Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
File: mXpkd92XDJSyoXtSUCmC1Px1skQ.mft (raw, json)
Hash identifier: DnOaucRHlapHHAYPAl/2VOfK4K200xYnE0GEHxAR9Lk=
Subject key identifier: 00:53:1D:43:43:E3:8A:C0:E7:BE:E6:37:56:58:14:F3:82:B0:C0:B3
Authority key identifier: 99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
Certificate issuer: /CN=997a6477dd970c94b2a17b52502982d4fc75b244
Certificate serial: 019D281704A8D9D7EDD1E09A518C217DAED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
Manifest number: 07B3
Signing time: Thu 26 Mar 2026 03:01:30 +0000
Manifest this update: Thu 26 Mar 2026 03:01:30 +0000
Manifest next update: Fri 27 Mar 2026 03:01:30 +0000
Files and hashes: 1: 6bYFArU-m22v_2LMnKGfPfQ5d_U.roa (hash: T50wLh+t9t04GFvV8DA2eC2Fd5ixjDyLVmolPRcQuvk=)
2: mXpkd92XDJSyoXtSUCmC1Px1skQ.crl (hash: mlqOaRhtTEbVMs7hrpfFgN42FpbxtuDHD5PJIe4lFzk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:17:04:a8:d9:d7:ed:d1:e0:9a:51:8c:21:7d:ae:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997a6477dd970c94b2a17b52502982d4fc75b244
Validity
Not Before: Mar 26 03:01:30 2026 GMT
Not After : Mar 27 03:01:30 2026 GMT
Subject: CN=00531d4343e38ac0e7bee637565814f382b0c0b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:7f:e9:18:ed:9f:87:91:04:e0:c1:6a:59:e1:
9b:92:7f:7c:2d:a0:a0:2a:21:e5:d9:fb:1d:a1:28:
6c:42:fa:ee:dc:1e:fb:74:7b:7f:0f:de:08:ad:69:
49:ec:0b:10:da:2a:fc:ef:4a:be:5c:84:4b:92:c8:
f1:ba:12:8a:74:a2:2c:14:97:dc:8c:3a:93:7f:86:
ed:10:fe:30:ba:d7:03:37:15:32:eb:82:ed:4f:f4:
ba:c3:63:a6:0a:08:4e:ee:13:a3:36:23:ec:0a:eb:
47:ae:b0:85:fd:e4:c7:fb:55:18:1e:3f:6c:09:33:
6b:b3:5e:a4:92:d0:66:a7:62:f3:91:35:44:30:ef:
e3:30:31:bb:54:0e:73:a6:01:31:99:7e:e3:bc:b1:
fe:96:f9:c8:ff:5a:b8:5a:6c:22:0a:27:66:d4:8b:
1e:f3:2a:7a:71:64:f4:25:6a:8f:76:9f:d9:5e:3f:
19:ef:6c:7e:03:89:a5:52:92:79:d7:ab:39:9f:88:
e6:f5:7c:31:1b:2f:a8:d7:44:78:00:64:19:ba:d2:
33:f7:17:61:43:e8:47:aa:ef:ad:26:19:ed:cc:13:
8c:7d:a8:3f:2b:c1:fa:aa:e9:0f:21:5c:ac:4d:e9:
95:19:c3:ab:ce:a5:7c:d6:4d:9e:d0:02:15:34:bc:
cf:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:53:1D:43:43:E3:8A:C0:E7:BE:E6:37:56:58:14:F3:82:B0:C0:B3
X509v3 Authority Key Identifier:
keyid:99:7A:64:77:DD:97:0C:94:B2:A1:7B:52:50:29:82:D4:FC:75:B2:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXpkd92XDJSyoXtSUCmC1Px1skQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/481466-0e38-4e3b-9bf3-285745647f5f/1/mXpkd92XDJSyoXtSUCmC1Px1skQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:2a:7a:89:2b:92:3e:d9:32:3d:ac:3f:c6:03:01:43:21:46:
f9:49:ea:3e:90:75:96:58:d6:19:b0:03:00:8d:f6:48:04:34:
61:7f:2b:45:eb:1e:8f:08:8c:10:f3:1b:2e:7f:71:f6:91:0c:
d2:a3:87:7a:c8:b1:e2:40:4b:b7:65:71:f7:8b:e1:de:5b:f5:
65:f8:d9:e9:f4:56:ca:52:31:d6:63:a3:f6:95:05:9e:23:47:
4e:16:d9:3a:b9:c6:07:a2:d0:db:3b:55:2a:02:ba:6a:79:ea:
44:e4:d6:ee:db:46:a1:55:da:7a:39:ab:e5:1c:7d:4c:a6:22:
fe:84:27:32:70:b2:3a:c9:9a:28:ec:a1:2d:e5:09:9a:f4:1d:
cf:36:09:e9:1e:c3:f9:35:ec:8b:12:8b:3f:9c:22:00:51:f8:
4f:f0:da:ae:08:a5:0f:fe:ce:68:17:53:74:68:fa:37:cc:80:
3b:1a:6e:90:c0:0e:93:99:15:bd:99:27:b9:67:f9:61:42:93:
45:50:3d:55:5c:a4:9c:c6:97:f4:bf:20:fd:81:fb:bb:91:6f:
47:ff:6f:d4:f3:a9:a7:49:21:c4:f8:d0:b9:23:b9:85:57:96:
d1:20:e8:8b:6b:b3:8d:32:93:1c:8c:ce:50:e5:3a:53:6e:07:
33:98:e1:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:17:08 2026 by rpki-client