Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
File: aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft (raw, json)
Hash identifier: COrPI9DQG6dlIo2AV2Bg4HqsZLP/ew9QQHI0TYuMaDA=
Subject key identifier: 8D:80:48:06:1B:F2:CC:23:70:EC:4A:B2:29:86:0A:D4:80:14:0E:67
Authority key identifier: 68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
Certificate issuer: /CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Certificate serial: 019CAA8F80BEB34B29311D259861F592816A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
Manifest number: 07B0
Signing time: Sun 01 Mar 2026 18:00:57 +0000
Manifest this update: Sun 01 Mar 2026 18:00:57 +0000
Manifest next update: Mon 02 Mar 2026 18:00:57 +0000
Files and hashes: 1: TxCuEKO4UFBws6tMJ89yfNDgvSA.roa (hash: ye0le9kc8j89F6B3VF5KOiTRqH3PrXwEdQjOQuRJ7Js=)
2: aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl (hash: jp8t19Y439lszafugNnQWk83RnhPinIRHD5sDo1VibQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:80:be:b3:4b:29:31:1d:25:98:61:f5:92:81:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=687b91eda16b6f1b1fa0175d67c7994f691d8e97
Validity
Not Before: Mar 1 18:00:57 2026 GMT
Not After : Mar 2 18:00:57 2026 GMT
Subject: CN=8d8048061bf2cc2370ec4ab229860ad480140e67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3f:10:21:43:83:2a:d4:4a:3d:9b:bb:31:79:
30:77:f3:a1:f2:bc:a2:61:65:59:71:96:36:95:47:
a0:5a:6f:2b:47:a6:0f:45:ac:05:b6:22:c0:30:6d:
71:b8:ec:15:3f:e9:29:b0:0e:8e:a1:8f:87:c8:29:
e6:78:c6:96:15:86:22:bd:43:9d:c8:0b:9a:b3:ff:
03:05:73:71:36:ea:f9:11:09:31:c8:e1:90:f3:c4:
81:06:ea:70:4f:47:90:44:24:24:67:7c:fd:ed:a7:
01:58:83:59:ec:2e:5a:47:43:1f:14:85:eb:f4:b7:
57:ec:d7:3e:64:37:b6:85:c2:35:30:61:f3:e9:b0:
b0:f7:86:47:c7:50:64:01:b7:ad:07:ad:dd:50:7b:
8c:2e:80:99:86:d0:f6:27:42:34:73:0b:18:74:8b:
9c:b6:79:75:8b:cc:eb:aa:6e:dc:78:02:c8:ce:85:
e9:8e:d9:58:16:f2:c3:ba:7a:0e:2b:f8:aa:d1:05:
4f:32:60:9a:5b:02:13:2d:9c:90:fd:0c:ff:9e:6d:
1e:27:d2:92:44:c6:c9:ec:f3:21:24:df:60:47:4b:
58:2f:1d:b0:43:d4:ff:d8:13:fa:be:a9:13:3d:f8:
9d:d4:3a:f9:fb:bb:0a:db:c6:80:c6:31:22:8c:f3:
b9:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:80:48:06:1B:F2:CC:23:70:EC:4A:B2:29:86:0A:D4:80:14:0E:67
X509v3 Authority Key Identifier:
keyid:68:7B:91:ED:A1:6B:6F:1B:1F:A0:17:5D:67:C7:99:4F:69:1D:8E:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aHuR7aFrbxsfoBddZ8eZT2kdjpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/2fb8df-0e48-4665-a99b-dffe59023e89/1/aHuR7aFrbxsfoBddZ8eZT2kdjpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:df:d8:6c:72:79:fc:68:3c:f8:31:de:2a:4c:4e:7e:dd:b1:
23:00:b5:7a:47:3d:b2:44:ac:8c:ad:0b:fd:3d:12:32:c0:85:
18:ae:fc:a9:04:d4:9b:51:08:39:4d:27:a1:79:a4:da:ba:cd:
3a:09:50:3d:82:a8:1a:51:f8:98:d4:7f:0f:e4:d5:26:73:a4:
ca:93:a8:14:dd:09:a1:de:62:37:18:48:95:b7:0a:17:8f:74:
04:87:38:bf:aa:32:a9:e0:8b:ad:bd:2a:4c:d7:cc:b1:2d:7f:
29:53:10:3f:6e:84:b4:99:d1:03:76:56:7a:dc:c5:c2:0e:6c:
b9:2b:6d:06:b0:68:fd:2a:04:ed:a3:37:b5:20:da:4f:8f:ee:
0b:9b:2e:88:32:13:39:76:44:4e:9a:b0:de:79:34:23:37:be:
78:12:ba:d4:c3:8e:6b:36:da:9f:db:79:6c:a9:1f:31:9b:ea:
af:b5:aa:a1:51:9b:eb:80:29:a7:11:4e:c1:ce:1a:dc:74:2c:
68:94:69:4a:c5:c7:8c:2e:75:fa:7a:02:9d:7a:03:72:6a:66:
5c:7b:13:07:95:5b:55:23:b5:f1:26:05:ba:65:c9:3f:b8:91:
7a:b0:be:ed:e1:62:7f:b6:23:6a:6c:58:e3:1c:35:8d:7f:50:
fc:f4:5c:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:01:55 2026 by rpki-client