Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
File: rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft (raw, json)
Hash identifier: qn1PdS36mmVlJOa4COnfFfcGO4djZwt1hUZ2TgKIuUk=
Subject key identifier: 04:75:6A:88:F3:CB:F0:A2:C0:AF:65:4E:9D:4C:87:6E:CC:FD:38:E8
Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Certificate serial: 019CAB6B517A710C234A6DD6211782984F56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
Manifest number: 1861
Signing time: Sun 01 Mar 2026 22:01:02 +0000
Manifest this update: Sun 01 Mar 2026 22:01:02 +0000
Manifest next update: Mon 02 Mar 2026 22:01:02 +0000
Files and hashes: 1: Bq58wAV24LxCZfTqHikKpc1Pf90.roa (hash: Z38fRBPUaqDEJWZAtaIhWDjBuRq5J5FcYiFjJcjIdC4=)
2: g2mfEORB4KTxQPtrqS9KmJwGt60.roa (hash: ckCX/PTaFOHfPb57/FfMCnl07XdvXwOjflYamRZ+ttU=)
3: im5Fb-9w5mmPjp20JVfM6UTi9ZI.roa (hash: Lno5hcnACQyBSV8jBaTu79StES2mMHGRUyHa5ifNUXg=)
4: kEa8o2UnqelmH_ygtilQKIay4-U.roa (hash: wdOm+SKzMVc+6qYyPwtZWi4vySs728OYrMlkH8naows=)
5: o2zKTEKdkma_CEqLLr3-nWa-bTg.roa (hash: K00xY1oGfH9hHVRaGcI7b3OeCoea9X65r82JQ/DAkQ4=)
6: rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl (hash: 4gAU45wyb5O0FfV8iITgpo0wr2FeshyBqqTCnLt3hlo=)
7: yl_8RQWT42NWgczzOlDn0gK7u0w.roa (hash: AZgf7E7lVvGrL5j+ea4NwUOdqabLA6/5isp7lMtBrHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:51:7a:71:0c:23:4a:6d:d6:21:17:82:98:4f:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Validity
Not Before: Mar 1 22:01:02 2026 GMT
Not After : Mar 2 22:01:02 2026 GMT
Subject: CN=04756a88f3cbf0a2c0af654e9d4c876eccfd38e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:9b:b7:a5:54:c6:f3:d7:27:b8:b5:f7:41:64:
87:a6:6a:68:9f:ac:0a:15:17:af:69:9b:e4:f4:fd:
17:66:ff:82:a7:a2:ea:e0:60:14:94:38:b1:38:53:
46:1d:46:51:af:91:38:5e:09:c4:12:41:ec:0f:15:
d9:8c:7a:f9:70:00:0a:91:55:e3:dd:f8:92:eb:58:
f2:08:30:0c:42:88:e5:f5:a4:f6:29:b8:9d:ac:2d:
d8:39:19:c0:76:48:d4:6b:f4:71:b9:47:4e:00:49:
0e:75:fa:5b:d8:57:df:9d:7a:d9:de:21:44:76:78:
7b:99:a7:f1:55:36:19:61:41:83:45:12:7c:7e:5d:
78:5c:85:95:9e:de:95:50:40:84:03:77:62:0b:ae:
43:25:37:81:35:59:68:bb:45:79:88:bd:85:42:47:
71:1c:53:71:6c:f8:2e:43:86:14:ea:5f:b8:fc:1d:
b3:fb:85:0a:57:83:38:1e:74:1e:7e:3f:bd:87:2f:
54:9a:de:48:99:e2:ab:e1:92:c4:07:15:95:f8:6d:
98:08:db:67:ee:a6:78:53:a9:8a:a7:3b:8d:f8:43:
e4:c2:12:0f:f2:0f:d5:28:7a:16:d3:46:1d:58:6e:
7f:6b:80:c1:ad:9b:d3:37:31:5f:53:ad:02:11:0f:
30:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:75:6A:88:F3:CB:F0:A2:C0:AF:65:4E:9D:4C:87:6E:CC:FD:38:E8
X509v3 Authority Key Identifier:
keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:68:34:83:cb:a1:7b:b0:89:b1:15:67:1f:98:bb:93:8b:e2:
3f:53:bc:a0:24:5a:ba:f7:9c:87:ad:80:d3:a5:0c:2a:fe:3c:
ef:71:59:6a:26:35:ee:a7:42:80:57:7e:35:97:59:1f:62:e8:
e7:41:08:cb:df:a0:24:54:ed:2d:a5:17:85:83:f1:b9:e9:7a:
c2:f7:22:59:f9:68:f6:9a:7a:e7:81:df:44:9a:3f:e7:93:63:
44:a4:43:ed:f5:00:a1:ab:96:78:7e:e9:12:2e:e7:2e:26:f6:
c5:86:ad:27:ae:ae:d3:f1:7e:5f:bd:a1:60:4b:10:9c:6c:24:
38:28:87:b4:ec:e5:a0:13:bc:95:5b:dc:20:41:85:87:8e:97:
50:8e:45:17:ec:1b:d3:7e:60:09:10:c7:a0:14:dd:67:3d:6d:
91:3f:d0:25:ac:db:54:ec:f2:f4:f3:20:32:1d:5e:66:78:3d:
ce:a5:50:ec:49:40:8e:d1:bc:22:ca:21:c3:8f:34:09:52:52:
00:d0:0f:4d:50:e8:c8:c8:4b:75:ca:1a:1e:4b:8b:fe:d2:60:
b7:f0:01:f5:03:ed:a3:09:b0:e6:e8:a9:60:cb:c7:af:2b:af:
f0:3d:1a:85:a4:8f:da:18:cf:c4:67:09:78:b8:13:ad:09:7e:
25:bb:ae:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra1F6cQwjSm3WIReCmE9WMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFlN2Y3NDdkZjVmMjQzNTMxNTRkYzRkNGJmNzBkMmRkY2I1
M2U5MDAwHhcNMjYwMzAxMjIwMTAyWhcNMjYwMzAyMjIwMTAyWjAzMTEwLwYDVQQD
EygwNDc1NmE4OGYzY2JmMGEyYzBhZjY1NGU5ZDRjODc2ZWNjZmQzOGU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Ju3pVTG89cnuLX3QWSHpmpon6wK
FRevaZvk9P0XZv+Cp6Lq4GAUlDixOFNGHUZRr5E4XgnEEkHsDxXZjHr5cAAKkVXj
3fiS61jyCDAMQojl9aT2KbidrC3YORnAdkjUa/RxuUdOAEkOdfpb2FffnXrZ3iFE
dnh7mafxVTYZYUGDRRJ8fl14XIWVnt6VUECEA3diC65DJTeBNVlou0V5iL2FQkdx
HFNxbPguQ4YU6l+4/B2z+4UKV4M4HnQefj+9hy9Umt5ImeKr4ZLEBxWV+G2YCNtn
7qZ4U6mKpzuN+EPkwhIP8g/VKHoW00YdWG5/a4DBrZvTNzFfU60CEQ8wDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAR1aojzy/CiwK9lTp1Mh27M/TjoMB8GA1UdIwQY
MBaAFK5/dH318kNTFU3E1L9w0t3LU+kAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2Et
YzZmMWU2YWM5YmE5LzEvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi81OGFmMjQtYzQ1NC00NGIwLWE3Y2EtYzZmMWU2YWM5YmE5
LzEvcm45MGZmWHlRMU1WVGNUVXYzRFMzY3RUNlFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl2g0g8uh
e7CJsRVnH5i7k4viP1O8oCRauvech62A06UMKv4873FZaiY17qdCgFd+NZdZH2Lo
50EIy9+gJFTtLaUXhYPxuel6wvciWflo9pp654HfRJo/55NjRKRD7fUAoauWeH7p
Ei7nLib2xYatJ66u0/F+X72hYEsQnGwkOCiHtOzloBO8lVvcIEGFh46XUI5FF+wb
035gCRDHoBTdZz1tkT/QJazbVOzy9PMgMh1eZng9zqVQ7ElAjtG8Isohw480CVJS
ANAPTVDoyMhLdcoaHkuL/tJgt/AB9QPtowmw5uipYMvHryuv8D0ahaSP2hjPxGcJ
eLgTrQl+JbuuoA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:39:08 2026 by rpki-client