Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
File: 24P1T0UTHZIHwhWgmKKmvNb_BQs.mft (raw, json)
Hash identifier: wjC4avDCCiFzgbmMhNSv3hQ3jQGxX0PE3BNwlJe3OcI=
Subject key identifier: 9B:81:B1:6A:E8:C6:D8:7D:79:DB:5C:69:27:6B:1E:82:FF:C8:95:02
Authority key identifier: DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
Certificate issuer: /CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Certificate serial: 019D9A3E2B6948E64E31A231BA43310685AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
Manifest number: 0FBC
Signing time: Fri 17 Apr 2026 07:00:58 +0000
Manifest this update: Fri 17 Apr 2026 07:00:58 +0000
Manifest next update: Sat 18 Apr 2026 07:00:58 +0000
Files and hashes: 1: 0-WmLbEH77lOVqvVQ2YUnN7Nex4.roa (hash: K4clzCUFSq6IN3lmLQlxqL/RcAzKs5Apy7zTYqaaAwc=)
2: 24P1T0UTHZIHwhWgmKKmvNb_BQs.crl (hash: ZCbugKac1ZNPiBTJg37HHOzoOwy8+tRvUunlqd9+CQM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:2b:69:48:e6:4e:31:a2:31:ba:43:31:06:85:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db83f54f45131d9207c215a098a2a6bcd6ff050b
Validity
Not Before: Apr 17 07:00:58 2026 GMT
Not After : Apr 18 07:00:58 2026 GMT
Subject: CN=9b81b16ae8c6d87d79db5c69276b1e82ffc89502
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:6f:be:40:54:14:ae:d8:a2:5f:9b:64:32:19:
a7:00:2b:68:85:d5:92:cf:93:2f:ea:bf:f9:86:99:
5e:aa:d6:db:be:3d:ae:6b:df:c9:d8:09:d8:28:41:
c5:20:28:e7:17:f5:b1:94:a1:a8:94:9b:80:30:fb:
b0:cc:0a:39:3a:98:52:4e:72:45:24:80:7b:2e:d7:
63:11:46:07:93:74:88:fd:b5:46:ef:00:a4:e2:d5:
10:27:cf:d0:d1:26:05:7f:9a:0e:1d:5e:ec:0e:b9:
37:28:fa:99:71:09:89:6a:fd:23:50:3c:51:7e:a7:
15:95:66:fc:17:29:7b:59:6c:13:3d:9c:4e:ef:75:
0e:95:2f:37:59:09:20:a6:88:79:f0:f2:15:cf:ed:
cb:3e:e3:ea:da:5b:f9:ec:30:ff:c2:5a:35:25:ff:
89:85:d6:7a:27:42:be:de:47:5e:bd:9b:81:42:2a:
df:aa:fe:ee:ec:bd:69:b4:76:5f:4d:37:78:fc:cb:
15:d0:e7:5d:0a:5a:de:68:82:da:98:d6:fd:05:68:
2b:ba:a4:54:46:2f:28:23:d0:b5:7d:d9:73:b1:1f:
4d:ef:e5:db:c7:1f:e2:e8:3c:82:08:24:9b:d7:4f:
14:17:3a:58:26:cf:3a:fd:2b:97:c3:5e:75:55:1a:
e5:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:81:B1:6A:E8:C6:D8:7D:79:DB:5C:69:27:6B:1E:82:FF:C8:95:02
X509v3 Authority Key Identifier:
keyid:DB:83:F5:4F:45:13:1D:92:07:C2:15:A0:98:A2:A6:BC:D6:FF:05:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/24P1T0UTHZIHwhWgmKKmvNb_BQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/e50c70-0a70-45ac-9ad4-326764a68cfb/1/24P1T0UTHZIHwhWgmKKmvNb_BQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:64:8f:00:0b:5f:89:ca:e0:8f:da:3e:e2:54:e3:06:02:f7:
5d:17:ac:3b:08:f9:b3:1e:5a:11:11:2b:99:91:a2:0a:09:50:
23:9b:71:3c:77:07:33:a1:ac:11:bb:6a:28:6c:b1:9f:9f:4a:
74:e8:4a:5b:04:83:73:5e:c4:7f:81:17:86:21:95:61:0e:1f:
83:d2:3e:ab:c3:d5:c3:7d:a0:11:ec:32:9b:86:60:fe:5a:17:
78:81:75:13:3c:f4:77:85:6e:aa:02:d8:e4:35:f3:4f:62:df:
20:72:a1:91:f9:e8:c5:2e:83:f7:c5:6f:54:9f:85:23:21:df:
01:bf:be:fd:0a:98:f6:99:5c:34:7f:27:c5:cf:96:72:81:90:
98:2d:bf:0b:14:96:d2:57:ab:b7:60:57:fa:82:ae:3d:17:11:
06:9b:50:90:f5:6b:ac:0a:d7:3a:6a:fc:16:81:87:67:6d:98:
e0:86:e4:f0:80:74:7f:0e:88:94:bf:6f:3c:af:b3:6f:2a:f0:
2f:b0:0b:f9:0a:e1:cc:36:a1:46:a7:86:d6:04:34:86:36:cf:
7f:92:81:18:a7:fc:8a:d9:49:c9:92:a7:17:81:63:40:f3:aa:
04:49:d1:4e:3e:1b:0c:4c:c6:de:20:05:84:bb:39:1a:78:58:
ec:47:dd:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:39:03 2026 by rpki-client