Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json)
Hash identifier: WI5ZjZUMwchIejgY/cL3cy2UPab+VXltwCWtbgyTSWY=
Subject key identifier: 8F:88:76:1A:0D:E5:16:90:74:BA:32:52:83:23:8F:FC:16:83:3B:1C
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 019D27A9173C092576E734748B428CB0A951
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 01:01:26 +0000
Manifest this update: Thu 26 Mar 2026 01:01:26 +0000
Manifest next update: Fri 27 Mar 2026 01:01:26 +0000
Files and hashes: 1: j5iTBfQexadasqTPZf3BdqF-LoM.roa (hash: cKixD027h0pGrgVj07zhaZHgaHhvJuIsf5swfvNOu00=)
2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: CHkW3DlTAxYJjZQ3/Acze5GnvIeCoRdTXAPvK8CAl4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:17:3c:09:25:76:e7:34:74:8b:42:8c:b0:a9:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: Mar 26 01:01:26 2026 GMT
Not After : Mar 27 01:01:26 2026 GMT
Subject: CN=8f88761a0de5169074ba325283238ffc16833b1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:98:7a:4f:ba:1a:78:f9:52:ce:15:b6:3f:b5:
7b:0c:96:4d:01:9a:c4:6a:7f:56:f6:2d:0d:19:5d:
27:5e:76:06:6c:5b:20:15:66:68:aa:39:ab:d6:31:
63:ef:22:5a:af:3e:20:88:b6:c6:53:c1:f5:de:dc:
16:79:03:b2:a8:6e:d3:ee:90:d9:dd:58:00:3f:0a:
9e:71:4a:45:26:ee:c4:ba:97:e8:8d:5e:9d:9f:03:
a8:e8:60:6b:0b:76:30:b6:62:2c:63:d3:c4:89:39:
6f:46:16:af:c4:a2:75:45:cf:9a:a9:13:0d:1d:91:
e7:0e:a8:a6:40:54:b8:d7:c4:08:89:62:23:b1:c1:
9e:41:49:83:cb:31:26:d6:fa:b5:a7:b0:36:e8:30:
5f:84:ee:b7:52:17:e8:b1:b1:40:2e:43:59:b8:43:
a9:00:66:41:0a:80:09:74:ae:d9:3f:6e:85:b3:fa:
41:9c:c4:7f:0e:13:ab:61:27:af:02:04:60:9d:0f:
b9:29:ab:e6:38:2b:53:3a:50:f8:3e:85:02:16:7b:
71:80:41:e9:0d:46:38:e4:51:a5:62:38:1c:1e:d4:
0b:64:2d:83:c3:b7:15:d2:bc:ae:ce:81:04:6e:63:
2d:e6:a9:41:75:17:e6:dd:fb:ce:15:e6:73:de:c4:
d3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:88:76:1A:0D:E5:16:90:74:BA:32:52:83:23:8F:FC:16:83:3B:1C
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:30:73:b4:5a:cb:cb:2d:ec:f1:36:df:65:2a:ab:bd:a4:43:
d5:3a:89:10:f3:b9:1f:6e:13:16:04:35:3f:ef:6d:fe:f0:d6:
5e:9e:8d:3a:82:07:d7:e1:7a:4d:d2:bf:be:3d:0d:92:90:21:
c0:dc:4a:e8:4b:86:16:fe:6c:c2:8d:ff:f3:da:7d:78:f4:ca:
8a:41:47:5b:a5:a9:3b:11:6b:82:39:ab:9e:f2:23:79:74:97:
c3:59:50:13:69:dd:f1:23:dd:54:62:7a:d9:53:a2:de:28:49:
61:d2:09:ed:f0:de:f3:ad:53:3b:40:3b:88:3d:51:ce:f2:a8:
3c:cd:3e:ba:ba:42:b6:34:3e:ec:9e:cc:02:65:41:68:31:d8:
ac:bf:01:87:c4:5b:4a:dc:7f:84:e1:01:3c:f1:41:60:e9:ee:
d0:5a:78:9f:8c:a2:d4:0f:ef:d2:d5:bf:95:19:a7:f6:fa:c9:
97:43:3c:00:94:40:df:0f:dc:94:f5:fe:ed:ee:86:e9:1c:b2:
d1:90:19:bd:24:cf:27:ab:7b:57:a0:ee:5c:36:71:80:11:63:
f4:00:ee:24:7f:64:c8:c8:9a:1e:aa:b8:a7:dc:ba:bd:81:f6:
83:dd:b8:2e:67:3f:d5:87:49:01:a7:02:97:ac:5a:a4:2b:a3:
0c:04:ef:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:17:18 2026 by rpki-client