Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
File: mFW4DEXftep6qn3R2O2LFPnB3EU.mft (raw, json)
Hash identifier: /t9MJfo3SIJ2vJ9EX3iaD2RDAlWYNeMYXPbCyv8/zUo=
Subject key identifier: 43:DA:DE:D7:7F:78:C2:3A:A5:8C:75:BE:10:85:8F:9B:2A:DC:26:C8
Authority key identifier: 98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
Certificate issuer: /CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Certificate serial: 019D292914A70F314F311630515A5CB140DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
Manifest number: 0371
Signing time: Thu 26 Mar 2026 08:00:51 +0000
Manifest this update: Thu 26 Mar 2026 08:00:51 +0000
Manifest next update: Fri 27 Mar 2026 08:00:51 +0000
Files and hashes: 1: JdrrzB7a1qH9AHo1hI78HQ9vZMk.roa (hash: GTd8cCkoiW0FGNR73NG1lnLnp97HhBUrrNAzm3q5ilE=)
2: mFW4DEXftep6qn3R2O2LFPnB3EU.crl (hash: SbXkEe9I+VP5ueLHxfZ1Nf3zRlF0Y+VTZQNtBnfQ0ww=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:14:a7:0f:31:4f:31:16:30:51:5a:5c:b1:40:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9855b80c45dfb5ea7aaa7dd1d8ed8b14f9c1dc45
Validity
Not Before: Mar 26 08:00:51 2026 GMT
Not After : Mar 27 08:00:51 2026 GMT
Subject: CN=43daded77f78c23aa58c75be10858f9b2adc26c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1b:84:17:f4:8c:9e:22:38:d4:a2:e2:42:4a:
3d:6f:14:4b:ac:52:ba:8c:f0:da:b4:e9:1a:ca:d7:
4e:92:ed:c0:ba:6a:16:d6:1d:ef:e7:5c:3e:2d:b0:
07:3e:d1:8e:9a:fe:3d:37:15:f2:83:0e:d9:54:8e:
5d:ab:b0:a2:b6:13:bc:fa:c9:4f:e8:39:7d:27:1a:
ec:69:ed:c0:df:27:4f:04:a7:52:aa:46:46:d5:fc:
70:5b:25:5c:8d:a1:d3:b7:3b:d6:01:d0:8a:fc:f0:
c6:13:49:c1:44:9f:57:a7:79:b5:6b:d7:cb:a6:46:
53:2a:6c:4b:76:74:5f:75:3a:d3:01:65:fa:b5:47:
ea:1c:f4:4d:75:93:5d:0d:a5:6d:06:74:f7:73:86:
2a:ee:d1:d9:67:d5:6b:72:bf:3e:a2:8e:99:87:83:
1c:75:81:63:92:59:1d:0c:02:0a:26:ad:f6:ac:a5:
2e:b4:8c:f1:b3:8c:2c:d0:c4:c8:25:08:f9:3e:34:
77:11:63:07:8a:95:fe:71:6a:f1:c4:db:ff:04:59:
51:4f:d5:2c:32:35:4b:ad:10:f5:71:09:1d:61:b4:
e7:c9:75:d5:50:48:e9:a0:44:62:f4:f6:8e:f9:7a:
72:4b:53:46:2c:2a:e9:25:fc:82:04:75:ec:01:81:
5a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:DA:DE:D7:7F:78:C2:3A:A5:8C:75:BE:10:85:8F:9B:2A:DC:26:C8
X509v3 Authority Key Identifier:
keyid:98:55:B8:0C:45:DF:B5:EA:7A:AA:7D:D1:D8:ED:8B:14:F9:C1:DC:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mFW4DEXftep6qn3R2O2LFPnB3EU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/3a6bb4-24b8-4086-a29d-ee6c509b6221/1/mFW4DEXftep6qn3R2O2LFPnB3EU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:79:b8:2e:e7:86:c8:1a:fe:de:1a:17:b4:e9:22:46:64:85:
63:a2:5f:3e:5c:ba:a6:7c:21:94:f7:1a:3b:de:ef:db:8c:b0:
d3:1b:62:0a:02:70:94:c8:0b:d0:41:dc:e1:1d:39:65:2f:5e:
17:dd:85:50:56:19:c9:ec:e5:2e:f3:c6:42:ed:7e:ef:35:a7:
7d:ee:d8:9f:5e:15:d9:7e:f8:52:b9:5a:e5:d6:31:b8:a5:cb:
59:be:0f:fc:5d:db:06:4d:cd:12:69:e3:2c:52:c3:ee:56:e0:
1e:ac:ba:61:16:28:18:1f:59:be:e2:09:0a:70:7b:c5:64:81:
cb:14:ba:34:89:70:4c:44:b9:cf:ca:a7:2d:9d:d3:24:d1:e4:
a3:4b:bb:32:09:10:67:c8:5c:c8:97:cb:ab:ad:47:52:d2:25:
8d:7f:f0:45:b1:2c:dd:77:fc:9c:cf:5b:2d:4b:85:11:bd:e0:
ba:d6:bc:4d:14:33:31:48:fc:54:54:17:e8:31:ef:91:76:27:
d3:ac:52:2e:ce:51:5f:a9:75:15:4f:a6:e3:e3:12:b0:d6:f3:
c3:c5:6c:16:d6:c1:c8:6e:e7:b6:7b:70:76:33:1d:1f:76:ab:
1c:62:be:d2:19:11:56:8f:1b:bb:bc:0a:d0:2d:b6:75:91:fe:
26:fc:06:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:50:25 2026 by rpki-client