Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
File: Ma-3caS5EQsRSqgHr7cIaxplN54.mft (raw, json)
Hash identifier: WP9c+i9gPU7lTAp1yMEWzMQN4nCPd9wN7aoFOLAm1IA=
Subject key identifier: DA:94:7D:1B:4A:CB:55:C1:76:7A:EA:2D:91:E5:F1:43:B6:98:90:23
Authority key identifier: 31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
Certificate issuer: /CN=31afb771a4b9110b114aa807afb7086b1a65379e
Certificate serial: 019D98F531F1B77856AC61F6697E5CFACE9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
Manifest number: 067D
Signing time: Fri 17 Apr 2026 01:01:39 +0000
Manifest this update: Fri 17 Apr 2026 01:01:39 +0000
Manifest next update: Sat 18 Apr 2026 01:01:39 +0000
Files and hashes: 1: Ma-3caS5EQsRSqgHr7cIaxplN54.crl (hash: UsPj6w0DFtdxGU7SZuNbg5qSHSg4t7ypWMoFxnGjr3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:31:f1:b7:78:56:ac:61:f6:69:7e:5c:fa:ce:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31afb771a4b9110b114aa807afb7086b1a65379e
Validity
Not Before: Apr 17 01:01:39 2026 GMT
Not After : Apr 18 01:01:39 2026 GMT
Subject: CN=da947d1b4acb55c1767aea2d91e5f143b6989023
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:da:1f:92:ba:45:b8:64:f9:35:3b:ce:10:7d:
94:00:01:e8:b6:c9:cc:ad:8c:bc:1a:4b:c5:31:7f:
97:55:2d:e8:72:a7:91:c8:79:d9:2a:0e:cb:3f:a9:
3e:8c:14:19:bb:3c:73:cf:e7:de:6e:15:f3:fd:92:
a9:76:f7:ca:04:bc:6b:52:5e:14:00:6a:36:d5:98:
89:b5:9a:53:96:80:d6:0f:1d:77:d8:ec:e4:03:80:
66:da:ca:7e:87:d9:6d:cb:40:9a:aa:71:49:cc:b8:
b1:39:f2:9b:10:dc:a2:16:0b:66:05:f6:0c:c8:05:
d2:2a:3e:1b:ae:df:94:35:28:39:ea:eb:d0:63:3d:
78:03:35:5d:2e:f6:80:aa:70:d8:3f:e9:2b:0c:29:
d4:85:99:7e:c5:e7:42:07:e0:21:2c:6d:21:28:d9:
b8:f6:1b:79:92:db:03:18:8b:8b:80:28:a8:76:68:
c0:39:e3:08:b4:72:42:cb:90:ba:52:23:75:3e:cb:
ac:fc:1a:d9:51:77:93:ac:25:53:55:dc:d4:93:a6:
b7:15:f5:94:82:56:83:2f:62:47:c7:10:33:12:79:
29:fe:d8:fc:0e:9d:6d:8d:fa:5e:80:16:d4:69:6e:
24:a7:5e:f5:1f:6b:cb:e1:29:8a:5d:88:cf:f1:c5:
20:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:94:7D:1B:4A:CB:55:C1:76:7A:EA:2D:91:E5:F1:43:B6:98:90:23
X509v3 Authority Key Identifier:
keyid:31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:92:48:25:2a:7f:d9:0a:d5:a7:54:e1:57:39:9b:d1:6e:d2:
cd:3e:6e:21:17:e4:24:19:db:a0:ab:40:7a:74:98:7f:48:50:
af:38:57:59:80:b8:c2:50:ec:87:8a:1a:64:09:8c:e5:cc:b4:
6b:4e:49:eb:e3:0a:66:1b:89:7f:43:8c:8e:ab:0d:e6:29:7e:
d6:37:97:68:6e:cb:53:95:4d:52:54:17:6b:a4:fb:e3:b1:04:
22:62:d8:73:c3:5c:fd:c9:8c:5d:0f:33:4d:c6:c0:0d:bc:e8:
26:24:e1:aa:28:82:de:6f:07:13:7e:4c:53:4b:9d:50:6c:cd:
0c:66:ca:e7:a1:ab:5a:21:06:8a:30:56:ff:b0:d4:a1:ce:12:
72:a2:d1:47:84:19:39:db:3a:ba:e7:b4:a7:56:e7:95:44:00:
aa:d5:16:c5:6f:a0:41:a1:95:fc:05:ec:f1:a9:5f:39:bd:e8:
e1:78:da:78:60:6e:95:60:04:26:b9:18:55:4c:83:29:38:95:
4e:61:ed:67:e4:a1:5d:f0:88:31:69:17:1b:50:29:2f:3a:5a:
49:c4:e5:ff:35:2f:31:e7:a7:40:49:81:55:5f:ab:69:49:36:
87:ad:5e:34:38:df:78:88:05:72:d3:89:ac:7c:1a:59:48:96:
fc:57:cf:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:05:44 2026 by rpki-client