Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: JQkS9dZ8DOL1pf5Z7GfZk98wuZKV7ZsM2v59NQ2HIEM=
Subject key identifier: 0E:10:C2:71:8D:96:18:D9:7D:55:9A:8B:51:8F:C3:92:9B:8B:1D:B2
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 019D29292E07860BC0379103328107451564
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 15D9
Signing time: Thu 26 Mar 2026 08:00:57 +0000
Manifest this update: Thu 26 Mar 2026 08:00:57 +0000
Manifest next update: Fri 27 Mar 2026 08:00:57 +0000
Files and hashes: 1: 8JPDTRJcWjJC1p6Bup8VRe1Gagc.roa (hash: /UT/Fa23tq8Vnw8GXuEzSsDokpGGbDVoxclf2hd11P4=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: gxVXMFcdIEbb8y4qxbFRdfXLzsBUUjbKZFokFMySXxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:2e:07:86:0b:c0:37:91:03:32:81:07:45:15:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Mar 26 08:00:57 2026 GMT
Not After : Mar 27 08:00:57 2026 GMT
Subject: CN=0e10c2718d9618d97d559a8b518fc3929b8b1db2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:98:a5:bb:35:bc:34:55:00:f9:fc:af:05:a4:
47:f8:da:cd:fa:d8:04:44:28:e0:d7:de:97:b3:2d:
ba:95:05:52:df:6f:6b:1d:82:5f:ef:a6:b2:9b:f0:
52:1a:20:91:d9:27:de:c0:c2:fd:42:d6:58:9d:50:
a3:d9:4a:f0:a8:cc:bb:bc:86:99:3e:8d:d6:93:99:
40:0f:f3:93:2c:5c:8b:1e:dc:50:d0:29:03:96:a7:
97:b9:34:86:1c:2b:59:eb:d9:30:fe:71:b4:bf:69:
6d:e8:86:10:1c:a2:01:51:51:22:0d:47:43:f1:33:
1e:61:5b:95:a9:c8:5d:6e:1f:7a:a3:c4:24:7b:3b:
a7:1b:db:77:eb:7e:72:0a:0a:34:6e:77:91:89:e7:
9d:62:8a:31:1a:d9:f5:6f:b7:c3:79:61:64:30:b8:
7b:b6:5a:8a:a0:48:08:61:e1:5a:da:82:cc:e3:01:
ed:10:81:76:9a:54:66:32:97:ef:58:86:67:ed:18:
b4:34:50:1a:96:75:f8:4d:3a:b4:60:a6:f4:cd:a4:
1a:b6:8b:de:77:62:10:c1:85:7c:95:bd:5c:a7:f2:
00:f4:bb:20:23:c6:81:10:45:f1:e8:3a:8a:ea:bb:
4e:93:74:36:fa:ac:f5:e7:31:56:ab:6c:8a:d1:e4:
f7:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:10:C2:71:8D:96:18:D9:7D:55:9A:8B:51:8F:C3:92:9B:8B:1D:B2
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:a9:d7:a4:27:f8:19:e7:6a:9c:e8:97:4b:f4:7c:7e:18:25:
37:85:00:4a:1b:49:46:23:d4:55:b0:2a:c7:b7:cf:dc:dd:94:
10:17:80:20:5c:b2:4e:17:1d:30:99:f2:b8:e1:1a:5a:8e:7d:
b0:ad:a8:59:ba:29:de:e6:ed:e2:7a:57:6b:db:75:20:bf:79:
f2:72:61:aa:03:db:f4:df:05:cb:e6:1d:62:c0:50:51:80:c5:
7f:06:38:5e:c2:14:54:19:64:2f:50:00:b6:11:52:a9:53:8a:
37:d0:16:3d:3c:11:7f:19:88:34:64:74:33:5e:e0:68:72:3b:
62:6f:37:4d:3e:39:88:00:ec:00:60:84:d9:19:b3:ee:7e:6e:
9d:29:ea:a4:1e:d9:4e:ab:61:78:82:c4:fe:3c:d2:cd:5a:c9:
ba:db:e8:e4:04:48:43:e6:9a:ba:81:b6:ed:eb:68:57:91:dd:
7b:d3:67:2c:f7:29:1b:e8:c4:f5:46:14:7b:34:69:c9:0a:85:
ae:07:ef:56:3c:4c:06:76:e6:e0:13:e1:d0:6a:2f:6b:a1:f5:
2f:81:f8:b9:ad:93:8f:35:82:39:41:ff:91:42:46:c1:08:7e:
c3:4a:8e:a9:e1:4c:4c:00:c0:8a:94:04:72:78:2a:67:47:d6:
25:1b:06:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:10:50 2026 by rpki-client