Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft
File: rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft (raw, json)
Hash identifier: ditudYMf/0NSQvfTEkCZj51uaH8xxsn0RTgWsuwFpgI=
Subject key identifier: D9:79:DD:5B:CF:53:B3:2D:17:CC:B9:E1:8B:47:2D:D3:D0:FB:89:20
Authority key identifier: AD:3C:C1:A7:87:0B:61:0C:35:5C:6E:C2:99:B1:66:ED:AB:A3:DF:04
Certificate issuer: /CN=ad3cc1a7870b610c355c6ec299b166edaba3df04
Certificate serial: 019D3308821AD9CE874E7C69F04D0A2C521F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTzBp4cLYQw1XG7CmbFm7auj3wQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft
Manifest number: 0AD2
Signing time: Sat 28 Mar 2026 06:01:28 +0000
Manifest this update: Sat 28 Mar 2026 06:01:28 +0000
Manifest next update: Sun 29 Mar 2026 06:01:28 +0000
Files and hashes: 1: 1-wQ3YkftdprDoOmlgFZ-QrfGuyY.roa (hash: OqSChaZ/V/EnZPQ5uWZhNV82AGjz1LLNW03PELdqBA4=)
2: rTzBp4cLYQw1XG7CmbFm7auj3wQ.crl (hash: oRl1KIGqfRZ1xQcOQsC9junruIgNB/A0FSJ1hQbGeB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rTzBp4cLYQw1XG7CmbFm7auj3wQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 06:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:08:82:1a:d9:ce:87:4e:7c:69:f0:4d:0a:2c:52:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad3cc1a7870b610c355c6ec299b166edaba3df04
Validity
Not Before: Mar 28 06:01:28 2026 GMT
Not After : Mar 29 06:01:28 2026 GMT
Subject: CN=d979dd5bcf53b32d17ccb9e18b472dd3d0fb8920
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:64:01:f3:8a:d0:59:69:f1:41:66:df:40:94:
3f:e6:59:1a:30:21:82:87:b5:7f:c9:61:9d:03:4d:
a9:e4:09:44:13:d0:2c:98:49:06:2f:1c:4b:36:ea:
73:4b:e6:bb:38:72:3d:e7:39:06:27:73:24:7a:8a:
c9:86:3e:69:37:90:8d:71:ac:82:bc:0c:5a:bd:99:
50:68:2c:e9:53:3a:eb:77:92:0c:76:b7:af:8b:b1:
e2:61:fa:d9:16:ef:6c:50:39:a9:42:a9:ed:ad:28:
18:3c:a9:67:f5:27:b9:cc:a8:5e:aa:2f:61:fd:08:
b1:bc:27:92:b2:27:5f:a2:18:6c:10:8b:14:b6:50:
da:84:04:0f:b0:8e:72:3d:84:6d:51:d5:33:47:41:
df:4d:3b:35:78:34:c4:94:92:cb:8c:3e:d8:d1:0b:
35:df:49:10:ba:bc:87:98:b1:c0:14:cf:20:e5:74:
75:13:7f:3d:4d:f6:c9:58:cf:1b:b6:12:12:a2:ca:
ba:c5:ce:33:59:e5:e1:20:08:df:8f:96:18:2e:fb:
86:73:d6:de:18:c0:fa:60:e8:21:69:5d:67:ea:22:
3a:0f:6e:63:c4:cc:f6:0b:01:ed:0d:b7:cb:d6:e1:
79:f2:87:36:ec:d2:e7:4d:7c:a5:8a:46:bf:f7:19:
9f:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:79:DD:5B:CF:53:B3:2D:17:CC:B9:E1:8B:47:2D:D3:D0:FB:89:20
X509v3 Authority Key Identifier:
keyid:AD:3C:C1:A7:87:0B:61:0C:35:5C:6E:C2:99:B1:66:ED:AB:A3:DF:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTzBp4cLYQw1XG7CmbFm7auj3wQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/3d046c-1178-46a3-82e0-74d56c441dc1/1/rTzBp4cLYQw1XG7CmbFm7auj3wQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:82:6f:5c:ba:71:53:42:6d:c6:bb:30:d3:85:27:df:ee:e0:
a9:b2:40:88:69:ae:53:e3:44:69:45:e7:ad:9d:99:ef:46:c6:
9d:46:1b:14:5d:06:3b:88:20:4f:ba:de:7b:89:b0:7e:77:87:
0b:13:7f:37:bd:33:95:e6:ad:33:5f:ec:ae:8f:2c:1a:0c:bd:
a3:94:b5:2f:a3:22:d2:de:d6:e7:e5:b1:25:0d:e5:88:38:dc:
1a:d4:2e:69:ab:93:a7:77:a4:c7:76:e2:32:20:bc:89:79:fe:
93:29:db:56:08:08:94:1d:c0:2b:82:96:d8:c4:06:45:3b:1b:
87:00:15:fa:04:be:08:9b:f5:30:e0:2f:98:74:5a:25:56:11:
98:2e:e6:1f:b1:e5:58:2b:ad:8e:ed:de:68:58:f3:ad:c7:9e:
e2:97:b7:00:c2:79:57:ee:d3:b8:f1:b6:c8:5e:cb:27:d1:a4:
63:01:c3:ae:7c:c1:0d:b5:35:a5:40:7d:41:77:47:4a:39:8a:
b0:f2:a7:6a:70:6e:1c:31:7b:b5:0b:3d:a6:92:57:d0:ba:ce:
7e:2f:30:52:69:f9:30:ec:23:b8:4a:21:e3:9b:57:44:ff:02:
d2:9d:1c:1f:c8:4e:0b:63:82:12:70:ba:b5:7f:40:34:80:a0:
fa:e6:1e:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:28 2026 by rpki-client