Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
File: a1Y13TgCFaA8kwfaViBsVms4o88.mft (raw, json)
Hash identifier: hWtWoMOmqtitpBEWCFBK1TLxtpbfea/VGaCl7frNCsg=
Subject key identifier: 7D:E2:AB:A1:3A:FA:35:23:08:97:9A:F4:3C:97:BD:3C:5D:7A:06:E1
Authority key identifier: 6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF
Certificate issuer: /CN=6b5635dd380215a03c9307da56206c566b38a3cf
Certificate serial: 019D26288E91920C6F6190206FE2DF7D021F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
Manifest number: 15C1
Signing time: Wed 25 Mar 2026 18:01:25 +0000
Manifest this update: Wed 25 Mar 2026 18:01:25 +0000
Manifest next update: Thu 26 Mar 2026 18:01:25 +0000
Files and hashes: 1: 2RPY_DRtkYzxbp8ObFmZTuCpj7I.roa (hash: SWTV6VV0qDNDxzL8a/2qaSf2Dp7oqXVVz/XaDNhIJ2w=)
2: a1Y13TgCFaA8kwfaViBsVms4o88.crl (hash: fQXkvkDMPs1JNxXMftQH2KqQ3Fm0QlJYDYJ0biubX/s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:8e:91:92:0c:6f:61:90:20:6f:e2:df:7d:02:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5635dd380215a03c9307da56206c566b38a3cf
Validity
Not Before: Mar 25 18:01:25 2026 GMT
Not After : Mar 26 18:01:25 2026 GMT
Subject: CN=7de2aba13afa352308979af43c97bd3c5d7a06e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:98:29:33:85:26:e0:73:fc:31:9b:af:60:b5:
08:b4:2f:32:d9:2a:c7:c5:5e:cb:f5:b6:de:ad:c0:
69:57:32:8f:e5:e3:4f:74:4e:62:a1:20:23:1d:88:
bc:f2:56:7f:ce:1f:c6:23:ec:dc:e1:a5:52:39:30:
1f:d7:c6:b8:4e:fd:a1:d0:3d:66:1d:50:ac:b0:ee:
07:c1:53:3f:cf:73:de:a2:31:07:8c:2b:99:6c:fb:
dc:06:b8:a2:ba:88:e7:ee:22:ed:ae:bb:e4:8f:56:
85:3b:49:99:82:92:f1:a7:46:ba:4a:7c:22:ab:29:
2d:be:ee:d2:cd:6e:ea:91:9b:9d:9c:d0:ec:56:68:
53:5c:da:4e:15:a9:b4:e2:dd:a7:46:99:19:71:6c:
a2:6c:5f:ea:21:fc:ba:a0:fd:de:86:2e:c0:23:df:
60:4a:4d:97:10:55:76:c9:f5:d0:e9:b9:13:15:9d:
74:ca:99:52:bb:d6:2d:fb:71:1d:57:15:d4:18:41:
c8:c8:b5:96:f1:5a:47:0c:f8:37:c7:d9:ce:9d:de:
52:12:95:ef:01:9b:52:17:9a:11:cf:f4:8f:22:16:
53:b1:19:f2:2d:ec:bf:6b:6a:ce:13:37:94:bc:d2:
8c:f4:a4:54:d6:1f:30:f2:1e:53:10:00:0f:cc:f6:
90:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E2:AB:A1:3A:FA:35:23:08:97:9A:F4:3C:97:BD:3C:5D:7A:06:E1
X509v3 Authority Key Identifier:
keyid:6B:56:35:DD:38:02:15:A0:3C:93:07:DA:56:20:6C:56:6B:38:A3:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1Y13TgCFaA8kwfaViBsVms4o88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/ac1738-6c67-4204-8901-74748bc93bca/1/a1Y13TgCFaA8kwfaViBsVms4o88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:ac:25:4c:f1:91:da:a2:34:67:25:96:98:5b:ab:05:e9:2e:
e6:8b:e5:b3:5f:d9:fb:a8:5c:50:22:e8:f8:20:af:7d:12:84:
bd:81:53:63:fd:26:bb:88:78:34:28:d7:16:ba:93:56:d3:93:
21:22:2c:c1:b4:e7:eb:75:11:32:26:0b:e5:fc:ae:24:76:a4:
bf:71:5f:92:95:ac:25:1f:b7:da:5a:3b:24:09:e3:c0:d6:84:
ad:46:63:64:06:55:13:35:e3:ee:50:f8:ce:1f:24:50:75:38:
55:2e:98:59:29:bc:8d:83:33:63:87:7d:0e:b2:24:8a:1b:7e:
c6:b0:a4:1a:3e:f7:2f:f9:fa:bf:95:ce:9c:8a:67:33:cd:b1:
92:b5:26:eb:d4:a0:36:45:8d:3a:f3:35:84:1a:73:9f:29:36:
68:56:fb:b9:36:24:03:a9:40:a2:9e:98:a9:a3:5d:f0:75:7d:
3e:46:05:c2:7c:8a:9f:71:1a:57:a6:d5:b0:78:d5:f9:c3:eb:
1a:99:45:2b:3f:5a:80:84:67:9d:14:90:aa:08:37:64:54:51:
16:4b:74:ed:40:65:95:f4:14:25:f4:f8:6b:5e:0a:da:40:05:
d3:24:99:59:6c:d3:0a:14:40:44:55:ef:9e:af:b4:6d:09:65:
21:c4:14:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:28 2026 by rpki-client