Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
File: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft (raw, json)
Hash identifier: 96DDspIzXtY1wyJcZvo2jmyuH8PABnOPV9BpWedtRl4=
Subject key identifier: E3:EA:FB:DF:C6:34:27:F7:0B:45:56:E8:B7:2C:E6:8C:19:B6:DF:72
Authority key identifier: FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
Certificate issuer: /CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Certificate serial: 019D29CE37371A45C6D0B8E006ED5B5AB4F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
Manifest number: 0FFB
Signing time: Thu 26 Mar 2026 11:01:13 +0000
Manifest this update: Thu 26 Mar 2026 11:01:13 +0000
Manifest next update: Fri 27 Mar 2026 11:01:13 +0000
Files and hashes: 1: GY4EnPb_q6Zazu0CJu5dhVQR9FU.roa (hash: cIwRyJ89jjJ0ifkb1iiXIh0uKnfN3IaxGiXjhh7yXZA=)
2: _ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl (hash: R+hzE+nl6400a9ESEi907bjJHD6XmOe3EQPVSe3RiX4=)
3: pa8B-FlOx--Ut2_es5oAJhA0FCA.roa (hash: ajOY0LcVIPOyQGKjIC9aKFEQAKswVywtezhougW9o5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:37:37:1a:45:c6:d0:b8:e0:06:ed:5b:5a:b4:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd385a616398e416c70dcb322566f93e3d2fbf13
Validity
Not Before: Mar 26 11:01:13 2026 GMT
Not After : Mar 27 11:01:13 2026 GMT
Subject: CN=e3eafbdfc63427f70b4556e8b72ce68c19b6df72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:16:66:86:4b:ec:21:50:bb:e1:11:c3:3e:5b:
7d:62:3c:68:a9:ab:f8:aa:06:f8:c5:90:f3:9f:fb:
97:60:ba:db:95:81:13:ee:25:a5:48:fb:57:67:47:
b4:27:14:3b:f8:b0:88:c1:fc:ae:75:32:0c:f1:00:
d0:86:69:72:5b:e8:d2:5e:29:f4:70:db:64:0a:00:
50:59:f8:32:f3:35:6d:5e:31:09:9c:0d:5d:63:79:
50:0b:27:b7:2f:85:37:30:14:63:c6:9b:fd:40:5a:
b0:a5:72:31:dc:0d:9c:eb:3a:d0:f2:f1:e8:af:ba:
90:c4:ab:ab:15:39:bd:53:57:25:b4:a0:70:7f:73:
8e:0a:14:4c:35:5a:f6:09:82:a3:cc:94:16:44:b6:
95:c6:1d:1f:3c:6b:f1:36:51:02:0f:9f:9d:7e:8c:
5a:46:f0:9b:c1:0c:d7:6c:95:e1:88:27:21:77:8a:
05:95:02:b3:2c:4f:cc:6c:45:78:95:91:3a:c4:d6:
fc:4e:9b:3b:a9:50:0e:19:3c:fb:00:e9:55:79:c8:
38:50:16:09:84:8b:14:aa:d9:70:40:69:a7:dc:6f:
a0:4c:81:d3:2d:73:40:da:b1:48:90:d7:8e:c0:a1:
eb:03:da:87:ef:c0:39:e6:3e:92:84:28:70:88:49:
96:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:EA:FB:DF:C6:34:27:F7:0B:45:56:E8:B7:2C:E6:8C:19:B6:DF:72
X509v3 Authority Key Identifier:
keyid:FD:38:5A:61:63:98:E4:16:C7:0D:CB:32:25:66:F9:3E:3D:2F:BF:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/257fd7-a9f7-4284-acf3-34304f5cda98/1/_ThaYWOY5BbHDcsyJWb5Pj0vvxM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:55:b2:42:9a:a4:6f:90:b1:10:d2:74:c7:8f:45:86:8d:a3:
3f:47:40:0a:b5:8d:ea:c2:60:15:c4:47:8b:30:27:d6:20:6a:
4c:66:47:17:b4:e7:1d:e7:21:e7:4e:c9:b3:9b:91:18:02:d8:
67:30:13:86:ab:1d:9d:d5:05:9a:2e:07:63:59:1e:de:04:02:
c1:a9:6f:98:4c:30:75:97:a3:4e:72:3c:98:1a:3f:78:28:ff:
41:5a:88:7e:f0:1c:7e:f0:41:44:17:67:b3:ac:51:c1:e1:aa:
49:31:fd:14:e2:59:87:a0:7a:e5:4a:ee:d5:dd:66:8a:c3:88:
25:be:b3:81:08:b4:8f:47:0c:52:81:4a:77:1c:34:6a:88:72:
9c:1e:79:0b:56:a5:b2:70:e3:cf:79:a3:39:bf:b0:e3:18:7a:
d9:20:2a:93:c3:d1:a7:c5:ef:66:ef:c5:d5:bb:97:60:c6:a7:
5a:9c:37:e3:cf:70:f1:f7:6d:c7:a1:e6:f3:ab:96:10:df:09:
35:ea:ef:1a:dc:ed:bc:cd:2e:d1:e4:63:f0:81:d0:38:06:90:
e4:53:4c:7c:4b:f8:05:5a:1a:d7:ae:04:d9:bf:d1:1f:25:ad:
db:39:19:02:99:97:27:45:fa:32:95:11:20:e2:eb:6a:df:e0:
20:d3:0b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:40:26 2026 by rpki-client