Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
File: D6j7U5miekMK5yfFMs0iSZnohk8.mft (raw, json)
Hash identifier: kwGtFO9KrumC5hFO+IiB8cDkxK+9H+dtt+ascMzC2FE=
Subject key identifier: A3:09:82:E2:AC:63:55:7A:4B:0D:F6:33:60:04:B0:2E:9C:D8:0D:6A
Authority key identifier: 0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
Certificate issuer: /CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Certificate serial: 019CAA8FC0DA5C8F6F638ACE00BB4B2B6571
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
Manifest number: 04D0
Signing time: Sun 01 Mar 2026 18:01:13 +0000
Manifest this update: Sun 01 Mar 2026 18:01:13 +0000
Manifest next update: Mon 02 Mar 2026 18:01:13 +0000
Files and hashes: 1: D6j7U5miekMK5yfFMs0iSZnohk8.crl (hash: BIaD+yrBLnTV2dTswidu8JIBVzSePSCnLLdh6PGHpxk=)
2: N3bXffW8yKFqU5UMm7fvxG-jz6A.roa (hash: bdRoY8TZDQQa0PscQFcX1AU8tV8n2oKXvuQ9ADHxYzU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:c0:da:5c:8f:6f:63:8a:ce:00:bb:4b:2b:65:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fa8fb5399a27a430ae727c532cd224999e8864f
Validity
Not Before: Mar 1 18:01:13 2026 GMT
Not After : Mar 2 18:01:13 2026 GMT
Subject: CN=a30982e2ac63557a4b0df6336004b02e9cd80d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b4:75:e7:3c:7d:61:7e:8b:4d:c0:d0:63:da:
07:9d:54:1a:77:d2:b4:75:5a:e0:4c:1a:6d:b2:a7:
40:9b:51:a0:c8:e3:ad:69:54:7a:a4:90:a5:fd:3b:
28:31:e8:36:aa:14:a7:45:b8:8b:8e:17:48:20:72:
1c:7f:45:4d:71:eb:f5:e2:ae:d3:d8:df:ea:4f:90:
f3:ac:34:9d:a3:55:27:91:00:43:6b:31:10:88:5c:
b7:77:b9:7f:0c:a6:42:9d:5d:53:5e:44:28:00:c0:
6a:82:41:28:13:4a:40:10:15:31:95:91:cd:1b:9b:
bd:9d:4d:9a:61:ed:32:72:6a:62:83:f4:09:9a:4f:
e3:da:5a:9b:57:e7:b2:1a:8c:17:1c:36:42:d3:ab:
28:ad:8a:bd:05:63:ad:9a:55:cc:76:24:13:35:da:
73:68:46:97:2f:31:1f:5d:01:d5:90:34:3f:66:17:
88:81:7f:55:bc:ab:d7:d4:1d:0a:e0:7c:08:99:f2:
90:55:71:e1:cc:14:49:d1:49:bb:cd:65:ca:b6:7e:
e2:0c:b1:ad:b4:bd:fe:da:44:7a:e2:28:49:1d:8f:
d1:ea:d9:f6:aa:32:02:16:ee:17:49:ad:96:31:cf:
0c:64:e4:14:1d:40:8c:cd:d7:55:a9:cd:3b:6f:59:
9b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:09:82:E2:AC:63:55:7A:4B:0D:F6:33:60:04:B0:2E:9C:D8:0D:6A
X509v3 Authority Key Identifier:
keyid:0F:A8:FB:53:99:A2:7A:43:0A:E7:27:C5:32:CD:22:49:99:E8:86:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D6j7U5miekMK5yfFMs0iSZnohk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/386f81-b139-48af-bcea-a71fb4635065/1/D6j7U5miekMK5yfFMs0iSZnohk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:83:00:30:f4:40:e0:74:4c:11:c7:ca:18:f9:e6:10:d6:d2:
d9:61:b7:65:f6:1e:4d:94:17:1b:06:c4:19:28:c3:c8:7f:9b:
95:de:86:39:f2:04:0a:db:68:a2:1e:ee:6e:2e:2d:76:c5:a0:
f4:2e:99:59:d7:d4:2b:89:d0:ed:38:fe:41:cc:96:82:a7:33:
1a:24:1e:da:5f:57:99:f1:1f:68:7a:95:74:af:57:87:af:9b:
6d:f4:ba:60:bf:ca:84:f4:3f:3f:92:3b:46:85:d4:2c:6e:ab:
70:b0:20:ac:51:1c:d6:a0:c5:eb:81:bf:6d:37:a5:22:52:8d:
ae:b7:ea:37:ec:2d:ff:2e:d4:91:7f:39:17:08:b2:68:42:7d:
0d:c2:57:ce:41:4c:88:3b:fa:6e:db:71:b2:79:8e:bb:b9:8d:
44:a1:d8:e1:71:ce:09:92:9f:15:9f:8a:1f:8e:02:fe:51:92:
32:65:88:d9:e4:41:ee:35:ec:75:ec:f6:04:c2:53:87:4a:1a:
aa:ba:32:87:ce:3f:99:ea:f1:94:8b:e1:e8:a6:a6:e2:8a:f3:
a8:e8:18:c1:7c:41:65:98:e3:bd:36:ba:10:2c:fe:fa:46:ce:
23:df:c2:35:93:1f:41:f5:8f:6f:b8:6a:d9:63:47:bd:dc:08:
67:e6:e0:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:01:07 2026 by rpki-client