Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
File: d7AlLypnrNQplw-mSmQXd29y2NY.mft (raw, json)
Hash identifier: T5I7SLIiXinJJdOF/NYnIcwyqTpjl6EJTZbZiGRyP0Y=
Subject key identifier: 0B:6F:85:2B:C5:C8:AD:BD:7F:27:33:1D:E6:8E:4D:63:E6:9E:38:C4
Authority key identifier: 77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
Certificate issuer: /CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Certificate serial: 019CAA21561574D2245A2D40FD05AD2235E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
Manifest number: 0722
Signing time: Sun 01 Mar 2026 16:00:37 +0000
Manifest this update: Sun 01 Mar 2026 16:00:37 +0000
Manifest next update: Mon 02 Mar 2026 16:00:37 +0000
Files and hashes: 1: GZzLxFCp1bVkiSpEsTLVVr4H9XI.asa (hash: ivqvyTFoXDuekBB8qUC8sgSfxDY8iNPCYAvAp+TmOlY=)
2: d7AlLypnrNQplw-mSmQXd29y2NY.crl (hash: 7aRusblfRoFgUVZU3QLyy97z/uT/W9sC7RaSqS7W+0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 09:38:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:56:15:74:d2:24:5a:2d:40:fd:05:ad:22:35:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77b0252f2a67acd429970fa64a6417776f72d8d6
Validity
Not Before: Mar 1 16:00:37 2026 GMT
Not After : Mar 2 16:00:37 2026 GMT
Subject: CN=0b6f852bc5c8adbd7f27331de68e4d63e69e38c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:92:c9:94:16:3b:53:70:26:f1:4b:de:54:99:
1e:80:42:12:31:5d:dd:ba:bf:58:d6:89:55:51:27:
37:ae:67:fc:4e:bc:b9:f5:e3:30:9f:ca:1f:5a:ce:
a3:56:60:c6:aa:d9:22:d7:ef:b3:71:c4:3c:6b:37:
33:df:41:09:99:19:aa:b5:df:29:a7:fe:e6:11:5b:
12:c2:ba:2c:bf:94:ac:2f:6b:9b:91:29:5f:e0:72:
53:06:c8:05:26:fc:62:e1:58:58:84:9a:54:23:eb:
99:6b:d1:88:08:20:cd:34:ba:bc:dd:6d:8b:61:9e:
2e:e5:00:3c:ff:c9:1b:34:4d:0c:42:86:59:5a:f1:
25:4f:c3:76:b6:b3:05:b3:9c:45:ec:5d:da:f4:15:
4e:06:a5:2f:61:52:21:98:ad:6a:c8:a4:30:bb:4f:
06:29:b7:47:6d:83:c0:1c:23:f5:1a:dc:12:82:05:
e5:b9:42:f6:1a:e2:26:c2:e1:3d:bb:7e:0e:8a:ee:
e6:b4:82:9c:1d:fb:2d:fd:ef:d1:1d:f3:7c:5b:61:
99:8c:0c:59:83:77:90:93:cf:3d:74:e3:86:d9:93:
51:52:8a:99:4f:38:11:a3:c2:75:e0:21:70:4f:64:
ee:eb:cf:94:5b:8b:98:3c:dd:ef:00:fe:00:7f:2d:
c0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:6F:85:2B:C5:C8:AD:BD:7F:27:33:1D:E6:8E:4D:63:E6:9E:38:C4
X509v3 Authority Key Identifier:
keyid:77:B0:25:2F:2A:67:AC:D4:29:97:0F:A6:4A:64:17:77:6F:72:D8:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7AlLypnrNQplw-mSmQXd29y2NY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/296e94-9296-42e5-a4b4-996c529ec986/1/d7AlLypnrNQplw-mSmQXd29y2NY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:79:71:06:7e:9d:0b:d9:cf:58:76:a7:1c:cc:68:c4:05:45:
78:f4:c4:3e:ce:b0:d5:ec:e5:cf:5a:63:2a:ce:83:3a:b9:17:
e6:62:41:fd:11:d6:81:9f:cf:fd:a7:e8:02:be:20:5c:f0:90:
09:ee:14:69:1e:28:c8:4b:40:cf:db:74:11:16:c3:9e:42:67:
4d:8c:b4:7e:2f:db:7c:be:a0:6c:83:5a:03:22:91:19:39:92:
31:31:2c:f0:38:97:07:2c:90:12:bd:7f:bf:52:3f:69:92:36:
42:e9:1a:3c:fb:54:65:73:51:d3:da:39:b8:42:37:76:24:a8:
e4:4c:9a:fb:b6:e1:e0:f2:d4:43:0d:b7:b2:e2:26:f5:73:bd:
1d:51:1f:f9:f0:26:c2:fc:ac:2c:55:0b:5c:32:d7:28:2e:65:
7b:46:05:d0:2b:98:02:e0:f1:a4:c8:d1:ae:1b:cd:79:0b:9d:
3e:bc:ea:68:1c:6e:cd:38:92:78:86:2a:74:38:c3:eb:ca:b5:
e1:78:6b:77:15:43:6d:b1:62:f9:be:28:64:d4:ac:8d:c1:0f:
2d:34:b5:97:26:c4:7d:0d:74:af:9d:ef:5d:e9:aa:cc:4b:e7:
80:cc:dd:5e:bd:84:d5:ac:0d:0f:f4:1e:67:a6:be:b4:68:b7:
b0:de:99:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 20:28:32 2026 by rpki-client