Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
File: ctdCYWpoBB9_D80HkvOOQQOnncI.mft (raw, json)
Hash identifier: qI9xGWEbtrW5gbYy/nOvGja+KP5/MS3d+vTcQ0vRyFI=
Subject key identifier: 7A:E2:75:46:C2:8B:14:26:63:B9:79:5C:D6:24:6E:65:35:BD:03:AC
Authority key identifier: 72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
Certificate issuer: /CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Certificate serial: 019D29299A3D821E21C09299461FE301B717
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
Manifest number: 055A
Signing time: Thu 26 Mar 2026 08:01:25 +0000
Manifest this update: Thu 26 Mar 2026 08:01:25 +0000
Manifest next update: Fri 27 Mar 2026 08:01:25 +0000
Files and hashes: 1: ctdCYWpoBB9_D80HkvOOQQOnncI.crl (hash: uwsgBtjR+AzLWNd8HNK33xie3ZOcRLQKJCvXT4kajJs=)
2: m0MG-eJyS0zFzaAWWkTJJ5qGS-I.roa (hash: Iq+qXgVKWt2Kx6N9DmTJowNt5dRM8IzSViFs0l/+0uY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:9a:3d:82:1e:21:c0:92:99:46:1f:e3:01:b7:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72d742616a68041f7f0fcd0792f38e4103a79dc2
Validity
Not Before: Mar 26 08:01:25 2026 GMT
Not After : Mar 27 08:01:25 2026 GMT
Subject: CN=7ae27546c28b142663b9795cd6246e6535bd03ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d4:e5:7b:8a:08:96:e6:da:65:7e:9e:93:55:
a9:81:f6:82:5f:43:7f:49:b3:c6:81:0f:c5:7a:e0:
e1:e7:b9:42:ad:68:0b:83:9c:ef:ae:b0:b1:07:a1:
ad:cd:63:4b:ee:36:5c:8e:fc:fd:35:64:77:79:c3:
c6:bc:a6:15:c1:a3:5b:00:ce:f9:40:1e:06:7b:06:
ae:ec:45:85:d9:ad:52:42:60:ad:ec:72:62:1b:6e:
ef:b9:86:a4:ef:35:8f:33:1e:e3:63:a0:8d:f1:e6:
fa:90:7c:f7:2f:40:19:32:d2:6a:3f:82:02:24:c7:
49:02:d5:db:e3:4c:97:a0:6c:d5:56:3d:70:db:2b:
b7:f9:3d:8f:75:ba:8d:ff:31:4e:39:db:59:f8:45:
67:c4:bc:61:7a:cb:97:9f:b4:74:22:69:ba:f8:c2:
a2:d5:5d:84:56:e9:7b:df:10:05:e1:d4:e1:db:fe:
d7:d0:2d:1d:4e:a3:ed:8d:6a:6b:c9:06:dd:cf:be:
53:61:88:a6:8e:1e:f5:44:22:55:a3:d4:84:59:e5:
a3:dd:cd:1e:0d:b8:f9:9c:6c:d3:82:20:34:29:42:
0f:4f:c1:48:55:07:a4:a8:e1:3c:e2:c7:23:6b:1e:
f1:14:f1:af:90:52:e3:5a:cd:d0:c8:96:1f:1b:eb:
6c:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:E2:75:46:C2:8B:14:26:63:B9:79:5C:D6:24:6E:65:35:BD:03:AC
X509v3 Authority Key Identifier:
keyid:72:D7:42:61:6A:68:04:1F:7F:0F:CD:07:92:F3:8E:41:03:A7:9D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ctdCYWpoBB9_D80HkvOOQQOnncI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/2bbd21-d147-4c78-8d2e-a209b90f27d9/1/ctdCYWpoBB9_D80HkvOOQQOnncI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:f6:e0:36:77:87:a8:d6:65:7d:55:f4:52:41:57:6a:98:4f:
22:21:85:2c:e8:de:4b:9d:67:2f:bb:95:4b:4d:93:88:3f:38:
26:63:35:26:3c:da:85:ca:61:7c:70:0d:52:e6:ee:fe:d0:f4:
15:cc:c4:78:e9:61:05:29:42:e6:f0:93:58:34:fe:0b:e8:4e:
f6:e2:f8:82:60:3a:05:e0:18:39:7f:f5:44:50:df:7e:ae:96:
24:64:44:6f:29:e6:6d:96:f4:11:ad:0f:40:1e:e7:6f:97:9e:
8c:8a:a3:b0:ce:23:b8:41:09:24:29:08:39:ef:39:42:5a:f1:
99:99:b4:70:4a:5d:ee:56:52:cd:d7:76:22:ef:4b:58:9c:92:
85:d3:59:b0:b6:89:2a:e4:2d:73:13:a1:9d:18:67:2f:35:19:
25:db:79:4c:62:d6:9e:c6:6f:80:51:f5:11:82:e6:af:9e:6a:
12:29:3e:5c:5a:7b:d7:83:42:1b:5a:53:fe:71:34:f9:c4:9a:
1d:35:4f:87:16:4d:67:22:14:dd:33:70:64:2c:e1:73:00:ae:
cc:70:12:bf:3f:47:d1:82:09:36:13:e4:c1:36:e5:58:e7:26:
b5:ff:12:dc:25:15:a6:3d:4c:80:60:9c:b4:1e:e7:3f:0f:65:
1d:12:fc:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pKZo9gh4hwJKZRh/jAbcXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDcyZDc0MjYxNmE2ODA0MWY3ZjBmY2QwNzkyZjM4ZTQxMDNh
NzlkYzIwHhcNMjYwMzI2MDgwMTI1WhcNMjYwMzI3MDgwMTI1WjAzMTEwLwYDVQQD
Eyg3YWUyNzU0NmMyOGIxNDI2NjNiOTc5NWNkNjI0NmU2NTM1YmQwM2FjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdTle4oIlubaZX6ek1WpgfaCX0N/
SbPGgQ/FeuDh57lCrWgLg5zvrrCxB6GtzWNL7jZcjvz9NWR3ecPGvKYVwaNbAM75
QB4Gewau7EWF2a1SQmCt7HJiG27vuYak7zWPMx7jY6CN8eb6kHz3L0AZMtJqP4IC
JMdJAtXb40yXoGzVVj1w2yu3+T2PdbqN/zFOOdtZ+EVnxLxhesuXn7R0Imm6+MKi
1V2EVul73xAF4dTh2/7X0C0dTqPtjWpryQbdz75TYYimjh71RCJVo9SEWeWj3c0e
Dbj5nGzTgiA0KUIPT8FIVQekqOE84scjax7xFPGvkFLjWs3QyJYfG+ts9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHridUbCixQmY7l5XNYkbmU1vQOsMB8GA1UdIwQY
MBaAFHLXQmFqaAQffw/NB5LzjkEDp53CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvY3RkQ1lXcG9CQjlfRDgwSGt2T09RUU9ubmNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8yYmJkMjEtZDE0Ny00Yzc4LThkMmUt
YTIwOWI5MGYyN2Q5LzEvY3RkQ1lXcG9CQjlfRDgwSGt2T09RUU9ubmNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8yYmJkMjEtZDE0Ny00Yzc4LThkMmUtYTIwOWI5MGYyN2Q5
LzEvY3RkQ1lXcG9CQjlfRDgwSGt2T09RUU9ubmNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAO/bgNneH
qNZlfVX0UkFXaphPIiGFLOjeS51nL7uVS02TiD84JmM1JjzahcphfHANUubu/tD0
FczEeOlhBSlC5vCTWDT+C+hO9uL4gmA6BeAYOX/1RFDffq6WJGREbynmbZb0Ea0P
QB7nb5eejIqjsM4juEEJJCkIOe85QlrxmZm0cEpd7lZSzdd2Iu9LWJyShdNZsLaJ
KuQtcxOhnRhnLzUZJdt5TGLWnsZvgFH1EYLmr55qEik+XFp714NCG1pT/nE0+cSa
HTVPhxZNZyIU3TNwZCzhcwCuzHASvz9H0YIJNhPkwTblWOcmtf8S3CUVpj1MgGCc
tB7nPw9lHRL8Sw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:55:39 2026 by rpki-client