Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft
File: _a9B0EvGh9D_mK19QHaEdRxGyj4.mft (raw, json)
Hash identifier: ZlJr9aqpmwMK5HUlfqDUsC03KH82MNobhfn2bEekMbA=
Subject key identifier: 77:FD:D7:ED:DD:27:67:85:90:92:3F:0A:AB:CE:F7:2E:7A:44:32:57
Authority key identifier: FD:AF:41:D0:4B:C6:87:D0:FF:98:AD:7D:40:76:84:75:1C:46:CA:3E
Certificate issuer: /CN=fdaf41d04bc687d0ff98ad7d407684751c46ca3e
Certificate serial: 019D322BC6D0C35DC9801C6105C6C09295BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_a9B0EvGh9D_mK19QHaEdRxGyj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft
Manifest number: 0321
Signing time: Sat 28 Mar 2026 02:00:22 +0000
Manifest this update: Sat 28 Mar 2026 02:00:22 +0000
Manifest next update: Sun 29 Mar 2026 02:00:22 +0000
Files and hashes: 1: 6OMId8qLq9FNz-0vxg5RBukY9zs.roa (hash: xe2yi3J7qtfn/452oWa5yO6AXTtiMtVrNox5id3Mshk=)
2: MaydDWrUbLvw1QYZAkPLLUQxbi0.roa (hash: wvyXfigpqaIstAVGqzcAWkhhWQ5Hr2D2AHS65eJuN5U=)
3: _a9B0EvGh9D_mK19QHaEdRxGyj4.crl (hash: lmOFiengX7XCQN3RdpIMe9W1xs/JZ9mDom+2w628cuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/_a9B0EvGh9D_mK19QHaEdRxGyj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:2b:c6:d0:c3:5d:c9:80:1c:61:05:c6:c0:92:95:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fdaf41d04bc687d0ff98ad7d407684751c46ca3e
Validity
Not Before: Mar 28 02:00:22 2026 GMT
Not After : Mar 29 02:00:22 2026 GMT
Subject: CN=77fdd7eddd27678590923f0aabcef72e7a443257
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ce:24:d8:f1:13:52:af:57:47:d3:dc:41:a7:
c2:30:b6:c7:c0:64:2f:e6:66:3f:81:ef:f4:e2:a2:
cc:27:0a:b1:bd:60:4c:01:c0:9f:19:0a:39:6e:e1:
00:fc:94:19:01:5e:c6:ee:b6:4a:03:d1:01:7a:1e:
4b:51:55:c6:0c:cb:08:a8:10:f5:91:7e:96:24:38:
8a:d3:83:26:2e:af:57:b0:d2:7d:ac:83:5f:21:3d:
c5:97:f0:8a:42:13:b9:a4:69:40:b2:7b:b4:90:d3:
74:63:e8:27:47:17:b7:b9:86:2a:3e:1b:b5:51:d2:
a1:12:61:2d:27:94:e2:1d:b3:ac:c7:5a:3d:09:85:
93:fc:79:a3:d7:e5:1a:af:d8:58:37:d6:76:a6:c8:
07:d2:c8:16:d4:e8:ef:5c:56:9b:e0:11:fb:4b:ad:
49:ba:15:d6:03:de:8b:da:68:10:06:89:13:c0:3b:
ae:49:8a:a1:bb:1f:f5:5d:e8:ad:89:25:9c:ea:71:
c7:af:c9:fd:05:61:a6:f5:c5:e1:1e:c7:0d:6e:d7:
bf:d7:3b:af:27:ec:4e:09:ec:8a:f3:cc:bc:8e:d7:
e6:83:00:8d:1c:cf:b5:cd:c1:8d:79:dc:9c:0e:6b:
bd:33:90:f6:29:ea:fe:4f:c6:3a:7c:fc:20:fa:d1:
78:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FD:D7:ED:DD:27:67:85:90:92:3F:0A:AB:CE:F7:2E:7A:44:32:57
X509v3 Authority Key Identifier:
keyid:FD:AF:41:D0:4B:C6:87:D0:FF:98:AD:7D:40:76:84:75:1C:46:CA:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_a9B0EvGh9D_mK19QHaEdRxGyj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/16cdfa-6ab9-47fa-b871-ea2021800342/1/_a9B0EvGh9D_mK19QHaEdRxGyj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:1e:82:bd:f4:d4:97:25:da:44:85:53:cb:8f:2c:b6:ec:9f:
7d:2f:0a:d8:9c:a4:0a:5f:67:a0:2a:87:5a:d9:e8:02:e5:26:
9b:4c:9e:c5:c3:c4:15:06:d9:7e:1d:40:59:53:2d:15:d6:ea:
32:89:43:f1:0a:7f:09:6e:55:ae:67:98:95:81:c6:fb:53:1c:
2c:a4:67:72:e9:c8:c0:36:0e:8b:a1:62:a3:7a:de:95:28:8a:
26:b0:9a:b8:1d:58:6e:68:ff:92:ef:a5:e0:74:85:e9:26:7f:
32:53:72:47:a5:9e:4e:ce:f8:9b:d4:bf:07:e0:d1:ca:c2:dc:
fb:0a:23:74:60:74:3c:01:28:7d:38:63:ab:55:8b:fc:4b:20:
82:4a:4a:b2:86:cf:f8:34:42:f3:4a:78:23:ad:0a:f5:cc:2f:
1b:29:96:fa:94:89:35:8a:a1:f8:53:30:cb:83:38:3c:d5:c6:
c6:ba:67:d5:89:85:0b:e2:b7:7c:0a:e2:38:93:6b:21:bd:c8:
0a:14:49:c3:55:46:63:12:92:86:4c:0b:38:68:13:52:0a:b3:
a4:43:75:36:0a:43:aa:bb:e9:4b:d2:7b:e2:8a:6d:44:b2:e2:
9c:6f:f8:39:2d:d7:9c:ae:b3:13:eb:c7:25:51:34:84:5a:88:
48:88:ac:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:19:20 2026 by rpki-client