Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: iArB1UrpxUDNMFKi6TNy/xirf6dBhVDQIzbPoBgHY0Y=
Subject key identifier: 68:6C:86:2C:83:C4:F9:F5:E6:1B:6F:A3:75:56:F1:DB:10:BE:C4:7A
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 019CAD596ABFB6A79F718D0BDC37D3826550
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0E44
Signing time: Mon 02 Mar 2026 07:00:44 +0000
Manifest this update: Mon 02 Mar 2026 07:00:44 +0000
Manifest next update: Tue 03 Mar 2026 07:00:44 +0000
Files and hashes: 1: 4XAM9liM1Y7hRRkcksNiW_aru-A.roa (hash: P0kySiJIZ6zOBwufqTsAfZ+d9KAiQxaN8Hb6kdFbtyE=)
2: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: DA0tdZX0edC2u64N0FXMjPbcmxV2+fvwCFD4neKTRUA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:6a:bf:b6:a7:9f:71:8d:0b:dc:37:d3:82:65:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Mar 2 07:00:44 2026 GMT
Not After : Mar 3 07:00:44 2026 GMT
Subject: CN=686c862c83c4f9f5e61b6fa37556f1db10bec47a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f3:08:5d:57:5f:12:3b:64:04:a8:2d:4e:2e:
67:a7:a6:27:26:04:56:23:08:6f:b2:dc:21:19:11:
49:1e:4e:2e:31:48:ea:1d:db:04:e5:c8:da:2a:0b:
56:ff:91:07:77:c0:80:63:5b:37:24:e8:b4:b7:fc:
47:b3:8b:6d:53:94:76:cc:24:11:f7:da:01:73:1a:
19:5c:b5:de:df:41:6a:8f:95:3b:eb:6d:5f:da:25:
7c:0f:77:a0:1e:7e:71:6f:e0:ff:30:d5:d7:32:57:
d2:8c:aa:e2:d6:96:e2:06:f0:5d:f3:3c:93:c4:f3:
e6:33:27:84:64:34:14:56:fe:e7:55:80:e9:27:96:
df:95:ff:d0:59:84:95:0e:4d:3b:50:eb:9c:bb:06:
40:68:21:f5:33:9b:d0:ba:89:ad:88:a6:9b:08:ab:
2b:df:9b:84:a2:f1:30:4c:70:fb:2a:b3:a1:4d:6e:
96:3d:f4:cb:29:df:07:bf:8c:93:e6:35:0d:64:8c:
dc:8a:ec:87:45:77:3f:69:42:d8:c3:d4:22:e5:9c:
99:9c:33:11:08:96:a2:54:e7:e9:5c:a5:cb:4e:97:
a8:1a:62:de:f2:49:9f:2a:46:a2:4b:a6:38:3b:e5:
b4:5d:8f:97:b7:18:af:54:ea:80:8e:24:af:58:b9:
8d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:6C:86:2C:83:C4:F9:F5:E6:1B:6F:A3:75:56:F1:DB:10:BE:C4:7A
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:35:23:89:41:54:ae:66:46:4a:6e:f3:8e:34:b7:72:7e:f2:
f1:06:d4:7d:25:6f:3c:6b:6f:9e:cc:6e:a7:1e:d2:a6:2d:2e:
ae:75:24:6c:9a:70:50:59:46:ee:2f:37:b9:91:de:3b:dd:e7:
e1:2f:cb:c6:17:8d:57:3c:93:7e:61:07:ae:65:70:63:1a:cd:
a8:17:e4:17:38:ea:d5:44:d4:68:1f:3e:72:2e:e5:ab:f8:9d:
a4:18:ed:09:56:84:80:96:08:0d:f3:83:e5:25:07:71:86:03:
a1:12:c4:0c:de:6e:89:96:e1:3e:73:58:ef:64:45:22:87:b8:
56:5f:c1:ed:22:53:eb:6b:4f:a7:42:40:d4:42:7a:73:a2:d3:
61:07:59:b9:59:14:d2:db:60:e8:29:43:21:2e:51:85:dc:af:
2c:41:02:44:2b:3c:99:d5:32:f4:00:48:ce:01:32:2e:f2:39:
07:94:7b:98:ac:ae:a4:c9:c5:ba:4c:d1:d7:d2:81:f3:8b:1c:
1b:73:2f:fa:94:df:f0:df:fa:64:af:d2:95:71:79:9c:f6:2e:
ae:a6:05:da:99:38:e0:17:90:cb:3f:6f:f4:f5:1a:69:e2:49:
63:22:a7:7f:8f:0b:22:69:ec:ba:46:28:cb:28:fb:bd:7e:c7:
ed:72:31:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:25:22 2026 by rpki-client