Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
File: 6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft (raw, json)
Hash identifier: wdMG2v+mRRPO5GhmZgLSiMMXLAPuRa8XZ8cgP6wod+4=
Subject key identifier: 53:D0:91:48:90:2B:3D:40:58:0C:A8:07:F1:05:AD:60:C3:6E:96:CF
Authority key identifier: EA:1E:CF:AD:FA:FD:4F:E1:4C:BD:C2:21:B9:15:9E:E9:61:8E:FE:89
Certificate issuer: /CN=ea1ecfadfafd4fe14cbdc221b9159ee9618efe89
Certificate serial: 019D2772C824691AC09C23C1965D0747151D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6h7Prfr9T-FMvcIhuRWe6WGO_ok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
Manifest number: 020F
Signing time: Thu 26 Mar 2026 00:02:06 +0000
Manifest this update: Thu 26 Mar 2026 00:02:06 +0000
Manifest next update: Fri 27 Mar 2026 00:02:06 +0000
Files and hashes: 1: 6h7Prfr9T-FMvcIhuRWe6WGO_ok.crl (hash: ykqh8YbHHcngkO4+7qDTkP/OZ6IH1kRODthcPYOqTZQ=)
2: vwkWycVdom3nvYeKOf0XRuXuyg8.roa (hash: GQTFaeIhIDJqGTNfp3g118208VXOEiHmD7gFsTFKtRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
rsync://rpki.ripe.net/repository/DEFAULT/6h7Prfr9T-FMvcIhuRWe6WGO_ok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:c8:24:69:1a:c0:9c:23:c1:96:5d:07:47:15:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea1ecfadfafd4fe14cbdc221b9159ee9618efe89
Validity
Not Before: Mar 26 00:02:06 2026 GMT
Not After : Mar 27 00:02:06 2026 GMT
Subject: CN=53d09148902b3d40580ca807f105ad60c36e96cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:da:2e:cf:f8:52:b4:f7:40:c0:67:cc:a3:19:
c4:80:9a:6c:a2:b0:fb:b9:dd:38:c0:15:86:1b:94:
bd:b5:94:21:27:e9:ce:49:db:bc:c3:81:60:e7:8f:
94:6f:3c:0c:5f:07:f8:f6:0e:5c:04:51:47:44:18:
78:e8:b1:21:1a:55:06:ae:97:7c:5a:53:a8:5a:96:
ac:2d:a8:6d:c1:b3:1e:40:f9:fe:04:44:20:82:50:
0a:42:38:db:60:ca:9c:f7:c5:fe:ec:d5:5f:81:14:
87:ea:9f:52:4b:d7:b3:9d:35:71:a4:b5:e7:30:6d:
10:07:5c:73:83:61:a5:11:16:c4:fb:00:cf:6f:70:
76:76:a3:88:26:76:78:ff:c9:c6:31:e7:e4:d6:23:
3e:2a:bd:84:7b:ea:70:bf:fd:31:3c:83:4d:07:67:
03:f6:5e:86:76:ae:77:3b:b5:a0:e5:2c:4d:9f:f0:
9a:de:02:66:9c:92:ec:af:7b:65:f2:b3:d8:12:f4:
80:07:cc:c2:d2:af:1d:63:d3:86:cd:b2:a4:47:2e:
35:9c:c8:cc:6f:c5:16:b4:db:ec:54:b8:52:a8:ee:
df:9f:0f:40:4e:7c:26:89:07:17:cb:87:1d:46:0b:
0d:aa:44:b8:2a:a2:03:b8:2c:a9:67:63:5b:1f:02:
aa:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:D0:91:48:90:2B:3D:40:58:0C:A8:07:F1:05:AD:60:C3:6E:96:CF
X509v3 Authority Key Identifier:
keyid:EA:1E:CF:AD:FA:FD:4F:E1:4C:BD:C2:21:B9:15:9E:E9:61:8E:FE:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6h7Prfr9T-FMvcIhuRWe6WGO_ok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:2d:75:86:fb:a4:57:ad:69:fe:76:de:84:a8:b9:b3:d8:ea:
b9:18:b5:ee:15:e5:89:11:b7:01:66:86:40:d6:f5:22:31:a0:
06:bc:98:ea:5b:6f:39:8d:c3:44:23:0c:ab:12:df:cd:de:5e:
98:02:33:58:af:3f:1b:83:d9:5c:59:b2:18:ab:02:fc:b5:7f:
4d:d0:ff:fb:6c:0b:78:8e:87:1c:a4:2f:8e:2b:64:d2:fb:1b:
e4:f8:5c:41:71:a7:86:b4:c0:65:7b:eb:95:14:d0:12:d0:ae:
e2:e9:b8:27:67:76:da:39:d3:d4:ef:0b:b2:4c:16:ab:6f:15:
f6:91:77:e6:9f:ed:12:c7:da:48:a8:66:cb:dd:41:a7:c4:8a:
6c:ff:35:28:e7:6f:25:7e:f6:de:4b:7e:14:9e:6b:5e:c2:7b:
b2:7b:f8:c5:a5:08:5d:6f:d6:63:4d:01:cd:af:39:2f:98:ab:
b6:39:ed:61:cb:1b:d0:36:9d:4a:4f:61:d6:7c:92:a8:1e:4d:
5b:77:5c:98:80:f2:b2:b6:03:d0:13:32:4a:6b:31:1a:c3:5d:
3e:67:a2:32:49:1c:aa:af:79:85:4b:bf:c7:70:8d:f3:8c:2c:
65:ea:4b:19:b6:00:d3:93:7d:9f:68:a8:0a:97:37:b4:39:31:
fd:5c:62:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:29:10 2026 by rpki-client