Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
File: xBK7PaZcqrUkhR74bOm6piB04e0.mft (raw, json)
Hash identifier: FMW8HRw5MXzL2x2c/dybGn/lsYNTq7GjhAzdwTvBOnw=
Subject key identifier: B3:98:4E:65:4C:57:17:9C:EA:54:1F:EB:62:7E:4F:54:7F:BC:58:A7
Authority key identifier: C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
Certificate issuer: /CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Certificate serial: 019CAC7DBD95D9B978A9DD8D7B6C9A92EE86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
Manifest number: 1843
Signing time: Mon 02 Mar 2026 03:00:47 +0000
Manifest this update: Mon 02 Mar 2026 03:00:47 +0000
Manifest next update: Tue 03 Mar 2026 03:00:47 +0000
Files and hashes: 1: sesfpS4vflQUJ0zHNMlqdR_eVFI.roa (hash: EeKCakHwf9lALKZ5zNCtLbT5f2osgE69W3ufAPv/OQY=)
2: xBK7PaZcqrUkhR74bOm6piB04e0.crl (hash: nekk5CBBAyIwEOP4IqzwUOBRUXvgE7EHLufaeNMtmu4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 03:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:bd:95:d9:b9:78:a9:dd:8d:7b:6c:9a:92:ee:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c412bb3da65caab524851ef86ce9baa62074e1ed
Validity
Not Before: Mar 2 03:00:47 2026 GMT
Not After : Mar 3 03:00:47 2026 GMT
Subject: CN=b3984e654c57179cea541feb627e4f547fbc58a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e0:2d:b1:ab:61:4e:85:d0:c2:2b:03:30:9d:
12:7b:54:9f:32:b2:21:f1:38:60:4b:f1:4e:cf:4e:
cc:e1:96:cf:ae:da:d5:04:0a:15:ea:32:fb:c6:b7:
f8:ab:fa:d2:00:3f:55:e0:d0:91:a5:ea:3a:7c:09:
a9:ef:f8:cd:45:3d:cd:ee:3e:24:53:3a:7a:42:8b:
87:c8:40:2b:db:d0:3b:2d:3e:8b:38:4a:9a:ce:f7:
73:89:03:6d:c1:cb:a6:b2:a0:87:5f:9e:08:11:16:
aa:b4:3d:74:c6:7f:34:46:1e:73:49:8d:90:b1:77:
18:d5:ea:da:dc:7a:56:a1:bd:f3:9d:c4:43:04:9f:
57:aa:be:72:ea:cd:d6:71:05:af:25:81:d5:b9:4b:
7f:9d:79:24:bd:2f:64:0b:23:60:0a:0c:7e:a7:7b:
5e:dc:e7:11:29:7a:db:e7:c8:8a:2c:db:64:7c:21:
df:d2:27:91:83:2a:3e:30:f9:26:b3:d7:ab:99:f4:
43:9f:66:ea:54:4e:ff:52:ca:c9:91:2e:01:9b:9e:
c2:da:2d:4f:04:df:c4:6c:06:1c:72:cb:6c:47:c5:
cb:3d:5c:17:39:e6:55:d2:f6:50:af:74:cc:ed:42:
6c:5d:0a:f5:2a:9d:2f:59:64:5d:60:b8:d6:e4:21:
30:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:98:4E:65:4C:57:17:9C:EA:54:1F:EB:62:7E:4F:54:7F:BC:58:A7
X509v3 Authority Key Identifier:
keyid:C4:12:BB:3D:A6:5C:AA:B5:24:85:1E:F8:6C:E9:BA:A6:20:74:E1:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xBK7PaZcqrUkhR74bOm6piB04e0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/c7871c-51d9-463d-acb8-9b932ecd2ecc/1/xBK7PaZcqrUkhR74bOm6piB04e0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:4a:8e:9f:42:99:81:24:aa:d3:90:d6:db:3a:12:bb:f1:b1:
b1:73:8b:b7:60:1b:b1:e4:b6:62:34:64:63:67:bb:b4:f6:76:
9f:79:d8:87:39:fd:ba:10:e3:f7:27:b8:27:d6:fd:29:85:af:
37:3c:13:af:da:7b:49:7d:90:fa:d2:52:69:23:11:13:52:20:
4e:5c:90:f1:ab:a5:a1:1b:fd:3b:2f:28:57:cd:7d:a3:29:d7:
a2:1d:4a:69:0e:dc:c6:0c:e2:9d:60:c8:ac:cc:56:53:c9:d9:
89:90:e4:32:87:23:44:c4:12:f9:4f:7b:d8:12:7c:82:6e:72:
eb:ff:54:d3:f1:22:a5:3c:ca:72:8e:b8:6e:8b:eb:d6:f1:bf:
ea:9a:05:21:79:dd:9b:74:0a:7a:d3:b4:5d:38:d0:59:1f:1f:
fc:da:09:80:8a:d3:5f:99:08:79:b7:23:49:b6:86:d2:50:10:
2e:bc:f3:ac:30:6c:ab:5b:72:a8:57:61:a4:b1:6b:33:25:63:
30:82:cf:b5:49:49:5e:ff:20:5c:2e:7d:be:c9:b6:1d:f4:07:
b0:e7:9a:c6:9e:44:90:01:1d:42:e2:b0:06:0f:e2:4e:c8:5d:
ca:03:53:47:eb:51:37:88:3b:83:0d:b0:2d:c7:43:48:02:51:
2d:22:33:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:37:24 2026 by rpki-client