Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
File: k680jsWk5l4MsTeCGuahOe1_rAA.mft (raw, json)
Hash identifier: PSSnqBi3CjrH2VpT09x2YXeRI2e4j675nVuNT4RlsQA=
Subject key identifier: 43:23:4C:F9:68:0F:0B:DE:62:29:01:2C:5A:5B:E1:61:18:5B:A0:57
Authority key identifier: 93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
Certificate issuer: /CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Certificate serial: 019D26289F108E611AF59AC0749E0C66C8BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
Manifest number: 1816
Signing time: Wed 25 Mar 2026 18:01:29 +0000
Manifest this update: Wed 25 Mar 2026 18:01:29 +0000
Manifest next update: Thu 26 Mar 2026 18:01:29 +0000
Files and hashes: 1: k680jsWk5l4MsTeCGuahOe1_rAA.crl (hash: WeNULz+fGxK6GcFEzhMmgpPBajWAYWa0MdOZybD2caY=)
2: qZQDb_OLECs9_cvzC4NvW-jUYJY.roa (hash: Xte6c3KnBqX3Xm7/vG9ebJ4eg8ffxrvgU6w78IU7x5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:9f:10:8e:61:1a:f5:9a:c0:74:9e:0c:66:c8:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Validity
Not Before: Mar 25 18:01:29 2026 GMT
Not After : Mar 26 18:01:29 2026 GMT
Subject: CN=43234cf9680f0bde6229012c5a5be161185ba057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:36:27:e7:1f:ab:db:cd:5a:43:00:51:60:2a:
c9:02:1f:a4:48:45:94:e3:1c:d2:55:dc:83:c5:0d:
f0:d6:eb:26:ab:07:f9:19:60:87:38:12:f4:5a:75:
d2:5a:29:83:84:5d:11:eb:31:17:71:fc:81:91:61:
2d:0e:19:47:b5:38:b0:9a:aa:44:51:17:73:25:0c:
96:a2:4c:3b:96:f3:8f:fe:f7:fa:11:4b:f8:89:5f:
0c:43:90:01:55:3f:ab:37:d1:2f:5d:40:64:02:5e:
7d:e1:e6:2c:82:0e:b4:3a:8b:d2:e5:f0:2c:dd:83:
b8:ff:c1:c7:de:aa:5b:a4:fb:6a:64:2d:6f:ae:9c:
f9:b3:b3:ed:ee:0a:a5:19:33:51:de:08:26:f2:93:
f7:0c:9f:0e:b1:2f:ae:75:93:0f:be:3c:bc:66:d7:
a9:16:75:e1:fc:57:0e:8b:ae:4a:86:84:cd:6a:bb:
f7:de:c4:da:b1:e0:cb:5d:12:9a:e6:0e:6e:11:c0:
5c:bd:f8:8f:e0:4a:22:d7:3a:34:23:c2:a3:91:a4:
1f:6d:d8:11:be:de:cb:9f:d5:4b:23:25:be:ca:0a:
a6:3d:76:b3:b0:de:c2:a0:e9:68:80:4d:f5:1c:62:
2f:90:82:4b:4f:41:13:dd:68:28:28:d4:b2:3c:dc:
99:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:23:4C:F9:68:0F:0B:DE:62:29:01:2C:5A:5B:E1:61:18:5B:A0:57
X509v3 Authority Key Identifier:
keyid:93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:98:41:c6:6b:a4:ee:53:a5:5a:21:36:6c:1a:6b:b1:ee:fc:
9e:5d:36:1d:c4:1d:2b:28:40:e2:09:b0:f0:99:8e:24:2b:58:
c7:03:8e:a8:f8:29:0c:86:fe:b2:52:3b:e2:db:d8:1f:a7:c9:
4f:fb:83:2e:e9:2d:88:b2:93:04:6d:a3:9c:c5:dc:f5:d4:25:
b0:4e:40:65:b6:e7:fb:c0:ab:96:8e:94:f1:01:0f:dc:05:21:
7b:bc:e0:33:bb:84:1e:20:a5:c0:98:85:8d:45:a0:65:f3:ad:
8b:2f:a8:55:e1:5e:d7:06:10:03:37:d8:ab:ce:1f:57:30:57:
27:54:e9:04:41:3b:2b:55:01:29:2d:ae:bd:f9:dc:12:bf:69:
78:c6:ed:8f:10:56:6e:8f:a9:80:1a:e0:a4:d5:47:47:53:20:
ad:0a:30:2b:d1:b9:c0:a2:2e:00:67:92:a0:df:65:e8:7e:6d:
e2:3a:5a:c5:a6:7a:8c:a3:4d:b4:6c:3d:d0:83:9c:28:cc:b9:
0b:82:13:6c:4a:9c:e9:67:5e:80:03:1d:dc:66:08:bd:72:2c:
a5:a9:f3:7e:07:ef:8d:93:e6:a2:c0:bb:4a:db:1d:55:fd:bf:
04:b3:cc:49:b8:98:80:fa:b3:cc:68:9c:29:d3:51:0d:29:90:
f8:68:95:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:32:36 2026 by rpki-client