Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: ynKKlsIXJs8hRfQOC3q1QtNZEMIAte2mL2VVN7BzIW4=
Subject key identifier: 38:6F:9E:D5:F3:38:6A:CC:05:E5:A1:3B:4E:05:1E:17:2E:8D:4D:F3
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 019D9A06D50C6A88E6D61B5BA63DD9CACEBE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 054C
Signing time: Fri 17 Apr 2026 06:00:32 +0000
Manifest this update: Fri 17 Apr 2026 06:00:32 +0000
Manifest next update: Sat 18 Apr 2026 06:00:32 +0000
Files and hashes: 1: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: d+5MlXHKNEFjJ0VekkDxYrI1TiVYuS+XoGSShivb1F4=)
2: N3bXffW8yKFqU5UMm7fvxG-jz6A.roa (hash: bdRoY8TZDQQa0PscQFcX1AU8tV8n2oKXvuQ9ADHxYzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:06:d5:0c:6a:88:e6:d6:1b:5b:a6:3d:d9:ca:ce:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Apr 17 06:00:32 2026 GMT
Not After : Apr 18 06:00:32 2026 GMT
Subject: CN=386f9ed5f3386acc05e5a13b4e051e172e8d4df3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:57:ab:da:34:93:59:a7:22:72:96:c9:de:d2:
58:74:51:f2:2f:f0:f4:b1:1d:e4:72:82:cc:d2:9e:
1a:8c:46:4c:15:2f:9a:2c:93:f3:0e:c2:7c:72:12:
28:4f:92:a2:76:c4:66:c3:47:1e:53:d7:b4:fd:bd:
ae:7c:4b:16:94:9d:e8:9c:fc:85:d7:06:04:43:ee:
07:92:11:34:0c:da:de:38:c1:2b:22:d5:8e:0b:c0:
0a:0e:47:79:1a:4e:d6:a4:fd:3b:1a:f7:99:93:65:
94:3d:90:57:40:0c:93:95:7a:75:40:54:bc:bc:0a:
13:a7:3d:c8:38:ce:0a:83:5b:7c:85:b3:fa:85:da:
ef:64:16:a7:b5:20:a6:55:31:b5:b7:94:b4:df:97:
64:7f:3b:df:66:0f:b8:bb:f2:f4:e2:e2:e0:3a:08:
2f:56:b8:e0:29:fa:a3:72:28:5e:b8:60:34:d3:54:
5e:c0:14:ab:83:f8:04:06:0b:45:5d:76:ea:ed:9e:
9e:1c:36:ab:34:e2:2b:eb:0a:f5:8c:b9:74:20:36:
6d:a6:0d:cc:41:0c:56:be:0e:10:bb:d6:18:bd:30:
d3:9f:80:b0:5e:0c:7f:98:ae:41:ff:2d:25:9d:18:
9e:92:68:17:a1:db:fb:fe:ab:82:71:24:bd:14:2d:
ef:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:6F:9E:D5:F3:38:6A:CC:05:E5:A1:3B:4E:05:1E:17:2E:8D:4D:F3
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:e4:ab:6e:f6:cb:40:7d:cf:d3:ca:f4:e6:c9:1e:3a:23:dd:
82:9b:e8:36:a6:99:ad:0b:42:46:aa:c7:88:e2:a0:91:b1:77:
2d:14:65:3e:6e:06:a3:35:84:d6:0c:fa:73:10:45:b0:ac:98:
bb:bc:3d:92:6a:ec:d4:5b:43:bb:95:59:08:a2:00:85:f7:42:
91:1c:bb:86:4c:17:e2:f2:c0:ee:98:f6:2d:fb:af:1d:71:17:
1b:c4:27:a2:71:2a:61:97:f3:91:8e:33:f7:ba:1b:f1:a5:22:
61:8f:22:73:0a:86:af:56:09:b4:6b:ac:cd:86:39:1b:fb:cb:
76:70:11:f5:d7:82:b2:7e:35:43:9e:4a:ef:84:85:24:c8:86:
2f:14:98:29:fe:90:86:a6:ac:e2:fc:00:c4:2f:ba:c6:f6:c2:
7e:63:94:c0:c2:d9:68:57:de:16:89:41:70:51:70:2d:c3:49:
f3:93:44:02:96:62:10:a9:3d:16:f8:dd:3b:b8:9d:4a:40:50:
4f:37:f1:23:12:a2:09:a3:94:59:c4:08:1a:d9:e6:de:4e:41:
b9:9a:0d:a2:85:7d:22:83:8b:24:18:80:ca:a7:e4:ad:c3:90:
89:6a:e0:1b:70:e8:2b:43:5d:0d:6a:7f:76:fb:b4:47:ae:ed:
84:41:d7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:20:40 2026 by rpki-client