Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/53fbe6-c415-44a1-8311-c86253380779/1/RhsmU4H0lIsYkofVpiySqpBU768.mft
File: RhsmU4H0lIsYkofVpiySqpBU768.mft (raw, json)
Hash identifier: MfrXQRXttsOaNLhI1XjwrXeEKIoE3ex0OHEx3V3ffbg=
Subject key identifier: 2A:E0:E3:78:DD:8D:B1:81:07:AA:A1:B8:95:ED:66:52:19:62:C4:EE
Authority key identifier: 46:1B:26:53:81:F4:94:8B:18:92:87:D5:A6:2C:92:AA:90:54:EF:AF
Certificate issuer: /CN=461b265381f4948b189287d5a62c92aa9054efaf
Certificate serial: 019D2A0496EEDA9A7498BC0AB599ABEA69CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RhsmU4H0lIsYkofVpiySqpBU768.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/53fbe6-c415-44a1-8311-c86253380779/1/RhsmU4H0lIsYkofVpiySqpBU768.mft
Manifest number: 2D
Signing time: Thu 26 Mar 2026 12:00:36 +0000
Manifest this update: Thu 26 Mar 2026 12:00:36 +0000
Manifest next update: Fri 27 Mar 2026 12:00:36 +0000
Files and hashes: 1: RhsmU4H0lIsYkofVpiySqpBU768.crl (hash: LTuyxC2SltHP0hzIIW/Khz8ZPsQY52xbiRG5KXpiFuQ=)
2: Yz3FCqH3QHthq81f1DJuXfruXjM.roa (hash: EtlM1emQtHiqLpDRSd/JKMYJURZgwq+EqF92luYX6xQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/53fbe6-c415-44a1-8311-c86253380779/1/RhsmU4H0lIsYkofVpiySqpBU768.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/53fbe6-c415-44a1-8311-c86253380779/1/RhsmU4H0lIsYkofVpiySqpBU768.mft
rsync://rpki.ripe.net/repository/DEFAULT/RhsmU4H0lIsYkofVpiySqpBU768.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:04:96:ee:da:9a:74:98:bc:0a:b5:99:ab:ea:69:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=461b265381f4948b189287d5a62c92aa9054efaf
Validity
Not Before: Mar 26 12:00:36 2026 GMT
Not After : Mar 27 12:00:36 2026 GMT
Subject: CN=2ae0e378dd8db18107aaa1b895ed66521962c4ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:46:f0:72:21:a2:1f:19:9c:81:3f:00:49:b4:
0b:40:92:3f:48:6f:08:c0:9d:49:1f:c6:5d:42:fd:
d1:3d:4c:ae:60:41:0d:e9:28:70:5c:25:c6:c4:98:
44:1d:25:83:c4:82:c3:fb:a2:3d:e4:42:38:25:a0:
36:05:06:3f:e9:43:6a:70:11:82:15:5a:00:bf:d5:
8b:fc:db:44:81:a4:e1:d9:18:b1:cf:8e:c8:39:11:
94:d1:bd:75:10:2a:9d:39:5d:ba:4d:94:19:62:a1:
cd:65:9f:72:12:7a:64:10:c7:58:01:b7:2c:2d:43:
74:4c:30:d5:ff:3e:34:77:df:06:e0:a3:ef:76:55:
f5:01:4f:0f:e4:8a:57:62:c6:60:92:4a:c6:c9:0f:
3e:d9:3f:f9:86:84:41:94:4d:da:67:e7:f9:3a:53:
36:eb:d5:74:3f:2a:de:e4:f9:97:7f:f7:ae:a1:f2:
ce:70:f3:d0:45:eb:f1:90:91:95:12:58:93:82:5c:
e2:7c:d9:e4:e7:cb:f0:91:13:99:f3:0f:59:1a:f4:
61:5f:5b:3f:8f:d8:b0:a5:7a:1e:a2:c5:99:bd:f2:
48:d8:7b:42:9a:b2:68:92:ea:fa:b0:95:18:a8:7c:
04:60:cc:d3:f0:85:e3:bf:e1:3f:78:c2:92:fc:16:
16:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E0:E3:78:DD:8D:B1:81:07:AA:A1:B8:95:ED:66:52:19:62:C4:EE
X509v3 Authority Key Identifier:
keyid:46:1B:26:53:81:F4:94:8B:18:92:87:D5:A6:2C:92:AA:90:54:EF:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RhsmU4H0lIsYkofVpiySqpBU768.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/53fbe6-c415-44a1-8311-c86253380779/1/RhsmU4H0lIsYkofVpiySqpBU768.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/53fbe6-c415-44a1-8311-c86253380779/1/RhsmU4H0lIsYkofVpiySqpBU768.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:73:f6:3d:e8:c1:b2:1c:a0:40:09:92:63:d9:4e:86:1e:8f:
bc:d3:c7:c4:71:7b:06:21:70:cf:8d:12:f8:b5:4c:2e:8e:f0:
9a:1a:92:ba:9a:48:08:b4:5c:67:07:ed:d7:c0:56:99:4e:a3:
39:99:f5:e5:aa:f9:40:f0:fd:0e:15:0b:62:eb:f5:81:5a:b2:
7c:6f:c8:a4:8d:86:97:8f:8f:9d:d2:fa:5a:c6:6c:90:24:25:
0f:fd:20:9a:bc:bf:44:e6:de:62:01:a1:5d:f3:e4:cb:d3:2b:
5b:54:df:97:19:58:90:92:7e:81:e3:de:fb:66:e0:e9:7c:4a:
cd:2f:a0:ab:2a:84:45:3d:2b:1f:5c:8a:3c:c1:22:8d:4d:64:
db:f4:c2:41:2e:46:aa:37:53:a5:85:14:71:cb:b7:6a:a7:92:
79:36:6b:7f:d2:29:0c:5f:6a:c4:ae:55:8b:53:f0:e3:0a:37:
97:de:0f:e3:08:2a:5e:5c:03:8c:b0:73:16:72:d5:67:9e:fc:
10:1e:b2:bc:54:1f:2c:bb:d3:92:81:81:1b:fd:f9:14:a4:a1:
53:f5:39:a1:88:b4:49:a8:93:f0:36:b3:96:88:84:33:9d:ab:
4e:7f:df:d3:f1:3e:54:f6:04:e1:9e:b9:bd:fb:f7:4b:48:eb:
d8:af:8a:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:13:04 2026 by rpki-client