Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
File: aTHX56mXSaOF6usn-FCridqPLuA.mft (raw, json)
Hash identifier: /1O3/shJubzaUEk/emgmwacZ2ZHPjW31V+rR5LhBPSI=
Subject key identifier: 2D:9A:DC:3F:A9:65:51:15:DC:F6:5A:4B:51:97:37:BC:84:81:97:A9
Authority key identifier: 69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
Certificate issuer: /CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Certificate serial: 019D29610B30B5287D44E0A77B99ECFA347A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
Manifest number: 07C5
Signing time: Thu 26 Mar 2026 09:01:58 +0000
Manifest this update: Thu 26 Mar 2026 09:01:58 +0000
Manifest next update: Fri 27 Mar 2026 09:01:58 +0000
Files and hashes: 1: aTHX56mXSaOF6usn-FCridqPLuA.crl (hash: 2Adfrk16c4QGVnoPYLUO9nGxfIlZR8WNPo5MAyQgVUQ=)
2: oJbVnfo8nfXDxx0xOHsViY24X4g.roa (hash: uemM8M2q02VORXRg6zfmvzJH/l3Oxb3V5/KirOrQjq0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:0b:30:b5:28:7d:44:e0:a7:7b:99:ec:fa:34:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6931d7e7a99749a385eaeb27f850ab89da8f2ee0
Validity
Not Before: Mar 26 09:01:58 2026 GMT
Not After : Mar 27 09:01:58 2026 GMT
Subject: CN=2d9adc3fa9655115dcf65a4b519737bc848197a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:0a:e7:88:54:a9:9f:ca:86:31:7c:44:11:98:
f4:2f:09:3a:c5:8b:55:be:68:83:76:63:22:e6:33:
4d:ae:05:08:71:eb:73:1a:40:2f:26:5c:8b:c8:77:
62:7b:08:8d:fa:c9:95:9b:4c:8b:90:e9:00:ec:e1:
ad:41:e5:7a:67:56:45:bb:73:26:91:89:19:4d:d1:
09:77:86:4c:6b:bb:47:46:11:2e:b3:d6:95:39:51:
b6:8f:4b:0e:81:c4:22:a2:8f:1f:10:bd:86:e4:da:
49:c9:2a:96:48:a3:02:98:94:6c:e9:46:08:e4:4b:
8e:e2:df:a7:aa:3a:8c:38:ef:6a:a6:96:a3:e7:05:
e9:7d:d1:38:1a:83:29:a2:76:27:26:b4:cb:bc:8a:
38:af:76:91:e3:5d:07:e4:d2:71:7f:cd:b0:8b:e4:
c2:d4:a6:e4:86:b8:47:7a:b9:ae:24:06:2f:c2:73:
56:77:c8:67:3f:4e:46:2d:6c:fe:4c:b6:36:6f:01:
87:5c:34:d9:8b:b1:25:44:f4:ff:b3:46:44:2d:c6:
b2:0b:02:9f:ff:7d:e2:77:46:81:ca:41:1c:e6:88:
1a:46:a1:29:20:39:93:db:32:cb:7e:03:89:ad:b1:
86:08:ce:86:c3:ab:e8:2b:b9:48:52:2d:01:c9:5c:
91:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:9A:DC:3F:A9:65:51:15:DC:F6:5A:4B:51:97:37:BC:84:81:97:A9
X509v3 Authority Key Identifier:
keyid:69:31:D7:E7:A9:97:49:A3:85:EA:EB:27:F8:50:AB:89:DA:8F:2E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aTHX56mXSaOF6usn-FCridqPLuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/8cfd73-1257-4dfa-8c59-76ae42356ce5/1/aTHX56mXSaOF6usn-FCridqPLuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:2f:3f:70:a2:62:02:84:8b:74:ad:41:15:b2:3b:d1:92:9a:
5f:68:2e:88:ba:db:d1:cd:4b:06:15:77:7f:30:60:04:37:25:
45:89:00:d6:6c:34:e3:38:3d:70:6b:2f:7f:1f:03:23:7f:ad:
e9:b6:6b:08:61:17:87:ce:b2:57:b2:6c:bd:a6:b4:6a:54:09:
27:68:96:6a:bf:5d:5e:24:50:c7:75:63:6d:ea:9c:21:4c:ba:
5f:f5:2e:db:af:9f:4d:34:3e:a1:06:52:bd:69:b6:2e:3b:ce:
87:a4:83:6d:3b:b3:eb:29:73:a4:2d:47:8b:f7:34:3a:8f:64:
94:95:bd:78:d4:8f:02:3b:00:bc:b7:53:e3:f6:e4:89:2d:9b:
fb:a1:03:d8:5c:eb:35:e4:79:1b:12:61:f2:a8:79:92:6c:80:
57:11:32:97:71:7c:0b:e2:6c:20:8f:82:b9:d3:1a:d9:08:e4:
44:a0:57:1f:81:4f:34:05:ad:55:5a:63:37:f4:80:17:38:5c:
b3:07:bd:45:37:ff:da:3c:2f:57:50:8b:83:15:0b:c8:db:4f:
c7:37:08:b6:98:b7:cf:56:ca:07:e2:c9:8b:55:fd:b8:2a:54:
17:32:2d:49:95:73:f1:a6:1b:c8:db:db:df:d9:9d:d8:6a:35:
e7:7b:b7:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:32:19 2026 by rpki-client