Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
File: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft (raw, json)
Hash identifier: a7PvhJ8VkALuqTQYHRvCoNl8BcitkCfHZHNgQ+lLVKA=
Subject key identifier: F0:7A:A7:F2:40:EF:F0:43:AD:44:59:E1:B0:4B:3B:4C:A8:DB:DA:3E
Authority key identifier: 46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A
Certificate issuer: /CN=467350d5975a272a88bfb8810af45981cd55935a
Certificate serial: 019CAE35728120FD6E54B7E3B2D9A10F8867
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
Manifest number: 1143
Signing time: Mon 02 Mar 2026 11:01:04 +0000
Manifest this update: Mon 02 Mar 2026 11:01:04 +0000
Manifest next update: Tue 03 Mar 2026 11:01:04 +0000
Files and hashes: 1: HoLUKNiHefs7C839qM4kpC7iogo.roa (hash: 4W1sL873O1FNcwjP+lR05LZ1odW83y0n+qfD07LPf8E=)
2: RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl (hash: NzJOreB56o5nrnDxGJaPO2pW9PEZmK//XnxIGZ8FSNc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:72:81:20:fd:6e:54:b7:e3:b2:d9:a1:0f:88:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=467350d5975a272a88bfb8810af45981cd55935a
Validity
Not Before: Mar 2 11:01:04 2026 GMT
Not After : Mar 3 11:01:04 2026 GMT
Subject: CN=f07aa7f240eff043ad4459e1b04b3b4ca8dbda3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a5:70:70:69:c0:bf:1e:f6:b2:3f:2e:c8:31:
0f:88:d4:c4:d8:5c:5c:44:7c:fb:5f:20:ef:e5:12:
05:f2:58:1f:ac:4e:ae:2d:ea:20:07:24:8d:21:25:
b3:81:30:9e:85:3f:d1:dd:c2:ec:b4:68:b1:64:c1:
2b:21:63:3e:b3:86:5b:0f:d6:0a:05:74:45:e5:56:
70:71:b5:8e:05:6f:f0:a0:50:1a:62:7c:16:76:2a:
c2:5f:d8:b6:de:74:09:ef:46:89:f8:2d:0c:6e:ce:
b3:bf:36:5a:dd:81:5c:bc:ce:c8:8a:8b:b0:c6:b9:
15:6a:c3:c4:ac:d0:18:c7:8e:b4:df:7e:c4:e2:99:
d4:98:d9:25:c4:4b:87:9d:6f:37:fa:38:ad:82:07:
a2:8b:38:35:04:bb:b4:f4:66:07:ef:e3:8c:d9:e5:
f1:ac:5f:e9:df:9e:df:eb:c8:8c:8c:c4:f6:3c:a7:
db:6d:03:66:93:ca:32:be:5d:42:25:5f:72:4d:7b:
92:7d:66:f6:67:32:1d:56:9e:f2:ec:f2:29:02:cd:
a6:16:2a:e1:e5:43:c1:e7:82:3d:c1:59:cf:fa:d1:
e9:64:b2:df:69:fc:60:99:61:dc:e3:a1:b3:84:f8:
a4:9d:af:bb:88:4b:a6:96:38:7a:74:ed:b9:5c:60:
12:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:7A:A7:F2:40:EF:F0:43:AD:44:59:E1:B0:4B:3B:4C:A8:DB:DA:3E
X509v3 Authority Key Identifier:
keyid:46:73:50:D5:97:5A:27:2A:88:BF:B8:81:0A:F4:59:81:CD:55:93:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c57b75-10a7-4723-94ea-e857477a7008/1/RnNQ1ZdaJyqIv7iBCvRZgc1Vk1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:98:c4:6c:90:e3:84:3a:e7:34:e9:66:d3:c3:09:ea:5b:dc:
9e:a4:14:1c:ad:fa:ed:0d:25:cc:7c:62:63:83:43:2c:d0:4c:
fd:e1:f2:da:75:69:90:1f:cb:ce:df:0e:6f:72:62:89:34:89:
86:91:ef:53:59:8e:dc:45:54:52:f8:de:20:03:bc:ae:21:a5:
a1:a4:dc:33:e1:3b:2c:39:39:b7:69:bd:24:db:81:7b:a1:f4:
25:76:37:18:f1:71:82:22:18:36:2e:f8:f9:fe:14:ce:78:94:
23:64:b2:53:cb:93:67:dc:09:77:b5:07:75:26:5b:6e:ff:1c:
9b:d7:48:9e:32:17:c4:e3:fe:b9:b3:a5:41:eb:a1:d2:f3:86:
fc:70:83:a1:04:36:8e:a5:e7:a5:88:42:c2:45:3e:c9:c4:7f:
55:d4:51:4e:8d:4e:87:e1:11:b5:4c:3e:37:2d:31:df:9f:69:
a9:a2:6a:8a:fa:ab:c6:96:0d:7a:7f:a0:75:3a:6e:5c:c2:b8:
7c:80:11:96:7a:f0:8f:11:37:6b:d5:45:12:87:35:f1:8c:f8:
df:a0:2e:fd:e2:8c:43:5e:02:5b:bd:b4:d0:11:bd:df:7b:d6:
4a:5a:09:f2:d4:55:b5:7f:1b:3a:79:a2:18:c8:89:4c:0f:cd:
8e:cd:03:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:02:26 2026 by rpki-client