Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
File: mRQlj7nTZXszdhQr_GPazk-CEcQ.mft (raw, json)
Hash identifier: 9/87idjKcBdS3bRi3rQnF0NdBxIrUmk9g1dGs9h5ttY=
Subject key identifier: 0C:24:F5:26:A7:E5:01:F8:7B:B1:EC:1A:AA:33:16:58:2D:30:53:96
Authority key identifier: 99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
Certificate issuer: /CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Certificate serial: 019D29290C2DDF66DFA3848C0A3C5CD2C023
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 08:00:48 +0000
Manifest this update: Thu 26 Mar 2026 08:00:48 +0000
Manifest next update: Fri 27 Mar 2026 08:00:48 +0000
Files and hashes: 1: YeKyHo-fPzS0PXLTVc_ZhuOAnDE.roa (hash: JasqN/dFTwUl8qybymMvb6Z/5LOD9789U3Jts0vT2yw=)
2: mRQlj7nTZXszdhQr_GPazk-CEcQ.crl (hash: LwjzU2jmVRsfxDz24six9LaHAywfjyUNPrKumNEXuTw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:0c:2d:df:66:df:a3:84:8c:0a:3c:5c:d2:c0:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9914258fb9d3657b3376142bfc63dace4f8211c4
Validity
Not Before: Mar 26 08:00:48 2026 GMT
Not After : Mar 27 08:00:48 2026 GMT
Subject: CN=0c24f526a7e501f87bb1ec1aaa3316582d305396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:69:bd:11:da:d8:74:01:11:8d:dc:51:f2:cd:
f4:5c:88:db:ce:98:7c:bc:85:38:64:13:b1:14:9c:
3b:1a:ef:26:82:6b:a1:0c:7c:af:bd:18:7c:e4:de:
2d:77:4c:12:5a:a8:bb:08:7d:69:aa:a7:27:2f:4e:
5f:7a:c0:48:78:18:22:35:61:36:00:09:d0:50:df:
91:b8:9d:b2:09:1d:81:18:a1:01:bf:e4:8e:52:80:
e9:f9:2d:05:1c:26:cc:35:42:51:09:38:3e:35:fe:
c8:21:d2:ee:7b:e3:25:87:14:a8:21:99:91:dd:37:
76:ee:84:2d:98:99:ac:3f:85:69:ed:eb:e9:57:1b:
67:59:20:81:95:a3:5f:f4:65:08:1c:39:0e:2e:40:
83:a8:00:e1:1b:96:e2:d5:15:24:48:44:04:47:6f:
09:70:68:b2:d0:e0:f7:c8:53:d4:a6:c7:4d:80:b9:
63:8d:44:43:9a:65:b8:89:51:a9:cb:6e:74:85:ec:
68:b0:25:de:92:88:05:b6:7a:18:90:8c:77:7d:7f:
c3:fc:17:87:55:4d:a7:74:df:11:10:60:81:fa:31:
26:86:83:1a:22:9e:74:87:65:65:9e:29:a1:8d:e5:
1d:7a:a9:8e:b5:b7:54:ff:cc:28:af:d3:b1:2e:a6:
68:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:24:F5:26:A7:E5:01:F8:7B:B1:EC:1A:AA:33:16:58:2D:30:53:96
X509v3 Authority Key Identifier:
keyid:99:14:25:8F:B9:D3:65:7B:33:76:14:2B:FC:63:DA:CE:4F:82:11:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRQlj7nTZXszdhQr_GPazk-CEcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/86641e-669c-4a8d-ae0b-fe341b3005e3/1/mRQlj7nTZXszdhQr_GPazk-CEcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:76:a1:7b:0a:f9:84:d0:3c:c5:20:e4:5d:78:1c:97:2a:6f:
60:f8:ed:6b:0b:7f:cc:f4:70:0a:2c:c6:4d:49:1c:68:1c:fa:
4b:53:d3:73:08:9f:cd:05:e8:8a:46:7d:82:85:af:f8:da:95:
91:3e:2d:74:b1:79:e5:c8:b2:f3:90:79:12:3f:68:d1:2b:4b:
ac:ff:24:b8:a7:d1:89:25:6b:a6:b9:a8:e1:08:f8:ad:c8:7f:
1a:82:50:ef:3c:4a:dc:11:f2:a5:35:1a:23:df:62:f7:a9:c0:
fc:4f:68:a0:3c:8b:17:69:bd:54:f9:0f:0b:d9:44:b4:0c:fc:
60:c2:bb:bc:7c:88:b2:d3:fb:d8:d3:0c:84:22:26:8f:ed:2b:
c4:9e:f3:e8:4b:7a:9c:81:a4:51:8d:ad:45:93:1e:be:e8:d9:
65:65:60:f6:d0:96:b1:e8:d4:57:54:34:47:39:d0:5a:f5:97:
1e:3c:36:f3:60:c7:9b:7c:dc:cb:0a:cb:e7:9c:40:fc:47:f7:
de:5f:d8:7f:dd:fa:68:43:a0:00:87:55:a9:87:b1:50:9c:1f:
25:2e:56:5f:e8:ab:a6:8e:80:f6:27:5d:39:82:f5:27:62:a9:
44:84:9f:c6:7d:a0:a3:3c:ae:0e:84:48:61:25:77:e5:e8:f8:
96:e0:58:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:26:39 2026 by rpki-client