Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
File: D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft (raw, json)
Hash identifier: YsllRSbxSsvsZ2U+DRC1p1l0t/UZUoNTY24cElAhhLM=
Subject key identifier: 0B:03:CC:1B:3E:9A:2A:0A:F9:7F:99:DE:3D:97:E6:12:05:71:DD:6F
Authority key identifier: 0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
Certificate issuer: /CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Certificate serial: 019CAC1014C964B328D000916C53718D8E9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
Manifest number: 1625
Signing time: Mon 02 Mar 2026 01:01:00 +0000
Manifest this update: Mon 02 Mar 2026 01:01:00 +0000
Manifest next update: Tue 03 Mar 2026 01:01:00 +0000
Files and hashes: 1: D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl (hash: VjF5WkKzCDd/LZi1RWwe7HUucO1tGfYKWelNEaB8Hh4=)
2: FVoehWVHfRAM9Wax2PLEzeuzUcQ.roa (hash: jKrRrki3jFgX40lflCLx2Zym5UZldktVdjD6ypmdCdQ=)
3: _FcCRW97Oyy-701A8ky-qnc9PuQ.roa (hash: TPZyrFAeXnN7pauwjeZRrcEQ8uCeSHffzbaYPf3BfAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:14:c9:64:b3:28:d0:00:91:6c:53:71:8d:8e:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f65bd21c683207da0c39fb3798535af49e0bff5
Validity
Not Before: Mar 2 01:01:00 2026 GMT
Not After : Mar 3 01:01:00 2026 GMT
Subject: CN=0b03cc1b3e9a2a0af97f99de3d97e6120571dd6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:7f:00:dd:fe:e3:39:93:8b:2c:79:1a:e1:83:
9a:d5:67:10:38:de:ee:e3:f8:75:20:f8:9c:13:1c:
67:cc:70:a4:3f:c5:21:83:85:6d:1e:71:fa:e8:6e:
77:ce:85:2f:be:11:c8:be:3a:a5:46:c2:3f:fa:80:
e9:20:85:ad:c1:75:dd:26:d8:ea:b3:88:6a:e1:b1:
7d:eb:d6:93:30:00:13:85:f9:b7:60:4e:4e:01:59:
9a:f8:9a:c9:a0:20:e5:03:ef:b3:4e:41:04:c6:12:
9d:a9:8f:10:c3:d9:6a:89:d3:e2:ad:24:bb:a7:a0:
0d:48:d9:81:73:6d:ab:1d:a9:bd:70:fb:b3:a8:5b:
53:d0:49:bd:f3:a3:d6:59:a9:90:b4:96:95:5b:5d:
49:fc:73:d4:b8:36:2b:b4:cd:70:b2:ad:cc:84:e2:
3c:39:dd:ad:75:76:29:20:d0:34:18:11:21:37:62:
7e:86:d7:51:3d:75:76:8e:8d:c9:77:f7:4d:69:95:
34:7d:e3:a2:95:32:26:da:42:b2:61:56:29:e0:92:
ab:28:0e:c2:c3:61:47:91:4e:9f:a4:07:df:f6:da:
b9:a2:55:3b:f3:50:0f:53:0b:ff:22:a0:53:f7:31:
68:a2:93:4b:3f:77:a4:eb:c0:be:d7:3d:3a:98:bb:
e3:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:03:CC:1B:3E:9A:2A:0A:F9:7F:99:DE:3D:97:E6:12:05:71:DD:6F
X509v3 Authority Key Identifier:
keyid:0F:65:BD:21:C6:83:20:7D:A0:C3:9F:B3:79:85:35:AF:49:E0:BF:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D2W9IcaDIH2gw5-zeYU1r0ngv_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/4a999f-d1fa-4887-bae8-e23f10e4b91c/1/D2W9IcaDIH2gw5-zeYU1r0ngv_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:27:81:83:9a:70:53:65:9e:81:8a:ab:2c:da:8b:60:d2:d6:
47:40:b5:a2:48:27:7f:c3:d3:d9:98:15:a7:95:3c:04:18:2e:
f0:ca:1d:53:b7:f4:e2:c5:c9:b2:7a:9b:45:46:22:3a:23:20:
58:55:79:82:3d:fe:d2:0c:90:a5:06:60:06:a1:2c:9d:4b:00:
51:6e:38:d5:e8:f4:72:75:6e:93:08:ab:68:9b:b7:83:89:a9:
e4:9b:fe:e9:de:af:67:58:29:c4:a3:97:9e:ab:06:21:29:6b:
c4:ef:c1:99:3f:b1:a2:7a:cf:2a:14:7b:b6:05:d1:a0:1e:d1:
b8:db:5f:02:64:c2:06:8c:e8:b5:df:83:22:d6:ed:b6:eb:6f:
f6:81:ce:d0:44:dc:2f:cd:54:91:99:c2:74:20:dd:d3:40:40:
c7:b1:90:25:74:fd:09:ae:51:88:a9:19:e2:45:01:43:5c:bd:
84:30:08:48:1a:6e:d2:1a:ca:15:42:2a:8d:49:d3:1f:aa:2b:
e9:d1:87:a0:a4:17:3b:e0:95:12:eb:00:3d:02:25:86:71:32:
cf:f3:c2:ca:c2:c1:38:d3:0b:27:77:f2:bb:a0:64:88:28:6b:
db:16:c2:59:81:7b:e4:b8:7b:88:53:93:2f:14:30:dc:a3:d7:
ba:55:b3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:50:55 2026 by rpki-client