Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
File: v42FRzQuL8ns-t_O8Azyc--dbpA.mft (raw, json)
Hash identifier: qG3c/uLRmOcKgYmlss8Eej9/dOgn6rypKF/IIJDhr7I=
Subject key identifier: A9:46:8A:0E:33:84:03:8A:DE:8E:CF:79:17:11:75:76:88:F7:3D:24
Authority key identifier: BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
Certificate issuer: /CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Certificate serial: 019DA3AF46825AE56F62E453DFC02FE2E3C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
Manifest number: 0627
Signing time: Sun 19 Apr 2026 03:01:06 +0000
Manifest this update: Sun 19 Apr 2026 03:01:06 +0000
Manifest next update: Mon 20 Apr 2026 03:01:06 +0000
Files and hashes: 1: A8PNklH6_RdGA5SXBmz7CmQ2ejc.roa (hash: G32ue8AWHzovX9yZjIgUF6MN72sXNFz9nWr+gwmW9lo=)
2: UvFRLcdnN72RMKcY-6GkngwKWkg.roa (hash: 8Itln6PEQnR3OxkcnuhYuWLxcSYWOcJ+PQmytB21lHs=)
3: v42FRzQuL8ns-t_O8Azyc--dbpA.crl (hash: y96HlcR3wfrP3UUPicT5nAS6iye6Rj+iZdXRxuhBNVU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:af:46:82:5a:e5:6f:62:e4:53:df:c0:2f:e2:e3:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Validity
Not Before: Apr 19 03:01:06 2026 GMT
Not After : Apr 20 03:01:06 2026 GMT
Subject: CN=a9468a0e3384038ade8ecf791711757688f73d24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9a:89:a7:f4:4b:33:46:cc:2c:6f:c3:02:0d:
a8:58:86:cf:59:96:59:67:24:08:18:a4:13:88:17:
82:a6:b3:95:6d:9d:f7:c5:a2:c3:c9:cd:e2:1a:c9:
76:b0:96:8a:5d:6b:57:e7:ab:00:b1:13:12:b4:a5:
94:88:ef:83:8a:d5:6a:f8:3c:02:e3:e5:39:8e:a9:
c8:ee:45:50:8d:7a:9b:0f:9b:8e:6c:bf:ec:76:5b:
df:0f:ab:16:23:6c:f7:58:b9:68:79:fd:e2:36:e4:
ab:3a:d2:b2:d0:17:a6:7f:de:e2:3f:a3:f3:ce:f8:
f2:d5:0f:1d:f3:4a:60:bc:64:eb:82:b3:f8:5b:74:
16:9c:13:2b:ef:ae:e4:e6:92:2c:fa:47:10:69:61:
bd:57:1c:b0:69:93:ea:b2:67:e6:31:75:4d:e2:69:
7a:61:6d:04:50:1d:c1:9c:3c:26:4b:2a:b8:d4:b5:
d3:f3:40:1a:44:35:9d:ac:71:45:59:39:7c:e3:24:
a7:3f:6d:f7:9f:5e:a4:bf:66:b1:ac:a8:4f:4f:0b:
d3:51:fe:4c:79:8a:36:0b:de:63:b0:13:0a:a6:d4:
ae:67:d2:47:93:39:e2:be:4a:28:dc:86:d8:da:43:
5c:76:c6:2e:23:c3:7b:f9:b4:af:82:da:07:85:90:
62:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:46:8A:0E:33:84:03:8A:DE:8E:CF:79:17:11:75:76:88:F7:3D:24
X509v3 Authority Key Identifier:
keyid:BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:96:1f:10:ff:46:97:13:c9:99:2f:36:98:f0:65:20:55:07:
0d:07:19:1b:f8:f8:82:b5:bf:ce:eb:75:4e:68:30:a1:a2:01:
80:87:3d:99:d1:82:0f:40:99:b3:31:b6:69:91:73:3b:cc:a2:
cd:5f:16:74:ef:c1:39:46:19:d6:b1:fc:c0:68:e1:2e:d2:c2:
e7:59:be:8c:08:c1:e2:9d:87:2b:fa:02:25:1e:5f:12:25:c0:
56:fc:a2:45:e2:4e:5c:e7:6f:01:ae:04:13:ab:c5:32:e6:40:
61:20:c1:11:61:b2:0f:ca:ed:7c:b6:2e:3c:c0:d7:77:60:39:
1f:ed:e8:52:15:4a:50:20:fc:21:83:d9:95:43:be:40:76:16:
c8:c5:f5:93:a5:4c:5f:4f:2d:48:85:32:f0:24:0c:7d:ac:06:
74:0e:99:90:12:29:82:8b:b0:0b:cb:2e:37:c6:e7:28:db:61:
78:e4:2d:5b:3e:99:89:1e:c7:c3:b8:01:5c:7e:5d:98:f2:39:
97:8f:30:1a:e5:2c:d5:c9:41:ee:c6:7f:ca:f3:76:ba:9c:ef:
03:55:a9:d1:7b:ef:43:de:f9:c0:7c:4e:63:7b:6c:35:6a:f8:
1a:0e:8b:dc:8c:bf:f6:54:aa:3c:31:ca:e2:68:6d:b0:53:51:
44:a4:7e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:57:05 2026 by rpki-client