Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
File: dK6PGUm6f0vCM-bCF6hBjKThEys.mft (raw, json)
Hash identifier: RWH9qYDwY9YAaaGAj3iW6SdQl0L2yJj0GckKEXZ3xQU=
Subject key identifier: 85:F1:9A:A5:C2:20:F9:03:1E:66:AE:E5:EA:BA:3F:E7:13:79:B3:21
Authority key identifier: 74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B
Certificate issuer: /CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b
Certificate serial: 019D28BB2A547EDB5C23D50B83174851058D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
Manifest number: 01B2
Signing time: Thu 26 Mar 2026 06:00:47 +0000
Manifest this update: Thu 26 Mar 2026 06:00:47 +0000
Manifest next update: Fri 27 Mar 2026 06:00:47 +0000
Files and hashes: 1: 8EOlbJXLvuv7BSeNnd2ICGJWLZo.roa (hash: CsWLwhPzZNOdijrEAjbyM64wLJ4YacynY1WeU/f0DKI=)
2: dK6PGUm6f0vCM-bCF6hBjKThEys.crl (hash: Gh+O982Xw+1f8NQ8Tp4FMXkAhM3DY8g7jHy8W0pzhBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:2a:54:7e:db:5c:23:d5:0b:83:17:48:51:05:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b
Validity
Not Before: Mar 26 06:00:47 2026 GMT
Not After : Mar 27 06:00:47 2026 GMT
Subject: CN=85f19aa5c220f9031e66aee5eaba3fe71379b321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:f0:98:3f:47:40:58:b4:41:97:b8:0c:00:67:
f6:22:01:36:5f:79:ba:c7:c3:73:7e:4e:51:9a:28:
ad:59:32:a2:89:49:93:e5:ff:bc:c9:f6:7b:e2:97:
fa:57:cb:e7:ed:a4:59:48:b4:cb:ce:50:d9:c1:15:
d9:48:fb:7b:94:97:a1:06:68:80:49:05:56:7a:de:
81:52:da:07:ca:e7:d7:69:88:55:cb:55:ce:15:58:
c0:77:2b:a8:06:7d:38:9e:f0:90:b8:b9:41:79:33:
92:9e:d5:46:56:17:5b:d3:ad:a6:29:53:12:10:d9:
a5:35:ba:49:7c:89:66:0b:6e:5c:af:ed:83:6f:9d:
6d:79:5f:96:af:af:3e:c0:08:ae:ac:57:61:57:ff:
ac:9d:27:eb:bb:b4:83:cb:0e:89:93:76:ca:22:24:
15:2d:30:ed:90:69:d1:00:8f:4c:49:02:01:57:93:
dd:d7:15:2a:69:a6:13:7e:67:93:64:d5:27:b2:5f:
8b:95:e5:7e:dd:83:e6:d6:55:9d:cc:39:37:09:f9:
fa:46:55:62:59:3b:91:8d:b4:32:3a:08:38:4f:b1:
eb:6a:8c:7c:9f:01:21:1c:73:16:da:ce:55:25:5c:
8f:68:48:43:5e:d9:03:6d:68:50:7c:5f:e9:c2:3c:
ee:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F1:9A:A5:C2:20:F9:03:1E:66:AE:E5:EA:BA:3F:E7:13:79:B3:21
X509v3 Authority Key Identifier:
keyid:74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:47:3a:f6:d9:95:1e:f7:23:c4:14:cd:f2:0c:5b:a0:d2:06:
4b:9c:dc:fa:6b:3f:3b:3f:dd:b5:6e:b9:e0:42:19:d4:4a:e3:
ed:2d:55:b8:73:ef:a2:4b:e7:43:c9:05:09:d2:fb:97:9f:0d:
2a:f3:c6:63:a7:bd:08:e4:e1:9d:00:71:e2:df:50:07:ad:67:
4c:6f:3f:9b:bf:bf:9e:11:4f:3b:5a:ab:cb:e9:1a:b6:6d:d2:
7b:c1:2d:9e:33:47:67:42:53:32:af:87:da:6a:2d:d0:90:c8:
0d:ff:ab:b1:14:d5:5e:f6:b4:4e:1d:fa:54:f1:7d:6d:af:c6:
21:37:af:05:3c:2a:86:f0:e2:a1:9f:b0:8f:75:15:b1:92:c7:
07:95:a4:30:89:02:53:5d:79:58:b1:c2:2b:c3:b9:32:39:b3:
d7:6d:cf:dc:8c:67:f2:bd:c1:62:dd:3e:10:ae:41:f8:d0:4c:
e5:19:9c:5a:9b:7f:ac:b6:a6:c0:9c:dd:61:1d:3f:80:70:b9:
95:a6:f5:0c:ed:cf:c5:41:e5:20:dc:3d:ca:68:d3:1c:be:a2:
a6:45:0e:a2:bd:4d:54:a0:20:88:62:f1:f5:95:a2:53:09:17:
d5:00:6a:64:2f:85:56:d4:ac:a0:d9:ff:f9:e3:27:39:28:b6:
7f:a1:76:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:51:40 2026 by rpki-client