Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
File: MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft (raw, json)
Hash identifier: MUIjOHezOWFgc4xIly1YAgXBjXIZIRvSCTNdJQkbHgk=
Subject key identifier: 79:B6:91:E2:8E:4F:9C:1A:A6:86:E8:C7:4B:1A:84:9C:FB:79:79:50
Authority key identifier: 31:B1:62:1C:E2:8C:BB:FE:F0:38:AB:D7:54:9F:C6:CB:50:E7:11:6B
Certificate issuer: /CN=31b1621ce28cbbfef038abd7549fc6cb50e7116b
Certificate serial: 019D2960A67E9A2E389F7316E5FF35F9F1D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
Manifest number: 0B78
Signing time: Thu 26 Mar 2026 09:01:33 +0000
Manifest this update: Thu 26 Mar 2026 09:01:33 +0000
Manifest next update: Fri 27 Mar 2026 09:01:33 +0000
Files and hashes: 1: MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl (hash: mo6lgV2TOouhnpP/g5A7xV8TmGORdNK4R4htPzLO90o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:a6:7e:9a:2e:38:9f:73:16:e5:ff:35:f9:f1:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31b1621ce28cbbfef038abd7549fc6cb50e7116b
Validity
Not Before: Mar 26 09:01:33 2026 GMT
Not After : Mar 27 09:01:33 2026 GMT
Subject: CN=79b691e28e4f9c1aa686e8c74b1a849cfb797950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:db:16:a9:9f:47:04:2f:88:ee:65:78:0a:c2:
b1:dc:de:bd:8a:e2:0c:22:f5:bc:54:f2:5d:ae:65:
3c:90:a0:29:17:d3:fc:f6:41:cd:c9:3c:a1:9d:97:
52:13:3e:29:0e:f5:b0:b1:17:f8:ec:4b:4d:d2:15:
4c:48:36:d9:86:60:5f:98:73:54:e6:6f:bf:8a:bd:
7d:4f:6b:42:e4:f5:99:0d:af:77:a6:50:5e:03:44:
31:e5:c0:3a:1d:bf:4d:dd:42:01:f1:56:04:fe:e9:
bc:02:a2:80:66:1c:ef:ac:c7:b7:b1:5e:2d:da:6e:
11:75:ae:16:ea:0a:9a:12:25:91:27:4f:fa:03:d9:
8a:09:6e:5b:d8:f0:97:db:bd:ab:b4:06:9f:2b:ff:
87:e5:c8:62:8f:32:c6:57:8e:e8:d0:e2:1f:5e:d8:
5d:ef:a4:90:3d:a6:da:71:13:33:4c:50:b8:d7:8d:
09:71:5a:ee:d6:cf:55:46:40:ab:e5:f5:58:11:16:
2b:cc:97:2e:3b:28:d0:f5:42:cf:38:20:00:48:7a:
25:31:cc:64:ca:6b:e7:51:4c:f4:93:60:18:13:46:
a4:26:07:ce:21:0a:40:3a:2c:c7:b4:06:56:48:3c:
7e:df:6c:60:ae:f6:e0:3d:50:ae:66:bf:63:bc:14:
9b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:B6:91:E2:8E:4F:9C:1A:A6:86:E8:C7:4B:1A:84:9C:FB:79:79:50
X509v3 Authority Key Identifier:
keyid:31:B1:62:1C:E2:8C:BB:FE:F0:38:AB:D7:54:9F:C6:CB:50:E7:11:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/20602c-8de4-4dec-8b24-6614632723b9/1/MbFiHOKMu_7wOKvXVJ_Gy1DnEWs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:87:7b:64:b5:12:ae:00:d1:49:d1:1b:80:87:c5:c6:de:fe:
bc:b7:a6:4b:ec:22:5e:28:76:37:33:81:c4:14:0d:97:f6:82:
08:6d:8e:f3:b6:43:4a:9b:b4:7c:21:7d:84:4b:21:a8:a7:47:
08:db:05:83:c2:8f:a9:df:dc:02:5b:9a:91:99:f3:d6:f0:d9:
0d:c0:98:9a:1a:e2:41:ed:b7:c4:22:8a:e4:8b:c5:d7:b7:90:
3c:44:fd:c0:e6:73:06:10:f1:f9:f6:90:36:ad:27:2e:0d:53:
df:db:f1:14:b0:35:ae:d8:b6:fa:69:68:b0:d2:5b:f7:46:49:
d3:57:96:f0:58:a7:57:35:39:bc:36:02:28:22:6f:57:cf:28:
07:64:1f:b5:67:6f:e0:3b:68:2f:41:ff:39:72:23:79:5b:ea:
37:d9:e5:96:09:9b:d8:ec:39:59:7e:ce:86:34:a3:00:50:69:
57:a3:d1:86:76:87:fd:28:00:00:ca:91:2b:c5:52:de:02:25:
44:5c:84:3f:8c:df:cd:be:78:5d:4d:a6:d7:22:24:24:9a:af:
0e:f9:fc:94:17:aa:2d:aa:2d:56:7e:65:d3:2a:71:cf:c7:08:
72:02:25:d7:0f:9a:91:b5:10:6f:87:ab:bb:b9:7d:d1:53:6e:
3d:3b:77:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:51:44 2026 by rpki-client