Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
File: Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft (raw, json)
Hash identifier: 8sNuWjzIr42UKDUTCRdv/0TWbutdpwkhXEimJKZgy1k=
Subject key identifier: 3F:F7:41:0D:03:3F:E0:A3:F8:BA:40:75:3D:6B:AB:73:94:1D:25:50
Authority key identifier: 32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
Certificate issuer: /CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Certificate serial: 019D2929AE1D3707440D6EBD1EA8D527C6B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
Manifest number: 0568
Signing time: Thu 26 Mar 2026 08:01:30 +0000
Manifest this update: Thu 26 Mar 2026 08:01:30 +0000
Manifest next update: Fri 27 Mar 2026 08:01:30 +0000
Files and hashes: 1: Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl (hash: nSwK/E4fl47LwHPY3SNdx79fdAoWHNB+FAyZ11YRnSU=)
2: zS1zUonEO-G6AM1cws_9_ZwZdJI.roa (hash: NMcUU3mBJ1QzroUYREZhHCEZESdeRv4hJC0eLlS6EkU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:ae:1d:37:07:44:0d:6e:bd:1e:a8:d5:27:c6:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=329dbb46a4eb7645d994a0e4b984fcdac204a484
Validity
Not Before: Mar 26 08:01:30 2026 GMT
Not After : Mar 27 08:01:30 2026 GMT
Subject: CN=3ff7410d033fe0a3f8ba40753d6bab73941d2550
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:da:df:16:c4:98:dc:a1:8a:81:28:e2:47:e6:
fb:a4:fd:ab:96:ec:07:4f:c3:90:f2:45:ad:0f:5b:
c2:cd:b1:4e:b4:e7:be:47:5f:be:4e:ae:e7:f0:47:
44:a2:22:26:50:26:31:ce:a9:2b:cb:86:cb:4e:d2:
b5:88:cd:ad:9f:45:d2:20:fd:79:a7:40:40:3b:62:
58:88:ba:84:ec:1d:9a:43:75:53:03:9e:ed:f7:4b:
46:db:8e:53:a2:f7:93:ab:2b:72:30:b1:a7:b2:d0:
14:42:f4:54:7f:8c:77:29:87:0c:81:2c:d3:23:2a:
1c:ce:81:df:8f:59:9c:98:76:8d:75:d3:c0:36:2c:
62:8d:44:90:fd:3f:74:4d:d5:26:ef:da:66:bd:77:
30:43:d8:7d:f7:22:68:39:00:f8:ff:46:5e:52:ab:
42:c8:c5:d3:e0:b2:16:a3:33:79:65:23:32:3e:48:
ef:c0:a7:9d:a4:3e:36:c0:b7:0b:1b:5b:70:16:6b:
b5:bf:48:88:e3:d2:92:60:02:a7:f2:2b:4f:b0:d3:
01:38:6f:35:d7:1d:36:0e:4c:dc:cb:e4:73:cd:02:
e4:ef:58:59:19:0b:bb:73:1f:51:9b:92:ad:4a:28:
94:0c:ee:43:15:a5:e5:31:cc:f7:1b:b7:cd:da:f9:
96:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F7:41:0D:03:3F:E0:A3:F8:BA:40:75:3D:6B:AB:73:94:1D:25:50
X509v3 Authority Key Identifier:
keyid:32:9D:BB:46:A4:EB:76:45:D9:94:A0:E4:B9:84:FC:DA:C2:04:A4:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mp27RqTrdkXZlKDkuYT82sIEpIQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/f171be-9653-41d8-a344-fec15ab84135/1/Mp27RqTrdkXZlKDkuYT82sIEpIQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
da:7a:f2:f2:7e:78:35:97:dc:85:1b:36:19:ec:c3:af:5b:b0:
de:07:45:8c:7b:ae:cd:1f:ec:19:b9:ea:d0:4f:c2:5e:11:72:
15:ad:d3:d5:0f:07:43:89:eb:59:03:33:cc:16:9e:cd:e8:16:
7a:d5:51:99:26:94:0a:13:32:3a:35:d5:54:e7:d2:3f:99:77:
d5:82:a2:8d:e6:72:1a:a3:4f:e4:72:38:24:10:3b:9d:4c:f3:
0f:80:91:7f:d2:66:bd:d3:f2:8b:f0:7f:2f:7d:7a:9a:5d:4b:
1c:30:ef:f1:eb:a8:77:77:24:32:a6:fd:1e:b2:60:dd:47:ed:
50:17:0f:9e:a1:4d:0b:15:d3:c7:3d:1b:7c:20:4b:db:32:96:
89:90:83:ec:41:fe:c0:57:f9:c7:6c:f4:71:a2:72:8d:61:5c:
64:87:68:c2:56:f7:94:10:d1:59:3a:09:b4:16:a3:b8:4a:db:
41:44:6a:13:81:ee:b4:fe:05:a3:d0:90:a5:57:0e:b3:76:88:
80:d4:8e:9d:13:f6:17:ec:9c:65:3c:bc:e4:4c:ab:84:67:33:
a9:2a:be:d1:ef:24:c1:44:d4:30:ad:03:2e:dd:69:43:66:52:
09:b5:43:00:fd:da:33:dd:b8:80:dd:43:56:68:fe:d0:bb:42:
05:cc:dd:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:36:22 2026 by rpki-client