Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
File: MHFOgRmzE03MBg_lkAp82Gj8WXM.mft (raw, json)
Hash identifier: xyFThxAUqwJWo6Mtw1f1YnsOyWRtF8Wk/Nu0YzbKmVo=
Subject key identifier: FD:CF:49:63:BC:96:98:EC:74:BA:49:2B:51:4B:E7:EA:0C:E8:74:B0
Authority key identifier: 30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
Certificate issuer: /CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Certificate serial: 019CAF47CAAEC3295CDE89C29C5186ADA708
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
Manifest number: 03EF
Signing time: Mon 02 Mar 2026 16:00:43 +0000
Manifest this update: Mon 02 Mar 2026 16:00:43 +0000
Manifest next update: Tue 03 Mar 2026 16:00:43 +0000
Files and hashes: 1: 1vFJ7mkLHt8e-FnbPQ2sGqPMkOA.roa (hash: nP67zUvgCEBny+IrA1V7eCj0Omps26STL5vjKxKHFGM=)
2: MHFOgRmzE03MBg_lkAp82Gj8WXM.crl (hash: tsmxGmgJrxHZ2NUUegj9vfletUgbmvtGBS9yYvsLqH4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:47:ca:ae:c3:29:5c:de:89:c2:9c:51:86:ad:a7:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30714e8119b3134dcc060fe5900a7cd868fc5973
Validity
Not Before: Mar 2 16:00:43 2026 GMT
Not After : Mar 3 16:00:43 2026 GMT
Subject: CN=fdcf4963bc9698ec74ba492b514be7ea0ce874b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:eb:e7:17:a2:79:da:e6:f4:d2:7a:6f:c4:65:
6a:2a:9d:65:2e:d0:db:ca:95:dc:58:8b:1a:f2:5f:
57:0d:20:47:c9:d3:c8:3b:d6:19:e2:c1:4b:d1:a8:
97:18:3c:80:b0:33:df:16:a0:2c:ac:79:e5:b4:e5:
95:5a:72:d5:bb:46:06:db:af:6a:54:b7:de:4d:dc:
7a:2a:19:47:8a:d8:45:15:4a:1f:87:8a:78:0c:12:
e7:d6:fc:a0:f6:98:47:c5:59:62:66:ed:dd:6b:2e:
ce:16:da:61:11:90:d2:23:0e:1d:92:27:94:31:e2:
a8:44:9d:09:8c:21:8c:75:f6:3d:ec:23:d7:70:33:
59:1d:21:f5:4a:a9:bf:fa:ff:b4:12:7d:9b:b6:df:
b6:ae:40:12:c0:c8:4a:95:55:62:c9:07:ca:b3:1b:
43:0d:f9:a7:fd:74:79:b4:10:42:d4:97:22:9c:59:
2c:80:01:d9:24:00:bc:a5:06:d7:77:78:06:90:a9:
a9:61:f1:c0:51:90:9d:bb:91:df:26:93:21:c9:ea:
2a:f2:56:71:77:49:a5:4e:10:e3:d5:d3:b1:cf:92:
44:cf:83:62:de:1d:bd:0f:8d:35:42:1d:d4:67:6a:
e3:98:af:8a:86:35:e7:8a:01:8d:bb:82:68:c6:40:
de:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:CF:49:63:BC:96:98:EC:74:BA:49:2B:51:4B:E7:EA:0C:E8:74:B0
X509v3 Authority Key Identifier:
keyid:30:71:4E:81:19:B3:13:4D:CC:06:0F:E5:90:0A:7C:D8:68:FC:59:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHFOgRmzE03MBg_lkAp82Gj8WXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/74fa13-2cb3-427a-a45a-8f3470d82057/1/MHFOgRmzE03MBg_lkAp82Gj8WXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b6:69:e6:3a:fe:d3:b1:71:ba:6c:40:89:f0:ec:77:ed:37:69:
9a:f5:1c:76:e9:06:a3:80:8d:df:c8:aa:82:bf:84:ca:07:8e:
ab:ea:21:b5:7d:cd:f6:4f:36:d7:dd:ce:bc:84:ba:11:38:40:
97:90:f6:58:43:2a:97:c1:e0:21:85:d0:e6:8b:73:48:73:7b:
e2:d8:60:a3:63:be:07:93:14:a0:ed:0c:87:8d:46:c7:49:c7:
29:2d:64:8f:85:8a:c3:e4:fa:36:7b:f3:7e:cf:77:17:df:91:
64:dd:95:06:04:8d:84:0b:a4:c9:87:da:09:5b:b9:55:45:34:
fe:12:48:6b:e0:24:2c:6a:49:98:6e:cd:21:d4:37:65:97:01:
6d:19:2c:4a:53:d3:e4:6a:4c:ea:fd:ce:d2:3f:ee:95:6a:ae:
67:27:29:84:7c:d9:e4:fd:dc:59:88:0b:21:56:ab:33:47:56:
ce:cb:1a:76:e0:f9:e2:a5:c7:dd:a4:de:b4:f3:5b:72:22:0e:
29:25:36:3f:94:2a:96:92:19:03:47:8d:32:89:ea:9c:ee:67:
6f:fa:dd:54:56:75:1c:2d:0a:a0:8d:33:eb:b1:13:41:c2:1d:
db:97:c1:89:fd:65:25:8c:29:0c:ba:c2:41:96:0d:b3:ad:4e:
3f:17:a0:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:50:15 2026 by rpki-client