Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
File: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft (raw, json)
Hash identifier: Zru7oIpPZ2yCt4/sT3eWmIH8rihGIvJl9Z22SxO/BPQ=
Subject key identifier: 55:48:D5:D8:48:19:F3:2C:2F:8B:19:FF:3B:87:35:F7:90:C9:01:D5
Authority key identifier: B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
Certificate issuer: /CN=b56daa6f850414a13f650df094506628a46dc12f
Certificate serial: 019CA86A3E46C4CF4ED76F3C6B089EC5B320
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
Manifest number: 1345
Signing time: Sun 01 Mar 2026 08:01:00 +0000
Manifest this update: Sun 01 Mar 2026 08:01:00 +0000
Manifest next update: Mon 02 Mar 2026 08:01:00 +0000
Files and hashes: 1: Dj17YO7HbdYhrlszRZcVGHooOSk.asa (hash: VPbBekLjuZ5VGctqJAL3rNUq/TMi3GHdtgrxOZNiX2M=)
2: WBhYaaB4kDqy4FLyiUVTXgjpHl4.asa (hash: hrsrvdk9deN4qGX+WaTzbPCORj7vib+KcRk6lQ4OTDY=)
3: tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl (hash: M2wRvhBVu5frbrcEJ0yUnrJ/gmB7lDBYbQVIll+oUvA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:6a:3e:46:c4:cf:4e:d7:6f:3c:6b:08:9e:c5:b3:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56daa6f850414a13f650df094506628a46dc12f
Validity
Not Before: Mar 1 08:01:00 2026 GMT
Not After : Mar 2 08:01:00 2026 GMT
Subject: CN=5548d5d84819f32c2f8b19ff3b8735f790c901d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d6:65:eb:6e:a5:00:37:8f:b8:7b:00:7c:64:
4a:f2:62:55:ac:d4:06:6b:4b:b2:14:be:c7:1e:29:
d9:af:ed:75:c0:ae:f8:1c:22:0c:a3:9b:0a:f3:ad:
7b:d3:20:16:0a:93:6d:6d:3e:0c:8f:c8:2f:53:8d:
60:65:2e:a7:c2:8c:4a:00:a2:99:d6:ae:62:1c:99:
d5:3c:b4:a5:b1:a1:f3:e4:02:95:0d:21:3d:f9:46:
05:4c:0b:b5:ac:06:ed:51:c1:66:d8:8d:b5:fb:e3:
69:39:9a:cd:57:b8:02:3a:33:ed:d4:a8:5d:d3:79:
6a:1b:20:dd:90:64:e4:53:8a:19:01:58:cd:a3:00:
85:4d:97:19:9f:d7:f8:a3:36:5b:2f:4d:9f:a8:0c:
af:04:0e:e0:de:5c:e5:7a:8c:f1:64:1b:25:b1:31:
c4:b5:cb:a1:d9:f1:8d:41:f8:22:ff:db:60:83:69:
1b:f7:17:b0:28:9b:10:8e:8c:65:3a:aa:1e:b4:85:
d1:15:25:17:f6:92:e4:9d:d6:22:9b:84:d4:76:f7:
cf:93:c4:2e:38:3f:aa:52:ce:47:d2:2a:3a:70:15:
59:80:07:f8:05:13:6a:f5:e4:16:c3:a3:72:3a:29:
ff:f3:2e:f4:8d:8e:74:c7:b2:d7:8a:ee:10:eb:c0:
57:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:48:D5:D8:48:19:F3:2C:2F:8B:19:FF:3B:87:35:F7:90:C9:01:D5
X509v3 Authority Key Identifier:
keyid:B5:6D:AA:6F:85:04:14:A1:3F:65:0D:F0:94:50:66:28:A4:6D:C1:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/3bee01-1fb8-47e2-b766-fe0a2ac0869f/1/tW2qb4UEFKE_ZQ3wlFBmKKRtwS8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:b6:fb:04:41:18:81:b8:40:c5:6c:09:63:e9:79:64:4c:c7:
91:84:f4:a5:fd:71:63:80:06:0a:d4:1d:81:16:31:f9:84:0d:
da:b6:73:d1:5b:a0:28:87:67:ff:35:dd:7d:19:31:99:af:2e:
0c:8e:23:e5:0f:74:e5:f7:fb:20:5d:bb:d8:b1:b8:62:e9:74:
21:5f:17:7b:7c:96:c7:05:6d:e3:aa:ae:b5:e1:8e:f1:d1:ef:
40:36:9a:16:bc:c7:30:2f:93:91:42:33:bf:ea:e0:e3:0a:84:
f5:96:bd:44:bd:74:23:1c:0c:1d:75:e4:f4:71:40:37:a9:58:
4f:2e:2c:75:ee:29:86:71:13:4c:f6:0a:1f:77:6d:5b:4c:bb:
a4:c9:8e:e3:ac:b8:79:a2:c1:a7:64:cf:de:5b:bc:c8:13:e3:
90:4f:4c:56:9a:0d:39:d9:12:75:44:f1:17:a9:a2:97:e5:a1:
7e:16:cc:ea:af:ea:24:96:58:06:d4:f6:b7:fc:d4:20:11:27:
f9:81:c0:90:58:bd:0b:f7:57:d7:87:e2:a5:1f:21:bd:cc:e0:
7e:4a:1c:42:26:eb:5f:51:57:8d:cd:4d:9e:c6:39:ca:00:b1:
9e:f7:02:81:44:41:f8:5a:da:be:7e:d1:26:f0:45:cc:3f:ed:
fa:ac:e6:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 16:28:32 2026 by rpki-client