Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
File: rfjUKjroBc6WqpT66fW0QG_0VZk.mft (raw, json)
Hash identifier: 3qNLK8cPkt4mseM0SvoBVLB5D7exEHI66y7rKXUuc2U=
Subject key identifier: 2C:DD:1E:5D:DF:35:57:91:71:AC:FF:6A:21:AD:52:58:7E:08:C1:B5
Authority key identifier: AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99
Certificate issuer: /CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
Certificate serial: 019CAC0FABEB832D7A1978648AF6D1CFA693
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
Manifest number: 05AD
Signing time: Mon 02 Mar 2026 01:00:34 +0000
Manifest this update: Mon 02 Mar 2026 01:00:34 +0000
Manifest next update: Tue 03 Mar 2026 01:00:34 +0000
Files and hashes: 1: rfjUKjroBc6WqpT66fW0QG_0VZk.crl (hash: uIwhdt+hyXXrN/MzYgupZRRquPz7W/EOqnXjhI70cuA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:ab:eb:83:2d:7a:19:78:64:8a:f6:d1:cf:a6:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf8d42a3ae805ce96aa94fae9f5b4406ff45599
Validity
Not Before: Mar 2 01:00:34 2026 GMT
Not After : Mar 3 01:00:34 2026 GMT
Subject: CN=2cdd1e5ddf35579171acff6a21ad52587e08c1b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:34:d5:79:47:a6:b3:e1:ec:d2:fd:4c:f7:51:
09:ec:09:4b:26:d8:1b:f0:43:a0:66:17:59:72:cb:
3b:79:35:94:62:a9:51:01:c2:68:8b:21:2b:77:da:
0a:76:34:70:0d:08:fe:eb:2d:5d:5e:ff:44:39:bd:
3f:a5:79:0e:3e:5f:02:a4:65:d6:09:49:19:56:a4:
f9:75:6d:a0:50:ba:8d:c1:d4:83:cc:7e:46:57:36:
93:ba:5d:fd:70:04:c3:a0:aa:fa:41:30:8d:88:19:
19:06:1a:68:20:4e:c0:e4:78:6b:f9:00:9e:e9:51:
0a:4d:ed:0c:6c:f3:85:39:97:a8:bc:4d:cc:06:ce:
8a:ed:fc:fb:d5:b3:fb:09:9d:dc:a2:07:58:05:6d:
ea:e4:76:15:a2:9d:bd:9b:ed:7e:dd:4a:17:2f:61:
b2:02:90:a4:4a:66:6c:09:c1:6e:1d:25:82:4c:bb:
1d:ba:11:9e:f9:96:c5:a1:2b:ae:b1:81:0e:93:95:
bc:f2:1b:db:37:0f:4d:44:65:24:85:bb:aa:88:b3:
7d:11:f1:f0:7d:93:2b:3e:5c:af:80:e4:5d:78:50:
68:c2:a6:52:f5:3a:1b:66:ab:07:7f:d4:36:bd:77:
5e:1c:bf:22:46:81:b2:ae:98:7d:49:77:a1:53:d6:
59:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:DD:1E:5D:DF:35:57:91:71:AC:FF:6A:21:AD:52:58:7E:08:C1:B5
X509v3 Authority Key Identifier:
keyid:AD:F8:D4:2A:3A:E8:05:CE:96:AA:94:FA:E9:F5:B4:40:6F:F4:55:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfjUKjroBc6WqpT66fW0QG_0VZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5b2305-97fd-4730-b1a0-a779b993df58/1/rfjUKjroBc6WqpT66fW0QG_0VZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:6a:4a:43:50:32:f1:3e:4b:94:28:03:df:77:91:45:d0:a6:
59:e3:07:2c:9b:23:e1:77:ea:f6:31:8e:03:78:df:ee:4f:97:
bb:03:2f:bd:ce:8d:fd:44:d8:9d:91:1f:a4:d3:eb:71:26:a1:
30:8a:58:b2:b5:35:f7:47:51:ff:11:07:b7:e5:af:20:9d:24:
ec:aa:58:a8:af:c9:34:95:c1:64:35:f6:fd:b6:e4:03:3c:cd:
f3:41:ef:f9:e1:31:5d:13:9a:80:dd:df:a3:f9:9b:14:03:c3:
f4:75:ee:3c:4b:8d:1b:05:8b:ef:30:97:b1:86:95:a4:6f:ff:
47:3e:7f:c3:40:83:a6:d5:ba:e7:b0:ef:82:fb:71:24:8c:5a:
8e:ac:32:d1:7f:17:50:34:40:39:8a:ff:cb:78:17:3c:ac:96:
4a:35:62:7c:a1:d5:2b:b5:82:16:45:9b:ef:fe:00:e0:ef:48:
01:b1:39:32:7c:7c:2b:b8:90:ad:a5:ff:7a:5b:96:e0:a1:02:
23:c4:29:e3:a8:bc:aa:5a:59:48:69:50:24:03:17:1f:96:4a:
29:af:05:bc:aa:f2:5a:bc:7d:3c:45:cf:35:6a:dc:e8:86:6c:
19:4b:70:fa:f5:49:d7:14:25:ad:fe:52:80:0a:75:3b:d9:94:
a5:3f:0b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:44:09 2026 by rpki-client