Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: 6wwsiWCLU3fsbuQ2Szt01TaBaOsgzGqw3Kez3WU2ueI=
Subject key identifier: C2:19:CE:F9:94:CA:0D:2A:29:2E:5C:F1:71:CD:27:8C:FE:A3:9F:F8
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 019D273AEDE81FFBA34713C0CE50D8FB8AC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 058F
Signing time: Wed 25 Mar 2026 23:01:06 +0000
Manifest this update: Wed 25 Mar 2026 23:01:06 +0000
Manifest next update: Thu 26 Mar 2026 23:01:06 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: SPgT+vITIq8VMhfWPzA6HFqVfA/TaQMzMwn6uEpnprk=)
2: qTWraqPBRkXUgfYW4gfB3AS-jm0.roa (hash: Rbt0ZTsq9hRwXO+cnDLn20WShDhAg5xFObZyVKiajFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:ed:e8:1f:fb:a3:47:13:c0:ce:50:d8:fb:8a:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Mar 25 23:01:06 2026 GMT
Not After : Mar 26 23:01:06 2026 GMT
Subject: CN=c219cef994ca0d2a292e5cf171cd278cfea39ff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:ce:b1:52:f9:71:35:ea:d1:a8:d5:dd:2c:3a:
1b:ee:7a:db:26:04:83:13:2a:0d:1f:f5:1d:ed:84:
b3:71:fa:a1:0b:3a:a5:83:0c:ef:06:b4:88:85:1f:
5f:eb:e7:5e:cf:cd:e9:8e:48:a3:29:b0:af:f6:15:
87:ce:c6:e5:c5:38:05:f3:71:da:49:e4:c9:00:46:
6c:0f:6b:68:79:bc:cd:f7:f0:62:54:04:48:d6:4f:
62:26:d0:00:7f:40:e9:fe:87:4b:96:04:43:92:d8:
66:25:c0:28:99:1e:25:1b:20:9e:6a:56:c3:f2:d4:
52:7d:45:bb:7b:b2:a7:0b:66:85:a0:06:7d:67:59:
09:74:b1:00:c2:18:b9:4f:cb:3d:b8:2e:cf:81:81:
ce:03:6a:2d:6a:a4:d0:00:33:74:2b:7f:6a:fe:03:
5b:2f:00:d5:21:7f:74:ad:23:1c:b0:76:73:b8:3b:
89:b0:7b:3b:11:68:91:fc:1d:c2:47:70:3f:92:0e:
d2:50:b4:cd:8a:bd:fa:41:2c:a9:58:af:a4:bb:51:
cc:a5:22:f6:4a:8f:27:9b:5d:6b:c8:2b:36:0d:2e:
0e:d3:54:73:90:b9:e2:b3:f2:59:51:73:88:1e:bf:
f4:30:7b:19:dc:9c:02:78:a5:8a:c2:d9:d1:bc:c7:
79:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:19:CE:F9:94:CA:0D:2A:29:2E:5C:F1:71:CD:27:8C:FE:A3:9F:F8
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:1b:7a:da:cb:f4:ca:1d:ca:90:04:fe:01:5b:a9:6d:23:83:
c1:8e:06:ef:33:35:7d:2d:95:21:fa:68:b7:2b:f6:0f:56:71:
a7:d0:52:c4:d3:ae:8c:8e:f8:21:1f:82:bc:f2:2b:9d:1a:61:
31:38:40:4b:27:7f:43:00:78:e5:2f:e9:63:61:b6:0b:a5:87:
22:ac:da:2c:78:8c:d9:42:5e:7d:78:09:c8:81:71:4b:ef:f4:
10:26:32:1f:5e:e8:bb:e2:3e:73:f0:2a:80:de:75:e2:14:7d:
61:ea:e4:92:20:d0:a3:13:3b:2f:60:11:af:e3:9f:9b:11:f6:
75:21:05:5d:40:81:a0:66:f2:ad:c8:46:b8:9a:b9:37:29:26:
cf:b2:d4:37:00:09:21:ab:e8:db:a9:91:28:b4:c2:24:71:ba:
2f:ed:74:43:de:a1:0b:65:ca:57:09:fa:88:35:9d:4f:df:26:
f2:ba:1a:72:f6:a0:d5:52:64:92:09:cd:fd:08:3c:e8:90:8f:
ae:55:09:25:db:60:5b:7c:5f:30:56:c3:3b:a4:60:f0:5f:a0:
49:52:ea:cc:b7:70:28:8d:0d:a3:dd:e5:d5:05:fa:71:a5:aa:
79:98:1d:f3:fe:74:8a:fc:ba:34:41:8d:e7:19:73:ab:eb:c2:
ed:40:ae:50
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOu3oH/ujRxPAzlDY+4rFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzZWRhN2RmMDVmNmRiYTA5ZTM5ZTdkNGJkZWM3YmFlMGVm
ZmJhYjAwHhcNMjYwMzI1MjMwMTA2WhcNMjYwMzI2MjMwMTA2WjAzMTEwLwYDVQQD
EyhjMjE5Y2VmOTk0Y2EwZDJhMjkyZTVjZjE3MWNkMjc4Y2ZlYTM5ZmY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA686xUvlxNerRqNXdLDob7nrbJgSD
EyoNH/Ud7YSzcfqhCzqlgwzvBrSIhR9f6+dez83pjkijKbCv9hWHzsblxTgF83Ha
SeTJAEZsD2toebzN9/BiVARI1k9iJtAAf0Dp/odLlgRDkthmJcAomR4lGyCealbD
8tRSfUW7e7KnC2aFoAZ9Z1kJdLEAwhi5T8s9uC7PgYHOA2otaqTQADN0K39q/gNb
LwDVIX90rSMcsHZzuDuJsHs7EWiR/B3CR3A/kg7SULTNir36QSypWK+ku1HMpSL2
So8nm11ryCs2DS4O01RzkLnis/JZUXOIHr/0MHsZ3JwCeKWKwtnRvMd5iQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMIZzvmUyg0qKS5c8XHNJ4z+o5/4MB8GA1UdIwQY
MBaAFNPtp98F9tugnjnn1L3se64O/7qwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC9kYzY0ZjQtY2ZiYS00ZWZkLWI0ZWQt
Njc2YmVkYjE3NDczLzEvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81NC9kYzY0ZjQtY2ZiYS00ZWZkLWI0ZWQtNjc2YmVkYjE3NDcz
LzEvMC0ybjN3WDIyNkNlT2VmVXZleDdyZzdfdXJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAORt62sv0
yh3KkAT+AVupbSODwY4G7zM1fS2VIfpotyv2D1Zxp9BSxNOujI74IR+CvPIrnRph
MThASyd/QwB45S/pY2G2C6WHIqzaLHiM2UJefXgJyIFxS+/0ECYyH17ou+I+c/Aq
gN514hR9YerkkiDQoxM7L2ARr+OfmxH2dSEFXUCBoGbyrchGuJq5Nykmz7LUNwAJ
Iavo26mRKLTCJHG6L+10Q96hC2XKVwn6iDWdT98m8roacvag1VJkkgnN/Qg86JCP
rlUJJdtgW3xfMFbDO6Rg8F+gSVLqzLdwKI0No93l1QX6caWqeZgd8/50ivy6NEGN
5xlzq+vC7UCuUA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 10:13:02 2026 by rpki-client