Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
File: do_utqkKhqzxGHHk5Xii6n7Cgdk.mft (raw, json)
Hash identifier: 0cpuVIVvbq1ZtiV9zmh6PitD7fkuNvyLNkV7jgnLcrk=
Subject key identifier: 36:A1:DB:E9:3C:66:FC:D7:E3:4B:0C:A2:9D:19:DC:16:76:54:E2:B1
Authority key identifier: 76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
Certificate issuer: /CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Certificate serial: 019CAC7E505C4DBAFF43F2BEA38D518B094E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
Manifest number: 0352
Signing time: Mon 02 Mar 2026 03:01:25 +0000
Manifest this update: Mon 02 Mar 2026 03:01:25 +0000
Manifest next update: Tue 03 Mar 2026 03:01:25 +0000
Files and hashes: 1: W-L9Z-et_hk_ElQE4x3JidtYxJ8.roa (hash: H+ygr+3swIT2aBvGxAFeyCAkH1uxCN9KnvrpdAVtIB8=)
2: do_utqkKhqzxGHHk5Xii6n7Cgdk.crl (hash: fqFQZBbZjggPgq2wPW4ACWPex/FyIQ+Cab4Wx5KSzG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 03:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:50:5c:4d:ba:ff:43:f2:be:a3:8d:51:8b:09:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768feeb6a90a86acf11871e4e578a2ea7ec281d9
Validity
Not Before: Mar 2 03:01:25 2026 GMT
Not After : Mar 3 03:01:25 2026 GMT
Subject: CN=36a1dbe93c66fcd7e34b0ca29d19dc167654e2b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:37:4e:27:6a:15:8a:25:5b:1f:25:39:6f:3a:
e5:85:ff:2b:e3:0b:e7:7e:cb:b2:12:6b:a4:e5:84:
59:0d:93:b2:f5:a2:2a:9d:9d:74:26:8c:07:e4:3b:
99:55:02:50:a8:7c:9d:3d:4f:9f:6b:ad:65:aa:a6:
bd:00:49:95:de:53:eb:6a:f6:e9:45:07:cf:7c:a4:
55:62:41:c6:b3:01:26:b2:c0:99:f4:34:83:20:18:
ea:22:f3:6a:e9:04:8c:c1:ed:93:72:f2:87:af:41:
9a:ea:55:b6:92:9a:3d:dc:79:6f:11:c8:e4:27:dd:
ef:53:15:35:bd:77:ac:ea:28:ff:d2:f7:bc:9f:29:
c3:71:0f:ad:c4:3b:72:dc:42:1f:a1:aa:b5:ae:ba:
18:c9:bd:85:d9:f2:61:d4:0f:b8:e7:63:20:1d:fc:
8e:3d:f6:76:9c:7f:63:43:f8:12:f7:9a:3a:c0:53:
72:1f:36:44:63:2f:3e:9d:64:30:ae:66:96:3a:e2:
0c:3e:0e:0b:ae:38:82:77:4a:ac:ec:77:bf:d6:3c:
b3:29:7e:27:9e:12:ed:f0:ee:4d:84:2e:ec:a5:eb:
50:7d:a3:a3:55:28:b3:5e:a0:8d:a4:ca:89:05:0e:
51:e4:79:5b:81:1a:5a:a8:d2:77:1a:47:46:7d:4e:
98:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:A1:DB:E9:3C:66:FC:D7:E3:4B:0C:A2:9D:19:DC:16:76:54:E2:B1
X509v3 Authority Key Identifier:
keyid:76:8F:EE:B6:A9:0A:86:AC:F1:18:71:E4:E5:78:A2:EA:7E:C2:81:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do_utqkKhqzxGHHk5Xii6n7Cgdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66663a-eaf1-4a89-804c-0c1f4d33783e/1/do_utqkKhqzxGHHk5Xii6n7Cgdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:13:2f:91:af:28:d3:b2:cc:68:70:46:3b:37:08:5e:1c:ad:
72:6a:c1:6f:90:01:73:86:c6:3f:e3:91:aa:e9:c3:fb:81:21:
84:26:64:8e:2a:b2:68:64:2e:b7:07:d2:3b:73:8d:f1:10:af:
0a:fa:4e:c5:ea:01:2c:ee:15:c6:5d:17:b1:67:1d:90:c5:af:
de:9d:bf:13:81:49:15:1e:ee:8e:e0:1a:da:ed:cb:f5:f2:35:
9d:54:9c:22:85:6c:b6:32:9e:c6:7b:90:f8:5c:98:d3:41:00:
cb:1e:06:5e:b2:59:99:89:55:5b:de:7f:17:be:28:3a:41:c8:
86:7b:3e:0d:3b:44:76:dc:02:dd:45:62:61:02:d4:4b:50:5e:
83:19:09:b7:54:da:93:40:85:78:b8:01:6b:ae:93:91:cb:b1:
4e:99:f3:33:39:43:83:14:64:6f:c7:3f:2b:11:3a:7c:cf:85:
90:bb:00:1f:3e:9b:65:03:01:a9:3e:df:76:a6:0f:2e:2b:ed:
59:97:76:e9:47:81:69:1e:93:d1:6a:ec:66:bf:5b:12:64:e7:
e0:d4:eb:cf:b1:8d:43:54:ac:b2:32:81:d7:5b:43:19:e8:f9:
b6:6a:43:54:b7:ad:b5:be:dd:86:2c:82:18:76:d4:68:bb:8e:
50:67:b4:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:03:16 2026 by rpki-client