Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
File: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft (raw, json)
Hash identifier: GnFDvJ1FiXPfg6lfOPZoXrGJv9F/0LP4qvb/ljoEXSY=
Subject key identifier: B5:2C:77:18:54:C8:A5:6A:41:4D:B4:96:55:E6:63:61:79:81:FD:F3
Authority key identifier: 3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1
Certificate issuer: /CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1
Certificate serial: 019CAA58E965C40E663782D4F1ACA571FB03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
Manifest number: 0FC0
Signing time: Sun 01 Mar 2026 17:01:19 +0000
Manifest this update: Sun 01 Mar 2026 17:01:19 +0000
Manifest next update: Mon 02 Mar 2026 17:01:19 +0000
Files and hashes: 1: 61Tc_pSMqhnofPsV7DrPU_3IvV4.roa (hash: b1b/Y82gxJDN9f/iG4TCunLXSlk+6vM16ISqmCSzCXg=)
2: PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl (hash: /6ZH/isL7eD+pVzlaXoQnIUwHxJhFSrueZagVGALLx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:e9:65:c4:0e:66:37:82:d4:f1:ac:a5:71:fb:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ca6fa999e8a674aa5332deb71f1bad0245c8dc1
Validity
Not Before: Mar 1 17:01:19 2026 GMT
Not After : Mar 2 17:01:19 2026 GMT
Subject: CN=b52c771854c8a56a414db49655e663617981fdf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:24:de:c1:f7:12:e3:a5:06:ac:ca:85:d9:7e:
e2:72:00:6d:01:af:9c:61:88:2e:50:de:2e:59:cd:
04:d1:d4:63:98:18:33:d4:28:ac:7c:cf:bd:2e:8f:
f4:ba:a3:3a:ed:d0:bc:bc:3b:ab:22:d3:8a:99:9f:
c9:2b:00:9c:53:73:b1:e7:c4:f6:53:fe:97:66:94:
52:0d:db:e3:de:d4:44:a6:d5:b5:38:9a:53:32:68:
af:59:03:1f:79:6a:33:c6:b7:6a:8d:6c:4c:fa:cc:
43:87:7c:04:34:e3:46:f5:b2:cd:90:c2:ff:6e:bf:
c8:32:9d:1a:09:af:9d:45:e7:f1:81:47:9f:88:c5:
1a:fd:fb:b1:f9:21:1a:df:0e:48:ea:67:66:77:2b:
20:b2:d8:cf:f7:9f:1b:89:cb:1d:4c:4e:c6:09:d9:
fb:17:fe:41:20:29:b1:42:86:88:96:f3:a7:f4:d6:
56:f1:4c:ee:6a:ac:6c:fc:eb:59:b0:02:4c:2c:4d:
c3:cf:7e:ee:f3:a9:0e:b5:bd:14:0a:94:71:62:f7:
aa:77:8a:8f:e5:48:7e:28:f7:94:5c:e9:27:2b:3f:
5f:59:c7:47:7e:58:b1:28:19:61:69:b2:93:e2:f1:
51:47:8e:7e:4f:f2:e7:81:35:a2:f7:8c:8a:cb:f5:
ce:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2C:77:18:54:C8:A5:6A:41:4D:B4:96:55:E6:63:61:79:81:FD:F3
X509v3 Authority Key Identifier:
keyid:3C:A6:FA:99:9E:8A:67:4A:A5:33:2D:EB:71:F1:BA:D0:24:5C:8D:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f97d3d-ed64-40b7-8b7c-152b0abd7c0c/1/PKb6mZ6KZ0qlMy3rcfG60CRcjcE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:96:3d:cf:f7:bb:94:02:d3:07:8d:74:25:48:57:0e:e1:98:
89:0e:ba:09:0a:6e:e9:0d:d5:53:56:59:9a:80:9b:f8:18:fc:
21:87:03:d4:c1:f8:f2:76:77:21:39:39:f2:f5:c2:71:42:b5:
22:d4:96:0a:1a:3b:85:c5:c9:f8:14:51:61:36:20:0f:aa:2f:
a6:96:90:e7:44:be:36:49:ee:e9:34:8d:7f:f0:1b:ab:f3:32:
5b:ec:b0:45:7d:2c:d2:17:93:90:5e:0c:e2:b8:32:14:0f:31:
69:e5:0f:6b:a6:80:26:3a:f1:7d:1e:44:bc:ae:92:e0:10:36:
3e:0f:cb:93:cd:2f:91:39:71:bf:b8:8f:94:97:d1:ae:b8:ec:
19:16:90:f6:b1:25:52:fe:41:86:a1:be:3c:f9:ff:1d:2a:68:
fe:72:66:f3:b9:5c:75:1b:cf:5a:12:56:5d:1f:72:cd:06:7f:
7a:54:47:73:80:9c:84:fa:00:98:e8:9c:a3:27:0f:f9:bc:d3:
08:89:52:7c:d1:23:90:aa:2e:f1:fb:43:87:70:4d:90:a1:ac:
a8:be:c5:98:e6:ea:56:4c:49:ba:e3:f2:48:75:0d:4e:20:98:
7f:cb:d6:66:59:93:99:85:47:6a:43:18:ca:cd:5c:52:cf:d2:
72:88:52:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:57:57 2026 by rpki-client