Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
File: MjFs1IgVYto785JbSRi24R12UUw.mft (raw, json)
Hash identifier: tIImOINJka3iB5s5PwEwr26/tKWddFIP5ZRKXEfxtjA=
Subject key identifier: E1:F1:A0:7E:D0:CD:8E:6A:11:DB:97:02:F2:E7:A3:2E:B3:16:40:8F
Authority key identifier: 32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
Certificate issuer: /CN=32316cd4881562da3bf3925b4918b6e11d76514c
Certificate serial: 019CACEB8700198C2A86914D8810E9A4F906
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
Manifest number: 0FA3
Signing time: Mon 02 Mar 2026 05:00:42 +0000
Manifest this update: Mon 02 Mar 2026 05:00:42 +0000
Manifest next update: Tue 03 Mar 2026 05:00:42 +0000
Files and hashes: 1: 3xT874NnwQkkgc4z33baWzJf_xw.roa (hash: 0vrpkogPMBnepeiXnpaSIgsSChUa1yFutMzhwiTjs/0=)
2: MjFs1IgVYto785JbSRi24R12UUw.crl (hash: 0YOk/xR7/9GB06Q4eXjYrx3S0+o3uG/fJpzR4xVw7nI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:87:00:19:8c:2a:86:91:4d:88:10:e9:a4:f9:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32316cd4881562da3bf3925b4918b6e11d76514c
Validity
Not Before: Mar 2 05:00:42 2026 GMT
Not After : Mar 3 05:00:42 2026 GMT
Subject: CN=e1f1a07ed0cd8e6a11db9702f2e7a32eb316408f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cf:3a:ac:7e:1d:f7:4b:d2:e1:48:6f:51:51:
76:ef:84:fa:bd:be:80:87:29:7a:b4:fb:21:fa:8d:
1c:63:a0:08:5c:6a:bd:d8:4c:20:a0:b6:38:5b:e8:
e5:12:bc:91:0f:7f:94:8e:eb:07:c0:0f:07:d5:1f:
79:35:3f:6d:e7:36:e5:6f:48:74:c7:f6:25:4c:4a:
b5:1a:2d:2f:55:02:62:8b:34:ff:8a:22:e7:30:16:
7c:67:0f:79:31:cc:42:f2:22:44:35:d3:b8:40:be:
51:3e:fc:37:ec:3b:1f:f6:ae:24:18:3b:4d:3d:67:
a4:b9:c4:1c:b5:7d:33:46:9e:4a:06:de:8a:ef:6c:
f4:7d:3e:c7:d5:68:da:1e:f4:f2:cb:b5:38:40:bb:
0a:98:d3:11:83:bc:cf:cc:bd:9a:39:d8:07:ba:a9:
c0:9b:51:5e:0f:22:8b:6e:7a:37:30:aa:33:ee:b7:
f7:10:4f:fe:07:6b:c3:46:24:dd:db:22:2e:5f:f9:
a4:6a:c2:e1:cc:5d:34:bf:3e:18:65:ad:22:c9:82:
a0:06:95:93:00:ca:82:92:21:2c:dd:1b:ff:4b:f4:
2f:66:1a:7b:a8:c8:f3:96:94:d0:3f:32:bb:04:7c:
82:0d:28:4b:ee:6a:c6:33:84:f5:e3:8d:47:47:25:
12:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F1:A0:7E:D0:CD:8E:6A:11:DB:97:02:F2:E7:A3:2E:B3:16:40:8F
X509v3 Authority Key Identifier:
keyid:32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:80:35:e3:e3:c3:09:2b:42:64:e4:6e:3a:a7:68:e5:04:6f:
f6:85:c1:13:8c:49:f5:91:77:0b:4d:b6:d6:21:dc:8c:23:9e:
41:ec:4a:15:27:e4:8c:61:8e:00:16:4e:35:09:20:db:b1:f5:
9a:55:d9:d3:74:41:bd:51:7f:ba:a7:1f:aa:72:e4:f4:6b:c4:
7c:1a:5f:48:ba:2f:58:c3:65:e8:5e:9f:62:86:be:dd:f5:32:
50:05:90:72:02:13:5f:48:39:ed:4e:cf:ba:4c:9c:64:a7:97:
5c:ca:9c:ec:69:e7:62:21:cd:48:90:e7:29:50:da:d7:57:12:
79:9a:a1:a4:46:a6:28:80:f7:a3:30:c9:a7:d8:c7:51:57:52:
4c:02:55:74:cf:1e:82:df:d1:c5:dd:6b:63:0b:8c:70:03:a9:
9f:d8:0a:8b:ed:aa:f4:10:cd:43:f3:fd:71:36:e8:76:1c:15:
16:49:ad:74:08:e4:c2:b3:bf:d1:70:72:61:ae:d8:2f:f8:a1:
6e:3d:06:3c:d2:3a:58:2f:f6:ba:4b:6e:80:be:ae:f7:86:c4:
47:f6:49:d7:f7:17:82:b8:c5:ee:22:12:f6:4e:d5:8c:ce:1e:
e7:29:0c:ab:87:0d:11:8d:90:88:17:e6:ee:95:ed:46:d0:a7:
a5:3c:ca:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:39:39 2026 by rpki-client