Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
File: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft (raw, json)
Hash identifier: atAaap51hrZfxwRW1Pq1gCudXQyTeOVLSkUKnPFi4pc=
Subject key identifier: 05:F8:C7:06:AC:50:94:8A:90:24:86:22:52:AF:23:A2:93:C2:61:96
Authority key identifier: EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
Certificate issuer: /CN=ea2f671f10834dae48ea8d987342c375cab3316d
Certificate serial: 019CA9B36C52E53EF2FFE1D54547265B8EA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
Manifest number: 043F
Signing time: Sun 01 Mar 2026 14:00:33 +0000
Manifest this update: Sun 01 Mar 2026 14:00:33 +0000
Manifest next update: Mon 02 Mar 2026 14:00:33 +0000
Files and hashes: 1: 1-BDF7EdL9hLHZ4qCs6jAWm3n8G8.roa (hash: 3HI3L0u1gTr2C+yxlBAEamd5L6jvpyumi2g5XXRKy/k=)
2: 6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl (hash: DW/MeWmHXFYZ6k0CTw2HEoicWFH9cNlWaOlwDZAoAIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:6c:52:e5:3e:f2:ff:e1:d5:45:47:26:5b:8e:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea2f671f10834dae48ea8d987342c375cab3316d
Validity
Not Before: Mar 1 14:00:33 2026 GMT
Not After : Mar 2 14:00:33 2026 GMT
Subject: CN=05f8c706ac50948a9024862252af23a293c26196
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:98:b4:13:9e:94:ce:3c:20:82:50:cb:36:8a:
1d:3b:e4:d7:5c:9a:86:5d:d9:4e:32:f0:58:75:7d:
42:1c:c5:dc:90:0a:5a:a2:4e:bf:36:ec:ef:02:dd:
2f:16:27:83:e7:2f:70:eb:d0:c5:ee:54:de:28:a8:
a2:0f:9c:98:34:e2:1f:ab:91:56:3e:a6:7f:2c:2b:
1b:cb:3d:0f:06:ef:bb:f4:7c:e7:cc:64:23:ad:9b:
fc:64:58:d6:18:ee:39:f7:6d:8e:ec:fa:a3:68:11:
83:a3:e6:4a:42:65:3e:3d:06:ce:6c:55:d3:fe:ee:
6f:4e:45:3c:81:cd:da:67:ba:fc:b4:34:d5:7c:a1:
68:60:af:21:df:b1:c5:b6:6a:86:b1:03:fd:1e:bf:
31:4f:5a:c6:a0:05:56:fb:b7:09:be:0a:e8:ec:45:
83:51:a5:d0:26:1c:03:2d:16:dd:e6:ec:39:65:39:
36:b6:77:ca:e7:da:6f:76:d2:3a:ea:ef:e2:de:ec:
50:3b:52:01:1d:02:24:0b:71:5b:30:7f:e1:3c:2e:
02:cd:2a:9a:87:dc:45:e6:dc:b1:8f:cd:f0:04:43:
07:96:8a:b0:b2:04:d3:97:c4:08:43:3e:31:ef:f6:
0c:ee:31:6a:02:e3:16:32:33:8c:b8:e8:ba:6f:65:
e6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:F8:C7:06:AC:50:94:8A:90:24:86:22:52:AF:23:A2:93:C2:61:96
X509v3 Authority Key Identifier:
keyid:EA:2F:67:1F:10:83:4D:AE:48:EA:8D:98:73:42:C3:75:CA:B3:31:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/10ba73-aebc-4771-a3ac-1c420f05579f/1/6i9nHxCDTa5I6o2Yc0LDdcqzMW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:a7:a2:69:93:73:f4:3f:27:28:42:f6:8b:4a:ed:03:6e:96:
9e:06:e9:05:40:52:ab:18:30:f3:19:fd:63:1d:57:67:e2:5f:
63:ba:46:cd:fb:62:35:de:0a:d7:54:ca:bb:f4:eb:6e:a2:61:
26:d8:cf:dd:65:d7:d8:ce:7a:14:5f:0b:ba:e4:49:45:d3:73:
d5:e5:d9:25:49:c7:6f:5e:21:5f:2a:87:85:d6:f4:e9:5c:b6:
54:82:67:ed:cd:6a:85:dc:4b:b7:ca:e3:c2:89:da:d8:36:87:
a6:98:6d:68:e3:bf:47:2d:35:7e:e0:59:ff:7f:8c:53:5f:df:
12:da:10:ca:cb:60:08:b8:e8:44:04:c1:47:01:f3:7a:fd:39:
4e:d9:7b:4e:86:f2:8b:61:19:c3:6b:d6:f1:90:20:ad:e8:8c:
70:e6:10:bd:f8:de:47:f2:b9:28:17:19:f8:a3:26:cc:a8:63:
b6:56:fa:d7:f4:3a:d3:da:24:8d:84:4f:2f:46:e4:3f:14:9a:
bd:0e:74:4a:16:40:03:a8:7d:08:fa:c3:c0:f4:fe:dc:19:6f:
05:3a:39:53:7a:f5:9d:6f:b7:ff:75:14:0c:77:5c:97:06:ff:
c3:55:b7:d0:a4:ef:8e:82:08:14:9c:4e:f7:d7:8d:c3:3e:c9:
5a:c7:62:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:56:00 2026 by rpki-client