Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
File: ctdCYWpoBB9_D80HkvOOQQOnncI.mft (raw, json)
Hash identifier: RC3jHSHrQlWptWbMmglXuVzGfyGBBPllxOAggoObqc8=
Subject key identifier: F7:99:B8:1C:29:9F:7B:DA:39:E8:44:C1:D7:AA:60:C6:11:F7:A0:33
Authority key identifier: 72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
Certificate issuer: /CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Certificate serial: 019D2B1743A7A3941162113C83586C644EA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
Manifest number: 055B
Signing time: Thu 26 Mar 2026 17:00:38 +0000
Manifest this update: Thu 26 Mar 2026 17:00:38 +0000
Manifest next update: Fri 27 Mar 2026 17:00:38 +0000
Files and hashes: 1: ctdCYWpoBB9_D80HkvOOQQOnncI.crl (hash: dOi0TJpWfGvl1Cjqc9+Nv98vIcJrEO+g/c5sY3fkCR8=)
2: m0MG-eJyS0zFzaAWWkTJJ5qGS-I.roa (hash: Iq+qXgVKWt2Kx6N9DmTJowNt5dRM8IzSViFs0l/+0uY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:17:43:a7:a3:94:11:62:11:3c:83:58:6c:64:4e:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Validity
Not Before: Mar 26 17:00:38 2026 GMT
Not After : Mar 27 17:00:38 2026 GMT
Subject: CN=f799b81c299f7bda39e844c1d7aa60c611f7a033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:67:db:57:ce:81:e5:23:f5:68:f8:87:09:4f:
f6:ab:16:0e:61:22:c0:94:b9:6c:a3:00:8c:04:4d:
57:06:b4:ed:d3:5e:fd:19:d7:7b:48:81:19:2b:37:
3b:f6:e6:7f:0a:7a:21:24:0d:d2:3b:3f:a8:43:13:
6a:b4:f1:f5:ac:2a:2e:92:7e:c6:63:70:a9:54:ba:
91:ab:fc:3e:f6:5c:de:db:fc:85:4e:e6:74:26:be:
a7:84:cb:bc:8f:a6:4d:70:da:a5:1d:e5:08:d6:16:
17:f2:71:50:f0:a8:32:50:fd:6f:f8:b6:c4:2e:63:
1f:27:ab:29:d7:b7:2a:79:bb:8e:31:d5:27:4c:02:
6e:82:c4:c7:29:48:51:28:3b:d8:9a:c6:f2:c5:06:
e1:a3:86:72:32:eb:b2:cd:ee:74:01:72:3a:16:23:
2e:66:9d:19:c7:f0:39:53:b3:7f:5b:2c:96:f8:6e:
ec:fb:b1:4f:9c:d5:ea:80:27:b3:a6:32:4f:1a:f8:
84:57:2c:60:a5:be:30:e8:6e:8d:d1:f5:80:b5:ed:
fb:4d:2f:57:70:4f:07:86:c2:9c:1c:31:8c:1c:d8:
c5:82:8c:63:2d:34:9e:05:bd:85:bf:69:c7:16:a4:
70:9d:2e:38:c1:cf:be:24:bb:e0:1f:1c:ae:c6:4d:
1f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:99:B8:1C:29:9F:7B:DA:39:E8:44:C1:D7:AA:60:C6:11:F7:A0:33
X509v3 Authority Key Identifier:
keyid:72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:97:eb:55:cf:85:75:d2:93:31:bc:e2:b6:1b:11:f1:f6:cb:
84:04:84:63:17:21:28:00:2f:8a:34:b1:c4:45:9b:9e:a4:56:
6c:9a:e4:8f:2e:ca:66:ad:be:d8:e5:3a:c1:c7:05:3b:58:bb:
09:a9:79:06:2f:70:ee:f4:f6:31:ad:b0:5a:44:6c:e9:48:db:
77:85:41:72:cf:f7:30:d1:e6:09:e1:15:ed:97:41:e5:0e:61:
23:c2:3a:d7:eb:d3:ae:bd:1e:fb:9a:db:ba:10:8e:14:1b:ca:
ab:9d:51:1c:34:e1:e7:e8:39:83:24:96:73:1d:9b:0b:84:41:
6f:05:29:12:31:5d:99:58:fe:d7:66:e1:9a:eb:27:29:e6:88:
ac:e3:89:66:33:a2:99:2f:ae:fc:6b:bb:b1:b4:f8:6d:41:53:
f4:f5:c0:ea:6a:03:67:91:3f:d8:4f:1b:a4:6b:fa:07:26:74:
4d:f7:50:39:e5:79:2c:9b:65:70:ba:46:b6:e3:96:b2:35:1c:
2a:45:eb:1c:ea:b6:40:00:d9:da:d7:91:17:bf:49:62:fa:b0:
59:86:52:e2:63:76:18:f9:96:e3:63:e0:ae:1e:e2:86:cc:21:
f4:ec:ad:8b:5c:68:f0:91:2a:af:3c:a0:64:01:fc:a5:89:11:
3e:e0:a1:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 01:07:18 2026 by rpki-client