Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: mLzIjIdM7zrlPbuf4ZJJRsq4OigI5qu5A+xisv0Hz6Y=
Subject key identifier: D9:84:1A:85:09:07:94:03:BE:81:8D:CD:D2:1B:93:A7:72:4D:96:50
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 019CAC0FE9C285412F1D46ADBB50541422FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: 020C
Signing time: Mon 02 Mar 2026 01:00:49 +0000
Manifest this update: Mon 02 Mar 2026 01:00:49 +0000
Manifest next update: Tue 03 Mar 2026 01:00:49 +0000
Files and hashes: 1: Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa (hash: BZd7Kwg87H/bospWBtm/c29GcUHDV3xSrqHEL2bm8Hg=)
2: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: k1sz6tf7sXzafg3j0dtvyfhbdVdkQG1sJIatqUJZOU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:e9:c2:85:41:2f:1d:46:ad:bb:50:54:14:22:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Mar 2 01:00:49 2026 GMT
Not After : Mar 3 01:00:49 2026 GMT
Subject: CN=d9841a8509079403be818dcdd21b93a7724d9650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:86:74:db:f8:61:91:96:2b:84:31:0e:6a:13:
0b:9c:c3:ad:3f:6d:83:31:ce:de:d8:f3:b2:3c:7b:
6a:63:9a:a5:c9:2f:b5:d5:9c:a8:40:4a:ae:6c:bd:
fb:07:bf:7a:e8:4c:e0:33:3e:00:50:f0:06:c4:72:
49:de:8a:43:db:37:f3:c1:7a:1b:fc:3f:91:32:78:
aa:8b:fc:bc:0d:18:eb:3d:08:4b:ae:c9:25:a8:89:
9f:d9:7d:2b:85:2d:a1:16:e4:63:d4:40:3e:72:7d:
e6:b1:35:36:3a:4c:bc:17:d0:7b:30:c8:e0:20:be:
b2:e0:8d:33:22:9b:a4:59:82:29:40:87:97:c0:af:
60:7c:b4:9e:05:d1:c9:f0:b7:f0:e9:98:73:c5:84:
29:f5:c6:e0:eb:34:e3:79:5d:ad:e9:9a:77:8a:6b:
3f:23:d0:80:dd:93:ec:19:8d:4b:a1:7f:b5:34:22:
29:32:58:13:3f:ef:92:d7:cf:6f:d2:7b:65:c4:fb:
92:66:b1:e1:5d:ef:68:ca:bb:17:f3:d1:12:36:ca:
5e:65:3e:9c:ff:43:15:c3:a5:c7:ec:fd:d8:20:ba:
06:5b:de:07:eb:6a:79:c1:97:3f:ad:9d:a4:60:e7:
10:5a:88:9b:b0:f9:31:ce:2d:4a:12:8b:66:25:24:
8d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:84:1A:85:09:07:94:03:BE:81:8D:CD:D2:1B:93:A7:72:4D:96:50
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:57:de:88:c6:2e:ce:86:06:b3:de:96:3f:1c:99:5b:f4:c6:
fb:bd:23:27:87:d2:43:28:b0:8d:a0:24:b6:a4:ef:02:a7:7c:
17:64:29:c3:97:6c:3c:a9:fc:dc:cc:f6:a4:20:95:43:cd:0a:
cb:d0:eb:5d:6c:e0:23:16:d4:02:ce:f0:0d:d3:0c:70:e5:d3:
c8:9c:8d:7d:3d:38:99:66:50:42:c9:9c:b1:f9:2b:94:5b:b5:
fd:5e:6c:28:e9:4b:83:d6:4f:e6:19:70:29:8d:79:4d:05:2e:
83:aa:0a:49:b9:e0:59:d9:fa:55:5f:ef:cf:a3:48:0e:ff:d6:
6e:79:61:aa:4c:9c:a2:e1:a8:76:dd:19:d7:c3:51:3b:b4:3c:
b6:41:aa:18:66:7d:7f:f9:93:b0:87:af:d9:45:12:1e:a5:86:
19:1f:91:a8:29:cb:87:0b:d8:26:45:f6:1d:8a:d7:c6:0f:f8:
5a:2d:f7:d1:c0:6f:3d:df:e0:81:da:d0:9c:15:61:5c:2c:69:
15:4c:cb:05:88:e7:fe:ff:e2:d8:2d:2e:13:e4:0a:24:b0:66:
ba:c7:94:87:28:55:af:3b:84:ec:e2:27:a7:92:0a:15:74:43:
ba:0d:ea:0c:6e:55:98:72:7a:c8:84:00:31:1e:19:f5:c2:b5:
c2:0f:c1:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:36:19 2026 by rpki-client