Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
File: 31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft (raw, json)
Hash identifier: CTi9wmOpZSQ0G2AC8n71AXiI88H04hyHuHcr3GYiEG4=
Subject key identifier: B7:3E:7A:89:65:F0:C4:0E:6C:87:95:3C:D9:48:4B:38:EA:D6:F7:ED
Authority key identifier: DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E
Certificate issuer: /CN=df52526f3d282765325c15a6e5765d7cd7f1f89e
Certificate serial: 019CAC0FE89BA2D8912735E8AFC951F586A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
Manifest number: 0FAE
Signing time: Mon 02 Mar 2026 01:00:49 +0000
Manifest this update: Mon 02 Mar 2026 01:00:49 +0000
Manifest next update: Tue 03 Mar 2026 01:00:49 +0000
Files and hashes: 1: 31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl (hash: NZTQ4xP01xF/14LtTBylsI1sXfQn3LSXLciQNNRTXQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:e8:9b:a2:d8:91:27:35:e8:af:c9:51:f5:86:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df52526f3d282765325c15a6e5765d7cd7f1f89e
Validity
Not Before: Mar 2 01:00:49 2026 GMT
Not After : Mar 3 01:00:49 2026 GMT
Subject: CN=b73e7a8965f0c40e6c87953cd9484b38ead6f7ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:b8:86:13:cf:aa:13:8d:99:03:c4:47:bd:23:
b7:a4:1c:c1:38:31:fe:11:c2:15:a9:a8:c2:12:80:
0d:cf:63:df:15:ee:73:de:49:4b:2c:21:96:f5:f9:
0f:aa:2a:8d:39:6a:4f:73:8b:1c:af:27:96:c2:c0:
4a:ea:98:8c:e6:6c:69:a2:28:a1:2b:0c:d3:0e:ff:
be:73:08:9d:6d:d1:48:5e:ba:c4:4a:97:ac:88:ec:
5b:7d:93:d3:30:67:a7:42:2d:41:ee:81:ef:0c:94:
27:a3:98:61:c0:c9:bf:e2:9b:12:89:0a:4e:ca:6a:
5b:79:90:9d:5a:85:1b:e7:2f:81:ec:9c:0e:01:e5:
bc:ac:ba:cb:40:0b:0f:3f:65:dc:c0:b8:eb:c3:ab:
7c:35:87:2b:91:e4:45:76:2b:df:03:d5:db:1a:dc:
66:5b:5a:6b:b4:f1:a2:01:09:d8:f9:83:b1:2a:5a:
35:70:8e:e2:ad:02:7a:11:33:23:e1:cc:60:ad:fd:
74:3d:2a:63:c1:49:03:71:05:04:ea:f9:aa:49:6a:
a8:de:12:7e:d5:a3:03:0c:22:2a:02:d6:0c:1f:0e:
cc:5e:7d:0a:6e:3c:28:af:30:ec:fc:f3:c2:0a:22:
ff:cb:e0:b0:5d:4e:99:10:eb:1f:6b:c9:8d:26:e7:
48:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:3E:7A:89:65:F0:C4:0E:6C:87:95:3C:D9:48:4B:38:EA:D6:F7:ED
X509v3 Authority Key Identifier:
keyid:DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:93:a0:b2:ad:10:17:fd:ac:e4:0e:d8:d2:d2:7c:49:55:fa:
64:be:3f:a4:65:f0:09:ff:ee:1e:aa:44:8b:55:b4:9c:a5:33:
13:9e:04:75:c9:da:0c:26:64:d8:e1:13:8f:17:4b:e5:01:73:
39:e0:70:9a:f2:2e:7f:63:48:80:5b:2b:23:4e:4d:05:50:da:
4d:02:e0:28:e1:0a:ad:b3:ec:03:08:1e:7b:7c:9a:d0:68:50:
11:92:c1:b9:b4:d9:f6:ae:a7:0c:2d:f5:d8:54:bf:27:29:57:
5c:97:18:25:40:7f:9f:1c:31:2d:ac:3a:61:1c:a4:df:df:5e:
50:15:2f:f0:c6:51:a3:05:2d:48:03:d6:85:c0:be:f0:96:09:
c6:9b:5b:72:0a:69:7a:33:f8:69:04:12:8a:19:1d:f7:f5:fe:
20:c3:b8:a2:38:ba:eb:a8:3b:fd:11:6c:38:9f:d6:9e:69:93:
6e:da:fa:69:04:53:e6:b7:85:c3:1b:74:cb:09:46:d2:d4:f7:
de:f0:4e:c3:02:b6:29:65:a2:ce:c8:72:17:0f:09:b7:04:28:
81:4d:7d:5e:e0:69:0e:48:b0:a7:00:eb:b4:11:b9:5e:0d:07:
38:58:23:ed:a5:0d:c7:02:66:9a:21:f0:d3:cc:33:27:43:40:
a6:61:aa:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:25:57 2026 by rpki-client