Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
File: mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft (raw, json)
Hash identifier: B9aUFUjjnffE5C4WmBYbFa9qTUcgkkYkhiGCV9v3aUg=
Subject key identifier: B5:72:BA:20:CA:54:40:13:CA:DC:25:2C:65:2D:12:F7:42:E4:93:B6
Authority key identifier: 99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
Certificate issuer: /CN=991b5422cd5578d4715ebe4c5097202523dd5658
Certificate serial: 019D2928E3C5F964A4CA4C58A38870A73C39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
Manifest number: 1710
Signing time: Thu 26 Mar 2026 08:00:38 +0000
Manifest this update: Thu 26 Mar 2026 08:00:38 +0000
Manifest next update: Fri 27 Mar 2026 08:00:38 +0000
Files and hashes: 1: HMeFeWtw9N7rk3aYVC_VTWXgzMM.roa (hash: iTEJqDydJmTzPI0AxKyGiy/lzp+8Axti0R4ZxzfqlZo=)
2: mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl (hash: wShNAPXyD8pE1xSkt1Rz1h5CqDWXQtPmh4ft79J/M9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:28:e3:c5:f9:64:a4:ca:4c:58:a3:88:70:a7:3c:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=991b5422cd5578d4715ebe4c5097202523dd5658
Validity
Not Before: Mar 26 08:00:38 2026 GMT
Not After : Mar 27 08:00:38 2026 GMT
Subject: CN=b572ba20ca544013cadc252c652d12f742e493b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:51:77:2e:87:0d:2b:68:18:de:d3:6f:ed:74:
34:ff:7f:5f:4d:65:17:26:53:65:26:fe:cb:0d:1f:
bc:39:56:d7:d8:88:67:41:7f:3b:20:05:12:ed:8d:
f0:01:7a:6c:ba:0a:a9:bd:8d:3e:a6:32:01:f4:25:
ca:47:f6:2b:44:e4:89:f1:a8:5d:36:4f:c2:94:b6:
f6:5f:4b:f7:99:c4:6d:24:42:72:f9:5c:87:6d:6d:
fa:ad:36:be:92:06:cd:9e:19:36:5d:d4:ac:15:1c:
a1:35:f0:9b:64:c3:42:79:0e:c3:e0:2f:c8:3d:57:
62:b6:48:87:4e:a9:dc:85:47:11:89:e2:5b:6a:99:
62:ed:6b:61:b5:15:39:4a:c3:c8:1c:a8:77:34:5c:
00:eb:1b:84:d6:a2:13:d3:92:28:93:2d:e3:98:8f:
a3:de:de:9f:24:6b:9c:23:11:84:df:c6:eb:3e:e2:
20:5c:cb:cc:9f:5c:48:ce:b0:33:dc:ab:d0:ed:33:
53:a0:0c:04:ef:de:60:e0:cc:09:79:bf:ca:c4:9c:
17:cd:c5:f4:cf:0f:7c:9a:9a:2b:76:eb:8c:f0:25:
f2:1a:e1:c9:1c:c8:c8:d4:9c:6c:24:d6:fa:b1:83:
aa:90:3a:6b:0f:63:9d:41:01:2c:d1:2a:2a:80:ea:
e8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:72:BA:20:CA:54:40:13:CA:DC:25:2C:65:2D:12:F7:42:E4:93:B6
X509v3 Authority Key Identifier:
keyid:99:1B:54:22:CD:55:78:D4:71:5E:BE:4C:50:97:20:25:23:DD:56:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mRtUIs1VeNRxXr5MUJcgJSPdVlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/5811c0-6dae-4dd4-987c-d46ffc501f36/1/mRtUIs1VeNRxXr5MUJcgJSPdVlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:a7:d5:00:81:96:60:4f:e9:f0:4a:d1:a8:21:25:11:a7:17:
b8:ca:76:63:09:30:9f:e0:09:23:17:8a:e7:9b:ca:45:b2:20:
be:12:12:84:44:f1:53:c4:6c:8a:f4:e8:eb:8b:95:98:f9:31:
68:57:6f:c2:68:d1:09:4e:15:75:eb:cb:82:9c:87:c3:45:0a:
3c:9d:ad:f9:b6:36:ed:a9:f7:31:38:06:f2:a4:ba:3c:91:d4:
ae:33:c2:23:e7:4f:f3:d4:3c:87:7e:07:61:2e:0a:a4:42:09:
b9:14:20:00:d6:fa:45:1c:60:0e:d0:cc:6e:7c:76:f2:62:b5:
79:63:36:fe:62:6a:39:09:9a:91:17:a0:07:e9:8f:66:ed:38:
2c:69:41:e8:75:4a:5e:b1:01:0d:d1:a3:fb:46:f0:1a:8d:a7:
75:36:33:b9:89:12:69:55:a8:90:eb:ba:58:c4:44:c4:e6:e1:
97:c1:82:6c:8a:ed:c2:0a:dd:02:76:b8:40:1a:5b:dc:eb:35:
02:0b:8a:eb:b1:e1:e5:ff:34:75:22:91:00:fb:20:68:13:44:
3d:28:d2:5e:f6:d1:e7:77:12:7c:f3:f6:0f:63:f5:40:b6:f7:
ae:8f:a8:56:0f:75:c1:a8:1d:d7:bd:25:ee:12:b4:47:9b:cf:
89:1b:17:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:30:00 2026 by rpki-client