Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json)
Hash identifier: 9PsIbmFkshZO/e98ixl/g+oAKk3UOmQUqrYKDcWlSx8=
Subject key identifier: 25:7B:D7:98:24:22:AA:48:7D:EB:F9:7A:12:52:86:E3:4A:CA:9F:E9
Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Certificate serial: 019CADC81B599B1E0CEA398BA3BA2020FAD6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
Manifest number: 05B3
Signing time: Mon 02 Mar 2026 09:01:38 +0000
Manifest this update: Mon 02 Mar 2026 09:01:38 +0000
Manifest next update: Tue 03 Mar 2026 09:01:38 +0000
Files and hashes: 1: TVDGXyDJKjGf9M2l61hPydz0GW8.roa (hash: GPBRCtJGeJYsInHOu3V8vVubHvszvLhmWvGPlsGdKsk=)
2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: Ckb/hnS8QNwiThMYA5Dm+Pjh9PID1YMbZquz0vTQ6Pk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:1b:59:9b:1e:0c:ea:39:8b:a3:ba:20:20:fa:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Validity
Not Before: Mar 2 09:01:38 2026 GMT
Not After : Mar 3 09:01:38 2026 GMT
Subject: CN=257bd7982422aa487debf97a125286e34aca9fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:79:f5:6c:9d:c5:64:43:59:f4:0b:a3:59:b4:
c0:14:d1:b1:dc:22:2a:8d:80:85:52:41:ae:07:1c:
28:76:51:51:ea:65:46:26:f8:14:2e:58:7c:f5:0b:
55:ee:10:9a:a1:eb:84:5d:f3:66:9f:2c:49:d0:dc:
d4:b6:7e:b7:14:cd:e2:97:df:7e:ce:8e:36:68:1b:
3a:7d:78:1a:e9:77:24:56:5e:06:9c:56:38:58:5e:
86:aa:0c:0c:b2:37:db:2f:62:da:2c:1d:0f:fc:3f:
da:fe:56:81:63:f6:ce:85:14:bb:7a:93:61:ef:9b:
3b:fa:22:85:ff:de:63:8a:18:ca:47:4c:9c:2d:51:
d9:1a:6a:39:26:6d:be:31:e4:f3:58:ae:94:67:37:
dd:6d:f6:46:d6:56:f0:42:2d:8b:02:d4:c1:1a:8b:
25:c5:59:26:8b:0f:c9:c0:7c:82:cf:cd:e9:37:67:
ef:4a:88:65:eb:66:5a:9e:e5:86:47:b9:5b:38:06:
e5:18:14:ed:b0:e8:77:95:69:e6:d0:e9:46:19:07:
96:82:36:4a:ac:d3:84:18:e8:b6:fc:e3:96:2e:40:
2c:57:e4:67:4e:ec:88:60:2b:14:82:34:e2:53:1d:
08:50:00:4f:07:d8:66:e2:3f:22:95:25:a0:22:8c:
fd:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:7B:D7:98:24:22:AA:48:7D:EB:F9:7A:12:52:86:E3:4A:CA:9F:E9
X509v3 Authority Key Identifier:
keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:45:b6:e7:bd:a3:06:3e:79:07:9f:ce:64:54:ed:d1:f4:b9:
2a:5d:d7:ef:a5:14:9b:32:02:4a:53:41:8c:67:c3:c2:50:4f:
07:af:92:9c:d8:b3:07:30:66:51:b3:c7:d8:df:d0:d8:be:e8:
51:68:77:f8:60:78:1a:f0:0d:fa:f4:01:6e:ed:17:87:bf:bb:
41:f9:78:ba:18:ac:c7:a4:16:9c:34:87:07:a7:dc:fd:38:b1:
ab:2c:67:d7:4c:4b:98:88:5f:e5:26:88:94:cd:25:1c:0f:3d:
b6:33:8c:21:5b:b5:a6:a1:eb:b3:98:78:77:18:b4:8f:4c:fe:
5e:1c:70:43:95:21:20:4a:8e:37:5d:dd:ef:c7:2c:d9:48:73:
99:c6:54:7b:79:82:86:2a:3d:dd:1c:c2:4d:a5:c1:84:1d:4d:
91:f0:1d:a9:aa:d8:31:7f:90:7d:99:8d:fb:5a:15:25:f3:9d:
cf:05:cf:83:19:02:f7:61:e9:67:79:ab:32:3f:4d:fc:ce:c0:
1f:2d:c5:97:1f:5b:6b:50:97:4b:ff:4e:57:a0:d9:a2:f7:86:
77:ca:a6:d8:2b:71:64:8f:81:ec:19:09:11:99:c3:22:33:21:
dd:07:70:06:16:0c:af:32:77:a2:4a:e6:5a:fc:7e:24:87:77:
44:4c:d1:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:50:31 2026 by rpki-client