Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
File: MXvyYLzaMCviwgdijPsWRHhhT-U.mft (raw, json)
Hash identifier: Npkk4OGuOi/b75Aqf6HTq0cy5g9CEdbGf/pa1CYGkvE=
Subject key identifier: 7B:B4:54:4C:4F:7A:FF:96:02:AB:12:5A:5F:5C:C1:D8:43:F4:EF:2A
Authority key identifier: 31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
Certificate issuer: /CN=317bf260bcda302be2c207628cfb164478614fe5
Certificate serial: 019D2816E16E5115AEBEF6E784D548D0286B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
Manifest number: 0FFB
Signing time: Thu 26 Mar 2026 03:01:21 +0000
Manifest this update: Thu 26 Mar 2026 03:01:21 +0000
Manifest next update: Fri 27 Mar 2026 03:01:21 +0000
Files and hashes: 1: MXvyYLzaMCviwgdijPsWRHhhT-U.crl (hash: MWyX6H9c4gJIKHoYTUKn8o/7KB4dw7SZbEMmM42x9zo=)
2: xerBMxNW-woKiA8KHx0KcXB634A.roa (hash: AR2Ndl4ICAGHIwDUvuX6ce4+Y2SPrh5ql1qQ6H1YP74=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:e1:6e:51:15:ae:be:f6:e7:84:d5:48:d0:28:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317bf260bcda302be2c207628cfb164478614fe5
Validity
Not Before: Mar 26 03:01:21 2026 GMT
Not After : Mar 27 03:01:21 2026 GMT
Subject: CN=7bb4544c4f7aff9602ab125a5f5cc1d843f4ef2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:e3:84:bb:b1:48:fd:69:69:fd:0f:ea:1e:26:
a8:bc:bc:20:32:81:d9:76:e1:59:f0:63:46:6a:f7:
bf:fa:b1:f1:4c:22:dc:52:18:2f:fa:9e:d8:e9:11:
cc:fe:f4:e0:bb:61:17:e1:0e:a2:83:8d:36:da:dc:
4d:f2:e6:fd:84:2e:94:dc:03:df:f9:c9:8d:04:56:
ee:6f:78:83:3d:50:74:1b:5b:c9:ac:3c:c0:32:56:
ac:88:50:1c:25:6f:b5:ed:d3:7d:c0:cf:ee:5e:5b:
ee:82:1b:ea:d7:69:cd:be:0f:04:6d:86:cb:b5:e0:
4d:39:6c:1e:e8:08:c6:46:19:b3:da:86:b3:cc:b5:
2b:85:f1:f2:a2:a6:85:32:28:d2:a2:a2:3d:5f:4f:
b8:9b:fc:0e:ea:2e:f8:63:24:20:bf:11:6e:6d:69:
23:fb:a4:81:d5:f3:e9:08:0c:ba:d4:d6:82:48:35:
91:f5:a2:19:75:ab:29:43:f7:19:a8:01:ed:ad:d0:
bb:b9:00:60:86:87:fc:5d:76:7f:87:42:00:0c:02:
08:8a:0d:6b:75:7a:e1:dd:15:66:86:bd:32:61:d9:
c8:06:07:0b:53:43:94:c4:38:c4:96:7a:ce:3f:32:
cf:13:fc:52:56:11:88:1d:d0:82:17:39:61:9e:f7:
23:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B4:54:4C:4F:7A:FF:96:02:AB:12:5A:5F:5C:C1:D8:43:F4:EF:2A
X509v3 Authority Key Identifier:
keyid:31:7B:F2:60:BC:DA:30:2B:E2:C2:07:62:8C:FB:16:44:78:61:4F:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXvyYLzaMCviwgdijPsWRHhhT-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/07d146-ef22-4e5c-bd5c-42ed3e373679/1/MXvyYLzaMCviwgdijPsWRHhhT-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:1d:28:1a:e9:cb:f0:dd:0b:62:60:1b:d3:19:07:e7:61:ba:
14:3e:74:80:91:5c:d5:8d:3f:40:90:ff:09:c2:fd:ee:d7:cc:
e7:08:f1:f2:5d:13:6c:2d:b9:2f:50:c1:41:b6:5e:ee:db:d0:
1c:bd:29:4f:67:cd:6d:3f:42:ec:e1:e6:71:51:b6:33:d9:d0:
f0:ed:d5:7a:78:86:81:9e:63:fa:52:11:09:d1:ef:4d:7b:80:
d9:3f:ce:65:df:2b:54:4e:a5:d3:13:ee:f5:ef:78:be:db:2d:
ab:ab:1f:c9:0f:ee:99:fb:d5:4c:ce:c3:bc:25:3c:6d:e4:0b:
80:7f:4a:8f:d5:29:5f:12:e2:37:67:43:8b:fb:68:64:6b:cb:
6a:bc:aa:2f:8a:dc:92:a9:0d:af:9c:69:a4:9f:b8:2f:1e:5b:
eb:c1:d9:29:8a:dd:f4:4c:6a:e9:7f:b8:33:d9:20:de:17:0b:
25:96:0e:bb:48:02:a1:af:8b:40:7d:01:17:ba:15:12:b1:cd:
98:0b:30:33:43:ce:8c:b6:ce:a7:44:d1:e4:49:82:48:40:39:
d8:d9:7a:fd:72:b0:48:08:c1:af:d2:65:1f:53:e3:f4:55:e9:
d8:1c:87:96:1e:c4:2a:00:92:91:03:e9:c3:ad:9f:c0:35:61:
57:82:4e:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:30:07 2026 by rpki-client