Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft
File: dZ27tMoEMpvFCdbdHNULk1atiQY.mft (raw, json)
Hash identifier: 0q218pqS9okcg++X38siGn/47na6MzKaULOOzXGm4rs=
Subject key identifier: 68:B4:65:B0:0F:36:3D:EA:2E:F6:DC:BD:C3:21:16:39:84:B2:36:19
Authority key identifier: 75:9D:BB:B4:CA:04:32:9B:C5:09:D6:DD:1C:D5:0B:93:56:AD:89:06
Certificate issuer: /CN=759dbbb4ca04329bc509d6dd1cd50b9356ad8906
Certificate serial: 019D2771F31F156D62075DC76306EA0FF635
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft
Manifest number: 020E
Signing time: Thu 26 Mar 2026 00:01:12 +0000
Manifest this update: Thu 26 Mar 2026 00:01:12 +0000
Manifest next update: Fri 27 Mar 2026 00:01:12 +0000
Files and hashes: 1: 5UQnHrIssl-L3tEs4ZaCR-OpgzU.roa (hash: aHEZnc6yTe0TRFc35pEnWkxNreWvfEne2GzfuKDiaPI=)
2: dZ27tMoEMpvFCdbdHNULk1atiQY.crl (hash: dA7iX+cDKuajfIZmJu97i2Sr7oEZ7SBI6+p3QFPTrok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft
rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:f3:1f:15:6d:62:07:5d:c7:63:06:ea:0f:f6:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=759dbbb4ca04329bc509d6dd1cd50b9356ad8906
Validity
Not Before: Mar 26 00:01:12 2026 GMT
Not After : Mar 27 00:01:12 2026 GMT
Subject: CN=68b465b00f363dea2ef6dcbdc321163984b23619
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c1:45:b9:dc:91:bb:43:cd:93:28:c3:69:59:
03:bc:10:7c:0a:77:d7:5c:6a:d4:2e:f7:73:f3:79:
e9:7e:73:d7:95:6b:98:9b:2c:15:c9:e6:fb:d2:97:
b6:97:79:ba:2c:f7:2d:bf:7b:7c:9f:21:e1:41:16:
6e:be:c9:4d:50:2b:cf:eb:71:48:23:3e:8b:5e:70:
ca:a2:e0:ae:da:7d:c8:7b:50:e9:8e:06:3f:2c:11:
64:c7:49:2d:85:88:e2:dc:53:03:02:0c:67:33:28:
71:20:99:1a:6c:f4:b5:ac:cf:a5:a3:7b:1d:f8:07:
5c:b3:50:51:e5:6d:a9:a4:f4:aa:69:a5:51:c8:5f:
73:26:b0:d8:3e:ec:ab:19:83:61:b0:69:25:03:af:
f3:a0:1c:c4:aa:1a:ca:8d:0c:57:d2:38:76:e1:99:
25:fe:be:db:0b:6f:02:96:bf:f0:dd:35:6b:da:f1:
c6:8f:2f:ce:22:8f:af:9f:0c:5a:37:f8:20:ea:c3:
ec:f6:bb:a7:6d:69:2b:fc:71:fc:82:7f:49:73:c2:
d1:40:7c:79:78:e4:87:4f:22:2c:a6:d9:9a:96:31:
a9:44:b8:f2:50:d9:82:3b:cf:c8:49:50:93:a9:b1:
e4:20:3a:dd:83:2f:9f:7e:2f:42:0e:6a:51:a3:4b:
ab:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B4:65:B0:0F:36:3D:EA:2E:F6:DC:BD:C3:21:16:39:84:B2:36:19
X509v3 Authority Key Identifier:
keyid:75:9D:BB:B4:CA:04:32:9B:C5:09:D6:DD:1C:D5:0B:93:56:AD:89:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZ27tMoEMpvFCdbdHNULk1atiQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/3a44a2-7f37-4ef5-b034-a4fc67e1c2fb/1/dZ27tMoEMpvFCdbdHNULk1atiQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:7f:7f:c1:6e:2d:c9:c9:6e:a8:f5:da:b9:42:eb:45:5b:cf:
5d:8f:6b:b5:4a:5f:52:a5:5d:84:b9:52:68:6a:aa:06:6a:a4:
85:a6:e1:5f:c1:31:b4:96:d3:83:53:81:df:a3:79:fe:87:82:
08:89:fa:c3:e9:33:c3:20:9d:b8:88:9d:87:55:7e:1b:b4:83:
87:76:3d:48:11:f7:14:13:7d:84:a8:51:af:6e:c9:3a:06:f1:
eb:f8:a8:e5:c2:0d:2d:82:5b:91:aa:90:13:05:1c:32:d3:8f:
0b:51:f2:59:55:f5:3f:c3:9d:97:10:d2:0c:76:6f:95:1b:00:
b6:74:0f:9d:71:91:77:8b:83:b8:fe:37:58:61:cb:0c:13:0a:
60:3b:32:88:c0:7d:c3:77:32:57:30:c2:20:50:9e:ad:3e:dd:
4c:5c:1f:83:e9:4e:4e:e9:e4:8e:bd:40:51:78:54:2e:5f:dd:
ca:ef:b4:2a:f7:e3:d0:e9:b4:f5:e7:d5:0f:f3:1b:08:04:2b:
2f:77:fa:54:20:65:8e:81:25:8a:54:0e:e4:aa:94:b6:e9:70:
86:2b:26:df:50:16:dd:23:b6:f2:15:28:0a:ca:69:ba:ae:04:
8e:5c:df:d2:d7:44:8f:ba:06:7a:28:3f:b9:1a:76:3a:4d:b3:
47:65:3f:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:25:28 2026 by rpki-client