Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json)
Hash identifier: A2tmDnkd+Ffq/nsRjNlOP00GvUPRuFdzQwML1CVnNwM=
Subject key identifier: 3B:F4:EE:64:04:2A:AC:CF:8F:E8:2B:DD:82:E5:85:E9:BD:8B:4B:D3
Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Certificate serial: 019CAAC68886F1A84DA575EEFF7B9D43D48A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
Manifest number: 0D0E
Signing time: Sun 01 Mar 2026 19:01:03 +0000
Manifest this update: Sun 01 Mar 2026 19:01:03 +0000
Manifest next update: Mon 02 Mar 2026 19:01:03 +0000
Files and hashes: 1: 0V_y0HBzvEsTHB0OqOkherqmcqg.roa (hash: 5K9v1dL8zyHCCylOHHNJD1ggYb0DLDZrjC3+O53wQvs=)
2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: i8qYqxWo2QQcgA1O1IkzbjZeLoxH9mOfk1Qx59ujVqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:88:86:f1:a8:4d:a5:75:ee:ff:7b:9d:43:d4:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Validity
Not Before: Mar 1 19:01:03 2026 GMT
Not After : Mar 2 19:01:03 2026 GMT
Subject: CN=3bf4ee64042aaccf8fe82bdd82e585e9bd8b4bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1c:18:69:5e:fe:e5:a7:d6:ef:18:a7:97:fc:
98:4e:d3:1e:5e:c8:61:75:2e:da:40:a4:f4:da:52:
c9:d4:5e:4c:0c:df:c1:89:c0:67:4b:8d:eb:1b:43:
c8:77:5a:91:76:60:f8:7a:60:fe:ea:5d:7c:a3:0f:
16:fb:89:cd:55:23:3a:84:cb:f0:f7:cb:ba:b8:38:
d7:27:9f:84:c2:85:46:9d:1e:13:20:83:51:36:2a:
d6:b6:eb:f5:9c:c5:06:a8:28:d9:1c:81:3d:98:89:
9f:39:97:30:11:51:15:98:ae:a6:0a:51:83:e8:aa:
77:33:d4:bd:08:ce:ed:7a:7b:7a:49:b2:2c:27:56:
e3:4e:16:39:d8:bb:f7:51:c6:c2:d7:67:25:1d:b2:
3e:5d:fd:56:32:b4:9f:71:b1:9d:b6:fd:ed:9a:b0:
ca:ef:88:87:f3:a4:83:d0:e9:ad:6c:8e:cf:96:94:
0e:e1:86:2e:71:98:fc:71:04:21:9d:4f:ac:98:05:
df:ab:ef:a3:2a:93:39:b5:04:b3:61:e1:ab:6a:19:
67:f8:22:71:14:6e:af:33:82:4e:3f:59:07:fc:7b:
ca:e6:48:3a:27:a7:37:02:2a:54:69:e8:22:5c:65:
d8:62:5c:e3:a0:97:2a:04:fa:eb:ee:2f:8c:6f:a8:
fe:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F4:EE:64:04:2A:AC:CF:8F:E8:2B:DD:82:E5:85:E9:BD:8B:4B:D3
X509v3 Authority Key Identifier:
keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:03:2b:09:07:d4:a1:f7:48:6a:03:30:42:95:66:92:5e:18:
29:24:bf:19:df:02:b0:a6:65:8f:b6:b3:17:9b:5b:2c:14:9a:
d4:09:ae:32:82:5c:16:3e:8e:51:61:33:07:aa:cd:48:29:b0:
ed:ba:f0:a9:11:52:f4:8d:50:5f:11:25:b1:dd:72:44:ce:3d:
97:fe:d1:02:19:16:e6:40:a8:e0:47:33:70:82:df:e1:00:29:
dd:be:4f:53:a8:cf:d7:70:5a:0d:0e:25:d3:87:06:57:08:85:
28:3b:a9:18:7d:5f:ed:7f:28:c3:e6:ef:59:d8:22:7c:6c:5b:
11:d0:bb:5c:e6:b5:e3:f5:21:f4:f9:db:65:24:a7:08:a1:84:
65:9d:ea:3e:bb:67:2f:27:98:c9:56:0b:5b:8e:41:51:bb:e3:
f6:07:a4:c6:7f:83:cd:7c:05:31:e0:28:40:7f:30:c1:38:b2:
c6:bf:61:76:de:a6:e4:44:28:ad:11:4b:cb:73:63:8d:77:6c:
d3:dc:1b:80:e6:9c:5f:c8:02:8b:e4:ca:bb:a8:8c:df:d5:06:
28:3f:94:ba:7f:47:88:6b:98:8b:53:04:06:d1:f9:a9:db:ed:
9d:49:7d:3a:22:d4:d7:de:00:0c:6c:e0:34:ba:e1:c7:b2:3c:
4c:a0:3f:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:45 2026 by rpki-client