Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
File: ss0DX6sYpLeCYURWP2DniYpO8PE.mft (raw, json)
Hash identifier: 63wYjr22jTI0aE1vy4o/8Um/6UklY1FhEnzkOBUU7tA=
Subject key identifier: AF:2D:D5:17:4B:62:76:CD:17:7B:CC:D9:56:2E:6D:56:79:EE:FA:FF
Authority key identifier: B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
Certificate issuer: /CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Certificate serial: 019D29CE7995F9DEAD908046BEE507EF6C4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
Manifest number: 13A4
Signing time: Thu 26 Mar 2026 11:01:30 +0000
Manifest this update: Thu 26 Mar 2026 11:01:30 +0000
Manifest next update: Fri 27 Mar 2026 11:01:30 +0000
Files and hashes: 1: ss0DX6sYpLeCYURWP2DniYpO8PE.crl (hash: dsW9nyXst0noRTtBTINionGjYRPfg/UkVnZoEvQLq84=)
2: tgTwpFfHXIJ-4zvGVktRl18g6vA.roa (hash: kjXIbzNvSA/lR/bgH5uNTLZdXALacffRt33zev7P/mI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 11:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:79:95:f9:de:ad:90:80:46:be:e5:07:ef:6c:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2cd035fab18a4b7826144563f60e7898a4ef0f1
Validity
Not Before: Mar 26 11:01:30 2026 GMT
Not After : Mar 27 11:01:30 2026 GMT
Subject: CN=af2dd5174b6276cd177bccd9562e6d5679eefaff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:f4:30:d3:e5:af:8a:be:2e:e5:1d:07:84:c8:
bd:bb:49:3e:7b:98:01:67:1b:e9:87:52:cc:c4:b6:
07:73:81:f9:78:75:d1:15:a3:e7:64:3e:28:f7:98:
cc:75:d1:fe:04:39:41:6e:56:f3:95:2b:50:da:29:
31:eb:a7:43:fa:16:c3:4d:63:89:8b:b8:50:fd:29:
03:e2:50:ba:4b:45:60:86:94:e6:dd:fd:29:f0:e6:
56:37:82:3a:48:1a:fa:ec:83:0a:b5:ac:d7:2f:25:
14:f7:56:0b:6f:69:c1:52:1c:0d:b9:64:e9:0d:19:
86:6f:b0:9b:fc:92:9e:df:be:7a:e0:ad:2a:f2:5d:
45:32:d7:b2:51:12:00:98:af:28:44:f2:6b:17:7d:
2b:36:dc:cc:06:0f:fe:7e:5b:17:68:4f:43:da:a8:
f1:8b:dc:5f:8b:21:53:92:e2:f0:60:54:dd:4a:6e:
14:2c:51:5e:b7:f5:2e:3b:92:f0:c8:4c:0b:4c:d2:
19:46:48:f2:bf:84:b1:ef:e7:ea:51:d9:aa:fd:ff:
c1:44:5f:d9:d9:8c:6f:71:d9:1f:f0:72:5b:7a:d1:
8e:c9:9e:dc:f9:d7:4d:cb:53:4a:34:1e:33:c5:41:
06:76:db:ce:9c:ad:48:27:2c:f8:b1:9a:e9:e3:17:
26:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:2D:D5:17:4B:62:76:CD:17:7B:CC:D9:56:2E:6D:56:79:EE:FA:FF
X509v3 Authority Key Identifier:
keyid:B2:CD:03:5F:AB:18:A4:B7:82:61:44:56:3F:60:E7:89:8A:4E:F0:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ss0DX6sYpLeCYURWP2DniYpO8PE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/33154b-2941-4f70-8133-d48450521dd9/1/ss0DX6sYpLeCYURWP2DniYpO8PE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:82:30:a0:e9:46:08:a2:5f:5b:a1:76:e4:69:dd:e2:04:9b:
06:27:6b:0f:16:17:de:e1:aa:35:22:c2:89:c8:a9:50:c4:9d:
4b:5e:32:1a:32:9f:4c:aa:1f:b9:3c:f9:e5:db:2e:13:3a:1a:
5a:e5:71:ba:23:e8:89:96:4b:9c:28:e4:48:61:7b:d4:23:a6:
5d:f5:30:8f:8b:10:43:e9:6e:0e:c7:bd:a5:af:fe:76:57:28:
fe:57:f0:1a:c5:ab:38:16:17:57:08:54:4f:f9:47:87:8f:a1:
85:da:10:1f:7d:a2:60:6c:7d:68:0b:7a:52:ce:4f:be:ea:87:
8f:cc:35:83:e7:36:85:12:95:92:b7:4d:0a:24:64:27:86:50:
fe:64:53:48:70:c5:ac:d4:24:a7:63:ea:1a:32:64:2a:4e:ac:
91:f4:7a:18:77:db:e5:3a:c2:43:34:7f:e6:7d:96:40:55:b4:
10:aa:ea:79:1a:98:4c:73:d0:63:9b:75:e5:4b:e2:4c:51:5a:
60:7e:51:af:a2:be:16:9b:c8:4e:d3:f4:33:27:54:a1:f1:a0:
0d:06:12:ed:b0:0a:01:d9:9a:64:26:69:ac:ed:b3:e0:24:5a:
71:15:5e:4e:92:fd:9c:d5:c5:aa:4d:2f:cc:ea:13:1f:a3:70:
c3:eb:53:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:11:16 2026 by rpki-client