Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
File: MGwIZtwlII5sB9SiHX2AULUI1qI.mft (raw, json)
Hash identifier: D6/ym3b3JihY+HhPI+FAFpZXvOcWknPwOpOdxOGH/CE=
Subject key identifier: A4:59:B0:EC:7A:A0:78:7E:0F:8D:FF:41:CD:B3:A2:C0:A8:28:19:AE
Authority key identifier: 30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
Certificate issuer: /CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Certificate serial: 019D273AED6C11BDCB0E07777A5AC538EABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
Manifest number: 1702
Signing time: Wed 25 Mar 2026 23:01:06 +0000
Manifest this update: Wed 25 Mar 2026 23:01:06 +0000
Manifest next update: Thu 26 Mar 2026 23:01:06 +0000
Files and hashes: 1: MGwIZtwlII5sB9SiHX2AULUI1qI.crl (hash: IWtz3GBjcsNQE7LgewDKk5mNDZmVrHHSiw0GTc97gTw=)
2: b07UfMEb7bgqS9YVKg3FeyWplBY.roa (hash: 5La9pjg5nSt4KkLswON450P9sRutO7xwpRh6hKJ6x+Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:ed:6c:11:bd:cb:0e:07:77:7a:5a:c5:38:ea:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=306c0866dc25208e6c07d4a21d7d8050b508d6a2
Validity
Not Before: Mar 25 23:01:06 2026 GMT
Not After : Mar 26 23:01:06 2026 GMT
Subject: CN=a459b0ec7aa0787e0f8dff41cdb3a2c0a82819ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bf:c1:17:e6:8e:6c:19:e9:a0:6a:3e:3b:69:
52:ec:91:77:30:95:1b:c8:49:4d:0b:96:0f:a2:b6:
4a:64:04:1c:ec:a2:34:74:de:b7:83:6f:36:a8:6b:
6f:bb:f9:43:b1:80:dd:67:a3:c5:0c:75:ce:74:cc:
c4:da:bd:15:97:c6:0c:f2:c0:2a:d3:73:c1:54:c8:
8f:7d:61:28:28:d6:fe:8f:d6:00:73:1e:c6:4f:13:
14:2f:44:bf:07:ae:e9:9c:e3:e3:15:2b:b4:4c:73:
fb:7c:ee:e4:4f:cc:a6:50:53:ab:6e:f3:1c:3c:d6:
b2:ac:ab:d1:7e:a7:1c:7a:12:ac:ef:2d:78:0f:60:
b4:09:b9:e1:4a:25:1d:54:91:82:83:df:be:de:0a:
77:21:ac:1f:5d:32:6c:cc:e4:62:f6:ca:15:61:ab:
e8:ef:7a:6d:e9:ff:5b:cd:a4:12:82:9b:64:34:8e:
5f:97:f9:b2:05:e1:1e:aa:12:d0:49:db:7e:8f:a2:
34:e9:ed:4f:0c:84:88:a8:a0:b0:15:1e:33:fd:42:
9d:98:ee:dc:38:fc:e5:c9:60:05:5b:ca:68:1a:ef:
35:10:3d:96:0e:d0:af:85:19:6c:27:4d:46:7e:09:
00:8f:60:60:0d:08:6e:d8:6f:16:20:d1:b3:fa:f1:
cf:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:59:B0:EC:7A:A0:78:7E:0F:8D:FF:41:CD:B3:A2:C0:A8:28:19:AE
X509v3 Authority Key Identifier:
keyid:30:6C:08:66:DC:25:20:8E:6C:07:D4:A2:1D:7D:80:50:B5:08:D6:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MGwIZtwlII5sB9SiHX2AULUI1qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/badedf-d0e9-45a9-af75-10edb541e6ff/1/MGwIZtwlII5sB9SiHX2AULUI1qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:00:c8:82:74:15:c4:ca:be:02:e2:4e:8b:e2:47:01:f5:75:
58:18:f9:7a:0a:09:5c:e2:56:f8:ee:f5:5a:66:9e:cf:0c:83:
b3:60:01:32:e8:7c:34:5e:9b:12:68:9a:19:f4:31:b4:f4:36:
af:60:29:ef:8d:93:b1:eb:15:b5:ad:03:e0:cb:69:8d:dc:b1:
ad:9f:3d:56:30:56:19:d4:68:12:b1:c1:38:eb:cf:7f:e1:3b:
35:00:cf:8d:bb:5a:3c:9a:a0:b4:4a:1a:d9:de:99:00:fb:34:
d5:4e:43:14:05:f6:31:cc:8f:0a:eb:a3:7b:86:60:d8:13:7f:
7e:c8:0f:7c:03:b9:27:71:3d:b6:ac:22:a8:d8:eb:5c:90:f2:
6b:cc:94:14:01:23:cb:ae:90:2a:21:b2:01:9b:ae:b5:bf:f4:
73:ff:8e:aa:0f:73:aa:bf:28:cf:3f:55:d3:cf:72:ce:c5:f7:
15:b0:05:30:9c:94:d1:7e:ba:d4:a3:de:76:5b:d7:6d:1c:e7:
bd:10:0f:e9:36:9b:a8:a0:c3:c3:d0:5b:7f:f2:64:a4:aa:6f:
f3:6e:cc:d7:44:9c:69:af:c6:b9:54:2b:66:f6:d5:6a:45:37:
47:0f:a5:18:4c:d1:04:92:79:e8:0d:0e:9a:fe:c9:d4:08:7e:
be:47:f7:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:26 2026 by rpki-client