki-client