Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
File: v42FRzQuL8ns-t_O8Azyc--dbpA.mft (raw, json)
Hash identifier: U6UTaBBlMSGMCNtNAvkbEvMx7u+ijut2hjIFNlggbZU=
Subject key identifier: ED:90:70:AE:89:C9:9C:E4:42:6A:58:C8:EC:12:AA:C0:40:BA:CA:37
Authority key identifier: BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
Certificate issuer: /CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Certificate serial: 019CAA8F715884E4C9657EF9C3E7E9E9EA98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
Manifest number: 05A6
Signing time: Sun 01 Mar 2026 18:00:53 +0000
Manifest this update: Sun 01 Mar 2026 18:00:53 +0000
Manifest next update: Mon 02 Mar 2026 18:00:53 +0000
Files and hashes: 1: A8PNklH6_RdGA5SXBmz7CmQ2ejc.roa (hash: G32ue8AWHzovX9yZjIgUF6MN72sXNFz9nWr+gwmW9lo=)
2: UvFRLcdnN72RMKcY-6GkngwKWkg.roa (hash: 8Itln6PEQnR3OxkcnuhYuWLxcSYWOcJ+PQmytB21lHs=)
3: v42FRzQuL8ns-t_O8Azyc--dbpA.crl (hash: wmEaJbpN+jkni8gDK1ofXd7ovTuWQYEhZXJknEkCgP4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:71:58:84:e4:c9:65:7e:f9:c3:e7:e9:e9:ea:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf8d8547342e2fc9ecfadfcef00cf273ef9d6e90
Validity
Not Before: Mar 1 18:00:53 2026 GMT
Not After : Mar 2 18:00:53 2026 GMT
Subject: CN=ed9070ae89c99ce4426a58c8ec12aac040baca37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:09:22:01:6d:bb:99:28:c8:b8:88:5a:51:66:
3a:dc:e7:df:7f:86:d7:50:98:52:b6:38:90:64:f0:
f2:21:5e:3e:a1:15:3f:13:d2:9a:8e:e2:8d:fd:25:
aa:b7:93:e9:67:50:e4:07:51:b4:24:65:3a:6a:c0:
e2:84:77:69:7f:80:86:e0:e5:6f:1d:fa:ed:4e:f6:
ed:06:f6:4a:ea:93:6c:a1:40:14:1e:04:83:9d:76:
2a:04:d9:77:b0:81:0c:97:98:3c:64:8a:6b:c2:a8:
7d:f6:ca:de:58:b1:b1:d9:b3:fc:b2:3f:a7:cd:7a:
e3:01:75:03:59:cf:19:f3:fb:63:a1:18:ed:19:06:
1e:cd:da:be:e4:32:68:21:d0:b7:0e:00:18:55:02:
68:f1:f6:df:f9:de:eb:79:07:04:b7:4c:29:12:a9:
5d:7e:9d:f0:ac:e1:35:9c:9f:cb:27:06:d7:61:5f:
66:45:3b:5b:a7:44:f3:30:8c:8a:c8:27:ec:13:85:
70:11:91:03:71:2a:84:82:36:2d:c3:3f:16:86:50:
99:38:6c:07:fc:7c:b7:e3:d0:93:a5:98:b4:10:49:
25:e2:d7:d3:5e:98:b1:40:68:01:44:57:e9:a0:21:
b4:a1:6a:27:a1:e4:85:6b:a5:43:39:80:b9:f0:d7:
af:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:90:70:AE:89:C9:9C:E4:42:6A:58:C8:EC:12:AA:C0:40:BA:CA:37
X509v3 Authority Key Identifier:
keyid:BF:8D:85:47:34:2E:2F:C9:EC:FA:DF:CE:F0:0C:F2:73:EF:9D:6E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v42FRzQuL8ns-t_O8Azyc--dbpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/b6f734-c655-43a1-9934-1e71930fcc0f/1/v42FRzQuL8ns-t_O8Azyc--dbpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:6d:fa:5f:c7:29:9d:54:cb:53:fb:4d:63:8a:03:b7:d3:51:
23:33:4b:b8:b7:73:c5:c4:c9:f6:ed:fa:f1:c4:f5:45:ec:a4:
e0:9e:94:c3:76:ed:82:00:8c:e3:7d:85:4a:f8:bb:20:69:a0:
c1:77:03:4b:5d:0f:db:00:aa:74:78:16:77:60:c3:ff:65:ca:
ac:01:e3:b1:cb:44:da:54:14:0c:36:b7:49:06:d7:c0:31:a5:
6a:e1:d4:d0:16:a6:96:a1:6c:51:63:64:13:b6:b4:3f:9c:81:
00:15:fd:d7:11:10:5c:a9:61:5d:16:8d:51:0f:53:5c:91:d3:
47:c4:0c:34:98:67:36:d1:eb:0f:f1:76:5e:fd:80:6d:12:b7:
e3:c3:b3:08:2e:6c:92:9f:25:89:73:a2:4f:d6:ec:ba:32:41:
56:e8:5f:b7:5c:fb:9e:50:4d:48:bc:c1:15:a1:ee:91:61:1c:
5a:19:56:93:f9:67:58:c2:1b:ea:67:d5:2c:1b:11:d4:b1:06:
d8:54:da:54:01:15:5b:de:56:d8:fc:47:f7:e0:fe:f3:7d:d6:
90:71:b2:68:8c:72:e0:4a:7f:3d:b9:e4:b6:00:0a:1d:5e:c8:
67:f8:b5:98:9c:c8:0a:89:fb:c0:9b:16:d8:cf:67:26:0a:9e:
7b:53:a1:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:17:33 2026 by rpki-client