Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
File: w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft (raw, json)
Hash identifier: +LlHbFxyMprymvcZb3Cc1EcoDdhh52xRWhCAJAvLfyc=
Subject key identifier: DE:55:45:C4:CC:EA:33:C3:BE:34:B0:BC:F5:DE:5A:55:48:AE:BC:D2
Authority key identifier: C3:BC:2D:2F:68:17:B9:4C:26:AE:FD:D8:9F:F9:43:A8:8F:3F:1C:84
Certificate issuer: /CN=c3bc2d2f6817b94c26aefdd89ff943a88f3f1c84
Certificate serial: 019CAE6C3020053248015D285FD411D51D4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
Manifest number: 0806
Signing time: Mon 02 Mar 2026 12:00:51 +0000
Manifest this update: Mon 02 Mar 2026 12:00:51 +0000
Manifest next update: Tue 03 Mar 2026 12:00:51 +0000
Files and hashes: 1: w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl (hash: iO6yyTHjP25fGXOeo2zuLK1qxKDkuigx17lSt6rhReY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 12:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:30:20:05:32:48:01:5d:28:5f:d4:11:d5:1d:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c3bc2d2f6817b94c26aefdd89ff943a88f3f1c84
Validity
Not Before: Mar 2 12:00:51 2026 GMT
Not After : Mar 3 12:00:51 2026 GMT
Subject: CN=de5545c4ccea33c3be34b0bcf5de5a5548aebcd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3f:34:ce:47:86:be:e4:c5:44:53:59:cb:33:
ca:92:9d:2a:b0:fe:c1:64:79:ef:e9:4e:63:51:35:
3c:6a:f9:68:df:bb:a0:6d:14:ad:cb:53:69:7f:1e:
75:c2:5f:96:5e:c5:d0:fc:ad:52:93:f8:ad:6d:da:
b8:56:96:c9:56:4d:9e:d7:fa:08:22:45:a5:01:a2:
04:5c:47:1a:f8:3d:e1:45:f9:63:7b:2b:80:ce:69:
ff:57:0c:c0:53:59:a3:26:18:3a:b3:6d:de:02:6c:
d4:a7:f8:f8:25:d6:7d:98:a0:ae:e6:67:71:69:ba:
f8:9b:47:ff:9e:01:2b:3b:74:cd:32:e9:71:76:98:
b5:a0:9e:27:56:e7:48:3c:0d:73:fd:ba:14:e0:8a:
76:d5:e2:d6:07:8d:da:28:7f:65:b0:55:aa:15:92:
d4:07:89:43:9c:fe:2e:28:1a:fe:1e:82:0c:7a:50:
ca:04:b0:93:bc:f7:94:78:a1:53:ae:ca:97:03:27:
6e:90:19:f6:c6:96:1f:2f:56:3e:c2:60:5a:a0:b9:
5a:77:06:7c:69:27:51:2f:9e:2e:cf:68:f2:58:73:
9f:fa:7b:6d:fd:21:b1:e2:6e:57:28:a8:29:0b:22:
e9:c9:77:83:34:0e:16:cc:dc:db:c5:a7:ca:f4:e6:
79:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:55:45:C4:CC:EA:33:C3:BE:34:B0:BC:F5:DE:5A:55:48:AE:BC:D2
X509v3 Authority Key Identifier:
keyid:C3:BC:2D:2F:68:17:B9:4C:26:AE:FD:D8:9F:F9:43:A8:8F:3F:1C:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:02:a2:50:41:c0:d8:c6:23:e1:91:8b:11:92:3f:37:b4:0d:
5d:ea:8d:2c:51:ba:c3:db:75:44:a6:e3:e6:50:7d:2c:71:6f:
bc:84:6c:53:84:f8:09:4d:69:24:2f:76:30:63:97:a8:54:9f:
18:5a:f2:6e:4c:7f:d1:51:74:d6:cc:1d:fa:7b:09:50:e5:59:
bd:6f:91:ee:2a:d2:37:42:e8:b4:4d:1b:78:4f:c7:0b:4b:a5:
ba:3d:71:54:02:b2:82:bf:de:2c:1b:d0:88:1e:58:c0:cd:a5:
00:02:45:08:10:2d:b6:24:a1:49:90:93:13:6e:06:87:f2:3e:
36:2a:ff:15:69:43:ad:4f:87:8d:13:43:0f:bc:7b:e1:ad:31:
3f:ed:67:79:74:54:52:92:38:d7:3a:1f:e1:59:0d:ba:49:7d:
aa:9b:84:e4:ba:07:86:a4:6f:1b:81:77:38:07:9e:00:34:d2:
8c:c5:89:85:d3:f9:6c:04:17:5e:b9:e2:22:2a:48:ae:03:de:
c1:6e:ea:4a:21:d2:28:bf:c0:ea:3e:16:c8:17:32:05:2f:29:
01:f3:26:59:2e:ae:19:ab:95:25:36:70:3a:f1:2a:6e:3b:09:
56:63:7d:09:ef:36:19:fe:7b:89:22:e5:41:34:21:eb:fc:2c:
a4:b3:c8:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:26:12 2026 by rpki-client