Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
File: 1P97rGRNWVZyLl4YOiL7FFXnVUY.mft (raw, json)
Hash identifier: 2tab5+E/8E+7VZNQrTHFOwT2pcSbFCBDqV0E0V+1XRg=
Subject key identifier: 65:07:27:59:35:EF:EE:61:C1:91:B7:7D:00:C1:44:29:C8:A8:14:19
Authority key identifier: D4:FF:7B:AC:64:4D:59:56:72:2E:5E:18:3A:22:FB:14:55:E7:55:46
Certificate issuer: /CN=d4ff7bac644d5956722e5e183a22fb1455e75546
Certificate serial: 019CAE34EA8E3D7E1180489CE7A58F38B581
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
Manifest number: 04D4
Signing time: Mon 02 Mar 2026 11:00:29 +0000
Manifest this update: Mon 02 Mar 2026 11:00:29 +0000
Manifest next update: Tue 03 Mar 2026 11:00:29 +0000
Files and hashes: 1: 1P97rGRNWVZyLl4YOiL7FFXnVUY.crl (hash: OY0QZdS3Mn/YAy0C2dkBRdnOJyPGcVrucFWP2N0sSKI=)
2: nj_5MaQooSjXGiQr1BUruywSxrU.roa (hash: I6PmIQNv3jTKo04VZO+wfcI9Pmj3B2t3GE165A15SFQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:34:ea:8e:3d:7e:11:80:48:9c:e7:a5:8f:38:b5:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4ff7bac644d5956722e5e183a22fb1455e75546
Validity
Not Before: Mar 2 11:00:29 2026 GMT
Not After : Mar 3 11:00:29 2026 GMT
Subject: CN=6507275935efee61c191b77d00c14429c8a81419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ae:7b:a0:79:1f:db:35:e7:3f:b8:8f:50:5f:
cf:34:ce:18:94:80:ea:d4:7b:3e:5f:91:69:35:5a:
2f:6a:41:2b:d1:c0:a3:06:c7:12:c6:38:17:27:2b:
4d:de:2c:61:2f:87:f6:d9:16:c6:a2:d0:c1:19:bb:
dc:c7:62:4a:59:e6:9f:c3:86:01:ec:8f:88:bd:41:
73:91:09:b8:42:b0:05:36:11:b8:85:70:eb:b0:27:
49:b0:bc:1b:f6:1e:c9:a8:fe:6a:90:2d:91:e1:4c:
80:39:74:6f:ae:f7:47:a4:c9:a6:e5:97:23:c2:76:
eb:75:d5:34:9f:29:79:0c:b0:6e:b4:08:8a:1b:50:
3b:1a:1e:6d:b4:67:e6:2c:e8:e5:b5:ed:11:a5:66:
99:5d:06:3d:78:36:67:d6:8a:f6:60:7b:4a:1a:6a:
a1:43:57:fa:99:3c:34:bf:06:25:4a:73:4a:cf:18:
10:ae:35:d6:de:5a:92:53:b4:f3:98:6e:70:28:8f:
f5:f6:d9:5d:43:64:d2:37:6c:79:9c:46:fd:3d:40:
b7:68:ca:62:e0:e5:5b:ae:2a:f3:c7:16:b1:12:3b:
ca:78:2d:a0:a6:7b:7f:68:a1:41:75:db:b6:c2:d8:
90:51:bb:66:b0:28:9b:a0:76:98:49:72:3f:8c:6b:
c7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:07:27:59:35:EF:EE:61:C1:91:B7:7D:00:C1:44:29:C8:A8:14:19
X509v3 Authority Key Identifier:
keyid:D4:FF:7B:AC:64:4D:59:56:72:2E:5E:18:3A:22:FB:14:55:E7:55:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1P97rGRNWVZyLl4YOiL7FFXnVUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/1672d0-5b6d-4115-afb3-880a81b99cc5/1/1P97rGRNWVZyLl4YOiL7FFXnVUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:86:40:80:72:bd:b2:c7:f7:ab:cf:02:c3:2b:5f:f7:de:cc:
a7:9c:f0:65:fb:1a:9e:51:5f:b6:e6:e0:21:6b:15:a9:0c:b1:
6f:3a:3b:af:ce:ef:2d:8c:b6:6b:e1:51:36:7b:12:e7:38:b6:
13:32:85:85:5f:bf:33:d7:23:b9:11:c2:85:ec:25:0a:70:91:
4d:9b:2d:2d:31:73:ca:d6:c4:82:42:c8:49:4c:be:91:33:35:
15:f9:a9:35:73:07:c6:6c:69:ba:4b:49:e2:d1:5b:8c:23:57:
c2:d5:c4:24:79:73:75:e1:65:ab:f3:09:df:1b:eb:71:68:75:
eb:fc:cb:5c:f5:87:cd:42:65:d0:30:3b:7f:3d:4f:95:cb:57:
a0:70:14:1a:46:d3:ce:e5:44:40:85:a7:c9:ea:96:94:d2:ed:
be:04:dd:52:77:05:f7:42:7f:23:9f:64:0f:db:f6:02:65:ea:
03:7f:e8:75:72:29:89:9a:42:d1:ff:1f:58:3a:28:88:b8:28:
68:4f:96:6f:e5:f8:5c:5d:a0:58:73:dc:cd:a2:9f:de:1b:b2:
7b:de:ea:1b:71:f7:3f:05:ac:56:ae:11:9e:0e:69:47:18:f8:
cf:da:c4:87:93:3d:25:2e:7a:6f:b4:af:4e:9f:62:18:c7:83:
26:97:52:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:13:21 2026 by rpki-client