Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
File: MFxE6MlhoUUNCqshLw3scX0d77Y.mft (raw, json)
Hash identifier: ohpmv6ujn7LKNVnGbyM70IaUCWO5oGDPK8Bsp049fxQ=
Subject key identifier: D4:8B:0C:96:D1:22:36:4F:C6:84:20:B1:4F:75:88:60:F8:05:2C:01
Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Certificate serial: 019CAD902488169C48379723F10B16E9E710
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 08:00:30 +0000
Manifest this update: Mon 02 Mar 2026 08:00:30 +0000
Manifest next update: Tue 03 Mar 2026 08:00:30 +0000
Files and hashes: 1: 4s2LfJgezExAwyLPh90eBZdMtsA.roa (hash: QROHTNbuhK/OLqAPPL7ZK974ElG4KehFHzzkBDXusl4=)
2: MFxE6MlhoUUNCqshLw3scX0d77Y.crl (hash: dlKyRXbQOEXMO0Zd7ZsAHpeRCbmqxGzi8DRo6nCB80M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:24:88:16:9c:48:37:97:23:f1:0b:16:e9:e7:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Validity
Not Before: Mar 2 08:00:30 2026 GMT
Not After : Mar 3 08:00:30 2026 GMT
Subject: CN=d48b0c96d122364fc68420b14f758860f8052c01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d5:eb:23:10:13:77:6f:6e:41:c6:07:d7:37:
7e:af:63:28:d5:96:c0:03:ea:71:40:e8:5f:c0:66:
ff:30:4d:16:ae:84:63:7c:99:65:e0:de:de:d4:0d:
21:28:55:8c:9a:23:09:35:8a:ea:37:8d:d6:bd:85:
9b:0c:75:c4:0f:6e:46:58:90:2d:bc:f6:af:48:5f:
7a:3a:7f:83:be:25:9a:12:e1:2c:64:e8:2c:c4:95:
63:b9:69:cf:cf:87:58:48:77:93:47:c4:92:87:d7:
79:23:50:a0:e4:44:18:ef:98:aa:60:55:68:78:26:
bc:b9:f5:be:a4:3f:41:a8:66:da:a8:78:94:95:12:
d1:a6:5e:3e:50:77:33:6d:f0:fb:b6:2d:9a:20:d3:
07:58:c9:88:9e:4b:dd:7a:6e:e0:a2:8d:a6:af:66:
da:45:07:78:cb:6c:c0:29:14:41:a8:4e:10:61:c7:
55:3c:32:6b:dd:4d:d4:74:37:ea:db:f7:f0:a0:26:
11:38:3e:60:24:bf:79:59:b9:0d:34:b0:0c:7f:6d:
5f:2d:95:53:29:73:ff:8a:e6:d8:4e:ea:9b:f4:e2:
2c:94:bb:20:ef:ea:0b:cd:5e:0e:11:32:9c:a5:db:
f1:ac:81:67:52:c6:16:de:ef:87:2c:5b:01:4d:69:
52:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:8B:0C:96:D1:22:36:4F:C6:84:20:B1:4F:75:88:60:F8:05:2C:01
X509v3 Authority Key Identifier:
keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:48:87:b7:58:9c:7d:97:d8:4e:10:27:97:fb:03:e3:ce:b5:
7a:87:f9:5a:7d:cb:6e:43:2c:ab:3a:7a:b0:23:12:1a:10:49:
f8:8d:34:43:66:48:b1:42:23:97:ce:5c:db:aa:c0:be:d1:bf:
09:92:e5:50:c6:d2:ef:4f:46:94:af:57:dc:9a:a7:06:2e:83:
37:52:d6:d6:9f:cc:15:ce:87:cf:d1:b7:4b:73:43:47:d7:18:
4c:8a:0b:b3:6e:d4:ba:63:ff:0a:3f:74:17:8d:ae:06:f5:80:
79:4a:17:01:a4:2f:91:0e:b6:ab:34:3e:e0:30:af:4a:89:f4:
1d:6b:60:32:4a:d8:1f:1a:27:ba:12:2a:39:fc:83:f4:82:70:
e0:d6:34:c3:04:32:03:a8:53:28:5a:8c:7c:f6:12:df:99:db:
09:d7:e1:ef:34:d7:02:4e:d5:25:d0:47:4f:4a:4c:26:5f:89:
d5:d7:26:c9:2f:8d:50:94:1f:8d:83:22:51:23:5b:7e:45:54:
16:8e:e0:0e:8f:3d:04:52:ab:a5:fd:f9:e1:2f:4a:31:cf:d4:
ef:9b:ed:12:27:11:ba:5f:2e:16:df:07:7c:d6:d6:bb:ff:b7:
3c:b8:95:b9:b4:ec:3c:f7:3c:68:4c:a8:3a:a6:14:f0:dd:65:
60:c6:07:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:27:43 2026 by rpki-client