Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
File: 24P1T0UTHZIHwhWgmKKmvNb_BQs.mft (raw, json)
Hash identifier: dXR3rTo8k47nsZRpuvL6wVy4Dt+hSMA/H/8uu44ySNU=
Subject key identifier: 56:D7:98:BD:36:34:B0:92:F4:0F:7A:B9:A2:C4:47:E0:65:54:90:C1
Authority key identifier: DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
Certificate issuer: /CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Certificate serial: 019CAAC6FBDE6606E89C9AC7A7AA618D851B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
Manifest number: 0F40
Signing time: Sun 01 Mar 2026 19:01:33 +0000
Manifest this update: Sun 01 Mar 2026 19:01:33 +0000
Manifest next update: Mon 02 Mar 2026 19:01:33 +0000
Files and hashes: 1: 0-WmLbEH77lOVqvVQ2YUnN7Nex4.roa (hash: K4clzCUFSq6IN3lmLQlxqL/RcAzKs5Apy7zTYqaaAwc=)
2: 24P1T0UTHZIHwhWgmKKmvNb_BQs.crl (hash: hdiv61s4/echcKKf36+GRFPa+NRzpZJEselAwuJlzZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:fb:de:66:06:e8:9c:9a:c7:a7:aa:61:8d:85:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Validity
Not Before: Mar 1 19:01:33 2026 GMT
Not After : Mar 2 19:01:33 2026 GMT
Subject: CN=56d798bd3634b092f40f7ab9a2c447e0655490c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b3:94:3d:ac:73:53:b3:65:98:2f:6a:da:1b:
ed:4b:7e:6f:09:aa:9f:91:da:f1:7f:d6:b1:8a:f1:
13:69:32:71:79:26:57:34:59:e3:e0:dc:47:8f:47:
f3:61:c3:9f:26:57:f1:8f:c5:97:f7:b6:01:da:48:
a8:b9:51:d5:7a:25:b4:47:eb:54:a2:4b:fb:7f:d6:
86:9c:ea:66:2c:9a:da:f7:79:5f:f9:d2:e1:80:30:
e5:a1:6c:a5:fe:dd:a1:3e:09:bd:e0:d7:8b:75:43:
44:65:2c:90:42:4c:89:85:48:9d:9e:be:b3:d2:dd:
d2:3f:ed:40:da:9c:df:41:de:0b:a5:fa:00:f2:e9:
45:15:9f:e2:33:9e:a4:fe:27:67:a5:3e:de:79:f7:
53:24:42:a7:a6:c7:77:19:9b:8e:16:2c:b4:fe:6c:
f6:55:92:01:81:ad:d8:eb:5d:d7:3e:14:1f:c1:ba:
20:94:3e:6e:97:1e:38:3a:10:b5:fa:2c:9e:7f:0c:
7f:02:0b:2a:0c:54:37:da:93:7c:93:7f:8b:a2:8b:
be:1d:b8:1f:56:2d:e9:5d:1b:19:bc:82:a4:7d:91:
56:e8:7a:b8:ff:fd:7b:8f:ea:c2:68:a4:f7:6b:ed:
b7:c6:4d:0c:c4:df:23:ec:fc:a5:95:c8:0e:bd:83:
b7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:D7:98:BD:36:34:B0:92:F4:0F:7A:B9:A2:C4:47:E0:65:54:90:C1
X509v3 Authority Key Identifier:
keyid:DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:75:8d:21:c4:fe:20:75:71:19:17:df:51:0c:19:1f:77:c8:
26:55:73:ed:9c:63:9e:eb:15:01:c3:63:4c:a2:21:16:35:82:
4e:7b:6c:4c:ed:c0:ba:81:0b:61:14:1f:97:d7:60:fe:54:4e:
06:96:d7:b9:7b:56:e5:e6:82:bc:f3:1f:6b:93:a6:d2:aa:d9:
cf:f3:3a:b9:83:9e:21:df:de:68:34:e2:d8:2f:bd:14:e5:73:
31:ca:ff:91:ea:8e:69:b7:d2:14:f8:6f:2f:c7:1e:76:87:98:
53:ab:19:49:f7:78:8a:36:92:bf:c7:6a:9f:9a:4e:0b:6c:49:
0e:e7:30:f2:4d:53:c5:6e:1c:99:c2:5c:01:67:ba:c6:6c:ba:
76:c6:f3:07:56:02:75:45:15:2c:1a:ba:73:f3:81:0b:95:9d:
91:d0:4e:73:90:bc:f4:3d:b9:1c:ea:9c:83:ce:03:28:da:e7:
e3:fb:5e:cb:ee:bc:15:42:11:15:0e:78:f5:90:75:36:95:76:
19:b2:bf:0b:38:0b:2c:9a:fb:45:99:73:70:17:2f:e2:db:3d:
7f:e9:4b:06:7c:ec:bf:5a:6c:0a:7b:0a:ed:5f:95:19:3b:70:
af:3c:53:a2:d8:a7:62:10:4d:19:e5:ac:72:72:65:41:6a:18:
b4:52:87:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:46:47 2026 by rpki-client