Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
File: drTT6JcTIsZNegRYurdFqJreTeU.mft (raw, json)
Hash identifier: umeDup+EiF1fkh3/6gz28YrEQ23QJGEtVjvyVOtMHRo=
Subject key identifier: BD:1F:1B:6B:B6:FE:8D:4E:D0:BF:84:05:AD:BF:43:2D:71:B4:C2:C6
Authority key identifier: 76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
Certificate issuer: /CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Certificate serial: 019D25F1A75DE0E2B8E96C5140F62736282B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
Manifest number: 0509
Signing time: Wed 25 Mar 2026 17:01:27 +0000
Manifest this update: Wed 25 Mar 2026 17:01:27 +0000
Manifest next update: Thu 26 Mar 2026 17:01:27 +0000
Files and hashes: 1: NO_NOdGhUi5NICPHN4YOqAZOhY8.roa (hash: hIEwCBK/f7i0yd0wKuRkHoyv+CruT7SE0rJgvqMAHUw=)
2: drTT6JcTIsZNegRYurdFqJreTeU.crl (hash: sImyGhLdrwZI+81cMKsBD0kVjoo+LlomRzASS3xpVSU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:a7:5d:e0:e2:b8:e9:6c:51:40:f6:27:36:28:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76b4d3e8971322c64d7a0458bab745a89ade4de5
Validity
Not Before: Mar 25 17:01:27 2026 GMT
Not After : Mar 26 17:01:27 2026 GMT
Subject: CN=bd1f1b6bb6fe8d4ed0bf8405adbf432d71b4c2c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f0:67:50:fe:83:10:b8:6a:f5:ae:f9:6b:50:
53:ca:2b:ad:53:d8:c1:c8:92:0a:69:5c:6d:05:cb:
e8:83:03:3d:13:34:49:ab:22:27:f7:df:cf:42:7d:
fd:b5:4a:3a:37:b2:9c:0c:a5:c8:97:be:eb:0a:26:
75:85:56:55:9c:1c:77:b7:47:14:75:5a:a3:81:cb:
70:02:bb:1f:a1:4a:c0:40:6d:c0:e1:74:d5:7c:09:
d5:55:a2:63:67:42:e4:65:91:fa:ad:01:d4:83:ce:
ec:ea:30:8b:a0:9c:93:f0:82:7e:ff:10:18:39:3e:
74:94:ec:67:65:5b:71:a3:0b:f8:73:54:3d:01:6b:
05:80:fc:31:d9:d5:a1:0c:3a:96:1b:a0:c8:cf:c4:
fc:05:f7:1f:fc:6e:10:5e:a7:46:45:1d:63:54:c2:
09:08:e9:08:ec:ff:fb:c6:54:a9:71:7c:ec:ae:05:
60:86:41:a8:a8:03:d0:30:9d:20:58:e1:3a:9c:f1:
78:a2:ea:0a:38:b0:ae:60:c3:14:14:89:cb:f6:f6:
97:ef:4f:b4:94:29:11:8e:32:03:7f:80:1f:32:b3:
04:c3:41:ee:16:4d:7b:06:5f:00:b1:fe:28:9a:9c:
5f:c0:01:cd:9d:af:01:3d:cf:87:32:13:a9:10:c0:
bc:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1F:1B:6B:B6:FE:8D:4E:D0:BF:84:05:AD:BF:43:2D:71:B4:C2:C6
X509v3 Authority Key Identifier:
keyid:76:B4:D3:E8:97:13:22:C6:4D:7A:04:58:BA:B7:45:A8:9A:DE:4D:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/drTT6JcTIsZNegRYurdFqJreTeU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/8957eb-f492-43cb-a603-b626f331492f/1/drTT6JcTIsZNegRYurdFqJreTeU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:cc:43:2e:ad:e1:cc:af:30:35:35:e4:2d:c4:5d:c9:66:23:
f7:dd:4d:f1:b3:54:fd:df:3c:b5:2b:1a:72:96:7f:aa:71:ed:
37:77:c4:bc:ac:f7:bc:f2:0a:96:2e:d1:4d:14:83:1e:bd:71:
90:9a:95:9e:df:2d:d4:e1:aa:92:ca:13:6c:20:48:3d:77:39:
10:fe:1d:91:d4:b9:82:a5:16:a9:52:c9:f5:89:db:e5:00:da:
fb:e4:f5:a5:a7:8c:09:dd:9a:0a:3f:52:7a:a4:ce:30:81:fb:
bf:b4:7e:68:07:2d:2c:48:e2:ce:ad:b4:bf:d2:8b:46:46:c9:
f2:95:28:c0:75:cb:a6:09:65:ee:1d:d7:b1:2f:3c:90:17:af:
e3:c9:8f:ca:a6:a8:86:28:44:bc:71:3e:01:d9:60:a3:c5:02:
49:11:23:52:e8:09:9d:58:dc:7d:14:7a:a3:d7:fa:a3:b1:33:
d1:f0:a5:df:be:b4:d0:43:5d:27:39:01:bc:f3:ff:2c:57:c3:
f2:46:4a:a3:66:9d:12:ad:09:84:1e:2a:b3:6f:d0:5a:fe:f1:
2b:f1:8b:df:c7:dc:46:32:6e:d2:55:10:f1:c0:6f:4b:5b:ea:
ac:1b:0c:fe:d5:aa:57:b1:dd:c1:d2:2b:fe:9d:df:d2:4c:51:
16:1a:0e:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:13:47 2026 by rpki-client