Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
File: MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft (raw, json)
Hash identifier: hH/SnvMwVTGpMuHzVqTK8BeoUpf/n4vXDDQBYSt3Nms=
Subject key identifier: 92:5F:58:31:F3:13:B7:05:81:46:86:AE:8E:CD:81:12:CD:EE:E9:19
Authority key identifier: 30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B
Certificate issuer: /CN=3075d87c197a0fa04da8f225358d3faf786f7d0b
Certificate serial: 019D2929AC999772AE7B71DD70283A9E7F45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
Manifest number: 0672
Signing time: Thu 26 Mar 2026 08:01:30 +0000
Manifest this update: Thu 26 Mar 2026 08:01:30 +0000
Manifest next update: Fri 27 Mar 2026 08:01:30 +0000
Files and hashes: 1: MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl (hash: UUhvZyj70Ch1kEDFzzXVJdqcGcomT3lhjXp0TWAnqGc=)
2: e6hHV9sCUc7s1khP8XoEDf8NVHo.roa (hash: TMmfCLj9EVDBcAPJhOcf7tnYbYq8PeLIXmBm9+66U44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:ac:99:97:72:ae:7b:71:dd:70:28:3a:9e:7f:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3075d87c197a0fa04da8f225358d3faf786f7d0b
Validity
Not Before: Mar 26 08:01:30 2026 GMT
Not After : Mar 27 08:01:30 2026 GMT
Subject: CN=925f5831f313b705814686ae8ecd8112cdeee919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0d:6a:dc:90:74:6f:3f:16:24:75:66:70:64:
1f:8a:8a:df:e0:10:3b:7b:1d:c3:35:e1:c6:d5:1f:
73:f1:e7:2a:65:05:e8:20:60:7a:68:03:49:2f:be:
9c:77:30:38:0a:2f:be:b2:79:b9:d6:f6:cf:50:d9:
8d:3e:ad:02:7c:04:31:c0:a4:a2:bc:54:76:61:e8:
79:c5:a2:27:fd:00:4d:fd:fa:db:79:cb:3c:b6:1f:
e3:fe:ea:21:67:c0:d5:d3:58:1e:eb:c0:a5:50:cf:
a2:cb:a5:0e:eb:ad:28:03:9a:09:64:35:cf:08:f8:
88:38:43:93:ff:f6:66:ec:9d:0a:fa:20:2d:4d:7b:
e9:44:75:4f:68:e0:c8:76:30:de:e4:ec:e1:63:ec:
e9:8b:84:05:68:0a:b9:c9:85:b3:27:a4:ac:27:10:
e5:37:60:76:05:dc:da:50:82:7e:ec:b0:ed:48:63:
fd:ce:30:1a:a2:cc:11:85:68:a5:c6:50:d7:ec:af:
6a:22:28:36:87:43:0a:e4:c3:f4:79:8a:ef:db:c1:
a2:87:f0:2d:2d:33:7d:9e:d6:ff:93:cc:25:04:b0:
4c:7c:ca:62:72:a3:0e:0d:fb:50:4a:46:c2:6b:2d:
47:fe:40:72:38:5b:d4:df:0d:c1:9b:d1:e1:7a:26:
f6:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:5F:58:31:F3:13:B7:05:81:46:86:AE:8E:CD:81:12:CD:EE:E9:19
X509v3 Authority Key Identifier:
keyid:30:75:D8:7C:19:7A:0F:A0:4D:A8:F2:25:35:8D:3F:AF:78:6F:7D:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHXYfBl6D6BNqPIlNY0_r3hvfQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/a400b2-bab4-4119-a3d1-89981c8f9e7b/1/MHXYfBl6D6BNqPIlNY0_r3hvfQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:a3:15:f3:28:9e:e7:60:76:9a:dc:5a:dd:13:da:3c:d7:0a:
8f:de:04:de:61:33:68:bc:72:87:b4:fc:6e:67:09:89:cd:a2:
41:bf:bc:41:b5:e0:28:9e:7d:5d:d3:93:62:35:eb:9c:3d:ad:
ca:1c:20:21:c1:1e:11:75:fd:b7:cf:fe:35:5b:2f:07:76:07:
d6:81:af:79:ab:4a:f2:6d:98:55:4f:90:b5:6e:00:3b:7f:f9:
45:2e:7f:92:30:99:f6:bf:69:48:58:6f:90:6d:99:72:3b:cf:
23:7e:f6:ca:a6:64:ea:1e:99:3a:3e:b6:c4:11:e6:14:be:9e:
aa:74:ee:07:11:63:1a:5d:d3:a1:46:23:67:56:8c:af:4f:93:
a8:ed:8d:d6:30:8b:5f:00:05:92:35:7c:8f:bc:40:5b:31:ed:
a2:a4:13:d8:1a:1b:25:ae:ed:4e:5a:84:1e:6a:f1:12:65:18:
af:d3:0c:36:f2:74:93:04:1d:1d:6c:97:40:bb:8f:22:96:19:
6a:b0:ee:9b:41:58:36:28:62:6c:65:fd:f6:ef:0b:83:52:87:
0a:49:6b:b0:46:e0:ae:97:3d:e8:a3:f3:66:55:ed:ae:27:63:
a6:8c:b9:1a:30:5a:3f:0f:5c:e1:5c:b7:1b:65:ed:a8:ab:14:
17:1e:f7:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:26:10 2026 by rpki-client