Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
File: 0krezYS7F0i9NbmezqRncuAeyTU.mft (raw, json)
Hash identifier: cv2xosmZWO1HXGRsZ98E8LYzdUcLptcCtJibaEh0kww=
Subject key identifier: 61:88:D7:1A:22:4E:CB:02:EB:24:87:B0:91:94:BD:BB:2A:D2:69:63
Authority key identifier: D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
Certificate issuer: /CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Certificate serial: 019CACB5737903B0E1D709956490E4C122D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 04:01:38 +0000
Manifest this update: Mon 02 Mar 2026 04:01:38 +0000
Manifest next update: Tue 03 Mar 2026 04:01:38 +0000
Files and hashes: 1: 0krezYS7F0i9NbmezqRncuAeyTU.crl (hash: pvzp0ZR8+OtsmSNIjuApXiFk8IAosplaVgPszTWynw4=)
2: THoFRGj7we5B4orPSAEMrZc2v9I.roa (hash: nx8ZhN2tRi/Vu5vUK7/jsnnIAjWNN0LM5ZVA5cvmy60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:73:79:03:b0:e1:d7:09:95:64:90:e4:c1:22:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Validity
Not Before: Mar 2 04:01:38 2026 GMT
Not After : Mar 3 04:01:38 2026 GMT
Subject: CN=6188d71a224ecb02eb2487b09194bdbb2ad26963
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c2:a8:90:6e:10:d2:a7:40:08:5d:fb:e2:70:
0f:94:4b:63:55:7f:19:9d:ac:dc:41:c3:cb:7e:2a:
64:97:da:82:a1:3e:8b:90:d9:e2:df:ac:70:1c:fa:
c8:ca:fd:05:7f:12:a0:29:66:e4:5f:93:20:d6:7d:
77:01:e5:e5:de:89:38:35:c1:73:d7:fa:d7:ee:f7:
25:5e:10:91:9d:f7:4b:b9:a6:e3:13:6f:c9:47:90:
72:8b:5d:98:37:d5:3a:f1:f2:8c:4e:78:3f:cb:ca:
32:f5:1b:65:46:9c:cd:34:8d:6c:8b:b2:cd:35:0e:
2b:7e:e1:af:e4:56:ca:10:f5:6b:67:6b:9e:3a:8a:
ef:ec:fd:5d:ba:a9:de:4d:4e:05:3f:1d:12:ae:01:
02:db:da:c8:7f:68:a7:08:fb:4d:f2:d1:b5:c1:dc:
07:0f:12:00:91:14:50:26:66:c5:5e:98:fa:96:47:
49:34:1f:55:ca:02:b0:8e:6a:7a:ab:c3:9b:04:ae:
81:ed:43:5e:aa:ac:de:61:11:80:3d:fe:47:6a:53:
97:0d:e1:37:3d:71:f0:10:7d:04:42:d2:60:09:05:
09:24:c3:36:af:a3:c7:5e:00:c6:20:a9:c2:1e:69:
54:e9:bb:18:37:a2:d6:1e:c2:5c:62:7a:c7:8f:d7:
99:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:88:D7:1A:22:4E:CB:02:EB:24:87:B0:91:94:BD:BB:2A:D2:69:63
X509v3 Authority Key Identifier:
keyid:D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:cb:76:96:e3:71:7b:e3:75:27:2f:57:65:e6:5e:bd:da:fc:
05:f2:13:46:aa:2a:94:bf:58:f6:f4:42:57:4c:c6:f6:d4:5b:
5f:c3:17:b0:9e:ce:23:64:32:fa:9a:79:f9:a2:b7:7e:40:ad:
10:e3:fe:7d:94:b8:28:93:d4:30:74:4f:a8:27:54:d4:dd:92:
ec:77:f3:5a:13:0a:0e:45:7b:39:9b:bb:84:9e:36:fb:d5:b9:
52:62:0e:02:45:64:7e:21:43:40:16:34:20:f3:5f:3b:72:2d:
98:6c:89:61:b5:db:00:66:6f:c0:9c:2c:6f:7d:9f:ba:67:12:
b6:1c:23:aa:a2:ee:97:dd:7d:cb:f3:1a:cb:b4:6b:f5:34:50:
b2:1d:ae:b0:d1:eb:1a:fc:c0:07:1d:26:9c:21:65:50:d5:d2:
8f:df:df:20:05:24:1d:9d:47:55:c2:8a:e5:18:2a:1b:81:55:
9a:83:e4:29:d9:52:3b:ec:bd:ce:c4:77:15:41:07:49:4b:56:
8c:cf:bf:85:f0:da:d9:c8:4d:bf:b3:08:c3:3a:57:15:f3:49:
01:bb:fa:49:f0:0b:c2:6b:f7:fb:ea:6c:65:37:b5:22:ce:62:
9f:e3:ec:94:dd:86:05:68:10:c1:fd:b8:c8:6b:3e:77:19:47:
61:65:6d:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:26:23 2026 by rpki-client