Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
File: tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft (raw, json)
Hash identifier: LIjsxPsKr0d8bkop2pt8CwpgRIk2YtTYijEFrYOmY7w=
Subject key identifier: 6A:F2:BF:74:5E:59:18:F7:AD:DB:6A:36:0B:88:09:3B:25:F0:DC:25
Authority key identifier: B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
Certificate issuer: /CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Certificate serial: 019D27727F3AFA9D7F75EEBB429E4F8CB2A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
Manifest number: 05B7
Signing time: Thu 26 Mar 2026 00:01:48 +0000
Manifest this update: Thu 26 Mar 2026 00:01:48 +0000
Manifest next update: Fri 27 Mar 2026 00:01:48 +0000
Files and hashes: 1: 0lwIzPsGn14owxvXy7_61u8zBPk.roa (hash: RHYNuusrfwoS7Vg7kp1EMywIH/hGj3OELuZX6uFgB7Q=)
2: tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl (hash: dDI9XSjKfo7AyyI8e+cmdDccj/6I7TKgRbhaS/2vWZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:7f:3a:fa:9d:7f:75:ee:bb:42:9e:4f:8c:b2:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b436c0f0ec8bbedf0f60844dfe4fe939369a4b40
Validity
Not Before: Mar 26 00:01:48 2026 GMT
Not After : Mar 27 00:01:48 2026 GMT
Subject: CN=6af2bf745e5918f7addb6a360b88093b25f0dc25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0a:34:e8:f3:15:37:10:f4:28:91:53:fb:b0:
fe:a8:f0:2a:f7:b6:7c:1b:53:68:44:04:9f:71:a4:
61:96:76:7e:dd:e5:1b:3e:8e:d9:65:d4:31:bd:89:
5f:17:cb:90:61:d8:e6:ba:eb:16:c3:95:b4:42:89:
bc:72:cf:f7:1b:99:db:ce:96:70:9e:05:f1:57:05:
65:f3:4f:90:9d:bb:73:35:cb:98:e3:f2:2c:80:d8:
b1:f5:c5:e8:3b:d9:f2:39:56:4a:31:ac:94:9b:a9:
29:b2:2c:1e:8e:cb:09:21:15:b8:ee:dc:1e:f9:ba:
cb:dd:59:3d:87:60:a8:c5:d3:58:76:0d:2a:43:50:
35:de:84:69:4c:df:bc:da:28:e8:00:14:97:00:1d:
4d:70:ba:c9:d2:7a:b2:3e:33:86:cc:41:86:b0:a2:
74:cb:af:f0:d9:8e:4b:9e:a0:4b:22:16:23:05:75:
f6:02:76:87:81:dd:c4:38:ba:80:02:c1:4b:89:5d:
09:fb:2c:35:23:cc:e7:33:6e:4f:7c:92:42:db:ca:
18:95:5f:f1:7c:94:22:00:5c:f6:df:fb:b9:8e:13:
a5:50:aa:41:20:ab:7e:db:ea:ca:63:89:28:13:58:
d6:3c:a4:e7:d2:3d:73:3c:55:fd:33:f6:d7:bc:12:
c4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:F2:BF:74:5E:59:18:F7:AD:DB:6A:36:0B:88:09:3B:25:F0:DC:25
X509v3 Authority Key Identifier:
keyid:B4:36:C0:F0:EC:8B:BE:DF:0F:60:84:4D:FE:4F:E9:39:36:9A:4B:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tDbA8OyLvt8PYIRN_k_pOTaaS0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/db66ab-70ac-41ad-9958-dd8b5afcee3b/1/tDbA8OyLvt8PYIRN_k_pOTaaS0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:79:d1:c2:4f:60:43:c3:fc:99:94:80:40:cd:ce:f6:38:72:
9d:a1:22:22:03:8d:7a:6f:ba:9e:f3:26:7a:7c:c0:36:34:c8:
5c:7a:bb:b6:ba:50:74:05:cc:ab:d0:10:c3:00:90:86:c4:3f:
0b:66:2b:4d:40:3e:6f:40:75:d1:6e:b1:41:08:e4:fd:80:26:
6e:a4:f1:b6:d8:13:92:18:e5:1a:e1:f4:fc:54:d1:e1:77:80:
ad:5d:3b:8e:2d:64:6f:ae:aa:17:26:41:b4:89:6a:7d:09:ef:
af:2f:e9:bb:99:a8:dc:c1:ec:e3:8b:a4:f3:6b:3d:8d:40:47:
72:68:79:d2:d6:54:4b:b1:71:98:d9:20:df:2b:96:f8:4f:d2:
aa:1e:49:97:e1:29:79:bb:55:07:78:ee:a5:f3:5c:07:6c:9b:
df:6f:07:64:47:e7:e1:57:03:fc:cd:d9:86:4b:cf:fc:e6:8e:
75:4e:b1:4f:a5:c1:f2:5a:0c:1e:5c:ab:43:ca:49:f8:1b:62:
44:a2:3a:49:60:a1:aa:55:48:2a:4f:86:b5:11:d9:38:b7:de:
33:90:be:27:3a:88:06:b7:1c:61:c7:7e:7c:f0:6b:96:bb:87:
99:36:79:91:57:fa:e3:53:1a:32:41:35:6d:57:1b:74:b2:b3:
67:a2:93:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:38:46 2026 by rpki-client