Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/f5634f-c49f-4d9a-9534-1756887dd4cb/1/rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.mft
File: rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.mft (raw, json)
Hash identifier: dnqh/u5t8MO2TQ6J2X1mZ8EGmChzKggFWbvE3waFw1s=
Subject key identifier: 64:E2:8C:58:DC:E5:7B:A1:9E:63:67:2C:81:2C:90:68:BE:67:BF:02
Authority key identifier: AC:82:C9:DD:9D:6C:CF:B3:8C:A1:16:40:E1:02:F7:51:AE:27:49:27
Certificate issuer: /CN=ac82c9dd9d6ccfb38ca11640e102f751ae274927
Certificate serial: 019D29616551BB3AC5FD833B2FBCFC410162
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/f5634f-c49f-4d9a-9534-1756887dd4cb/1/rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.mft
Manifest number: 2A
Signing time: Thu 26 Mar 2026 09:02:21 +0000
Manifest this update: Thu 26 Mar 2026 09:02:21 +0000
Manifest next update: Fri 27 Mar 2026 09:02:21 +0000
Files and hashes: 1: 901QMZpj9kYGQic0ByuIClQsnbM.roa (hash: eHYj3OQYCMndtclY/uYQGqhf0cxoZxOoh8ZvXynsiaw=)
2: rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.crl (hash: viN5xPJ3nEQXfyAbRsNnvMEwWdu1aCZ7gASJ51yXocQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/f5634f-c49f-4d9a-9534-1756887dd4cb/1/rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/f5634f-c49f-4d9a-9534-1756887dd4cb/1/rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:65:51:bb:3a:c5:fd:83:3b:2f:bc:fc:41:01:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac82c9dd9d6ccfb38ca11640e102f751ae274927
Validity
Not Before: Mar 26 09:02:21 2026 GMT
Not After : Mar 27 09:02:21 2026 GMT
Subject: CN=64e28c58dce57ba19e63672c812c9068be67bf02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:73:99:2b:6d:4b:f8:b8:47:01:65:b0:e3:e2:
84:ae:67:27:8f:36:bd:8f:e4:65:f6:db:8b:cb:38:
61:a7:b5:9e:04:76:e8:d4:99:bb:2e:c2:de:ba:fe:
a6:e6:44:2d:1e:f0:a9:dc:8f:a6:a1:01:35:22:5e:
90:90:c0:22:ad:da:b3:fd:a5:1d:8d:c2:a2:64:0b:
94:83:c0:e3:fa:ab:cf:a2:26:6a:0e:20:c5:8b:dc:
4c:2f:14:09:bf:4d:0d:db:0f:da:40:95:77:46:45:
d6:fb:57:44:11:e4:5c:78:ef:2d:60:e6:96:15:ed:
71:14:e5:68:a8:eb:20:0a:8e:41:3e:c4:49:f7:61:
f8:f1:74:e9:8b:a6:33:44:a9:06:7d:d6:b3:c8:0b:
17:04:3e:c6:64:90:05:e9:bc:c2:59:72:ee:23:39:
c4:b8:47:82:c7:73:03:25:bb:b5:cd:f2:6f:9a:8f:
14:77:b6:6b:6d:e7:98:b8:3f:3c:78:2e:d8:05:df:
79:16:cb:0b:dc:1f:7b:a1:1e:ba:03:90:90:75:3a:
5d:ed:38:11:51:bf:2a:92:e7:89:2c:d2:c9:ff:c5:
b7:04:21:77:ce:06:c8:af:fb:22:fe:82:c9:b6:9d:
25:9e:5d:3a:fd:9a:08:25:b5:88:ac:b6:77:07:9e:
d9:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:E2:8C:58:DC:E5:7B:A1:9E:63:67:2C:81:2C:90:68:BE:67:BF:02
X509v3 Authority Key Identifier:
keyid:AC:82:C9:DD:9D:6C:CF:B3:8C:A1:16:40:E1:02:F7:51:AE:27:49:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/f5634f-c49f-4d9a-9534-1756887dd4cb/1/rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/f5634f-c49f-4d9a-9534-1756887dd4cb/1/rILJ3Z1sz7OMoRZA4QL3Ua4nSSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:11:f7:2b:1a:6e:18:08:f0:01:c4:40:eb:38:26:1f:25:dc:
4e:cd:71:58:12:5b:5a:2f:f9:86:f6:24:d8:37:58:64:5d:14:
ba:e3:b7:28:7a:29:d5:21:0a:c2:b1:c2:eb:db:8f:53:4d:72:
f8:9b:00:85:a9:67:15:a4:8d:82:79:ef:2c:8b:36:54:1b:23:
11:12:fa:5f:a6:fe:b5:5c:7a:61:5e:14:a3:4b:44:c2:da:60:
a5:f8:e3:89:db:68:37:f2:6a:f3:25:62:d9:1e:7d:a4:65:17:
27:aa:59:af:21:50:73:b6:5b:28:3a:0b:22:0d:eb:a4:94:ab:
91:7c:b8:bb:60:9b:64:d6:f4:4c:31:f1:00:eb:ee:3b:61:03:
fa:64:be:0b:e6:8b:36:99:b5:81:ac:8e:cc:35:4f:23:43:e6:
5e:83:d7:27:a4:0c:28:05:f2:39:77:a1:37:97:ab:4c:fc:41:
5e:5b:57:c5:0c:23:f5:7b:a1:4b:b1:96:ea:8b:4e:f7:68:88:
00:35:84:b8:95:68:dd:76:83:07:c2:97:32:64:80:de:92:a3:
11:29:ed:59:8f:10:d0:0d:00:d3:fc:70:a8:94:ea:f1:c2:43:
57:57:59:90:67:9e:62:48:d2:ff:92:50:82:4e:07:e8:09:e3:
17:81:50:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:06:45 2026 by rpki-client