Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: CEemRJnO04tFTpuwmwR1MxyECkaqsYNF/ywfMKLZ+ZA=
Subject key identifier: C4:53:44:AA:F8:E1:2A:12:6B:B4:42:57:E2:75:2C:93:04:E8:4C:80
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 019D2929AE6AE208D0966D95AAF7DABC9BBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 0590
Signing time: Thu 26 Mar 2026 08:01:30 +0000
Manifest this update: Thu 26 Mar 2026 08:01:30 +0000
Manifest next update: Fri 27 Mar 2026 08:01:30 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: LdJMiLqG02Xfw5ueLc3Z5IFcKwrlP1Csu70V0G9of3U=)
2: qTWraqPBRkXUgfYW4gfB3AS-jm0.roa (hash: Rbt0ZTsq9hRwXO+cnDLn20WShDhAg5xFObZyVKiajFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:ae:6a:e2:08:d0:96:6d:95:aa:f7:da:bc:9b:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Mar 26 08:01:30 2026 GMT
Not After : Mar 27 08:01:30 2026 GMT
Subject: CN=c45344aaf8e12a126bb44257e2752c9304e84c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:2d:89:62:dc:8a:bb:8f:27:cc:a5:d3:6e:69:
46:41:c2:b0:67:44:62:17:7f:86:39:c8:4f:75:84:
74:38:2f:49:2c:98:72:f6:27:62:13:42:67:8f:59:
d3:f6:73:84:a0:fd:18:29:f6:37:1a:2c:4e:1b:f8:
5b:4f:69:49:54:e4:80:46:7c:f3:dd:29:48:be:45:
48:1a:3a:c1:e2:de:98:90:8e:dc:c3:16:a7:a1:17:
eb:f6:bd:f3:66:7f:d3:56:92:10:8c:7e:50:32:3f:
88:4b:de:2a:97:37:ff:d9:02:2b:15:14:ca:6c:f0:
96:35:d8:fb:41:4a:02:88:ce:32:7d:d2:fa:eb:19:
84:2a:0d:49:1e:cb:6a:6e:44:3d:7a:4e:41:62:e0:
76:22:3e:0d:aa:0a:a2:e5:b2:0f:d0:71:59:02:52:
76:a7:69:4a:b1:3b:1a:38:33:c7:bb:46:03:cc:04:
e4:b4:a8:72:43:91:33:20:8e:7f:a1:de:a8:8d:50:
eb:07:ac:95:36:03:98:b6:2c:ed:70:a5:06:de:28:
00:ca:5f:dd:09:8d:6c:39:d2:0e:b3:f5:81:9b:17:
8d:40:ae:71:e2:20:be:82:d5:33:13:a4:87:bf:30:
6c:b5:84:9d:e9:50:8a:09:43:50:ad:c0:3d:81:27:
3f:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:53:44:AA:F8:E1:2A:12:6B:B4:42:57:E2:75:2C:93:04:E8:4C:80
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:80:c3:7b:0d:46:84:07:d2:0b:34:7f:34:69:ba:d1:03:1e:
a4:f5:b3:74:27:23:62:19:6e:fe:c6:cc:0e:ab:98:4a:a5:84:
5c:0f:23:f8:31:3c:5e:76:15:f6:ef:40:31:65:4c:d1:03:4f:
9c:6f:8e:53:84:b2:1c:8e:f6:c5:33:e9:44:ef:e4:58:74:d5:
d3:e1:42:d3:ed:7c:db:43:0c:d5:5a:48:aa:d0:63:4c:59:e3:
df:64:15:33:44:e3:1f:54:d9:49:67:de:72:c5:b5:29:92:64:
fb:49:bf:9a:9a:7b:31:4d:aa:b4:7f:77:0e:f1:ac:07:0d:07:
19:75:65:62:ab:43:18:03:d6:0f:62:5a:26:8c:3d:99:c9:ff:
4a:bd:93:fd:25:78:07:30:36:99:e8:1d:86:83:86:58:73:e6:
24:1d:f3:77:60:ba:93:af:69:a8:6c:6d:f0:a2:90:4c:fe:e0:
d3:31:61:53:70:e7:31:0e:fb:85:93:be:2a:68:76:c3:4c:66:
a2:29:00:29:8d:77:20:9d:0b:14:fa:c1:8b:d7:02:16:5c:c6:
8d:ce:15:1f:26:d2:e7:d1:73:96:9d:93:d6:da:4a:d4:43:48:
77:1d:3e:de:b1:b5:4a:f9:19:c1:00:1e:98:2d:0e:ae:6b:b4:
b0:54:16:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:27:51 2026 by rpki-client