Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.mft
File: j07qcuRTHJKm4A708ZGmEn6VbS0.mft (raw, json)
Hash identifier: iV14X7doBBfFkgxaCg7cB1GteqVUz3RQaDPuKfHR+wE=
Subject key identifier: D6:FC:3A:BD:06:8E:EE:C6:0D:41:E4:22:E0:4D:BB:1F:E6:28:7A:D7
Authority key identifier: 8F:4E:EA:72:E4:53:1C:92:A6:E0:0E:F4:F1:91:A6:12:7E:95:6D:2D
Certificate issuer: /CN=8f4eea72e4531c92a6e00ef4f191a6127e956d2d
Certificate serial: 019D2704A9BC75419D8136F4F3DC6B60A561
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j07qcuRTHJKm4A708ZGmEn6VbS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.mft
Manifest number: 0D3D
Signing time: Wed 25 Mar 2026 22:01:50 +0000
Manifest this update: Wed 25 Mar 2026 22:01:50 +0000
Manifest next update: Thu 26 Mar 2026 22:01:50 +0000
Files and hashes: 1: j07qcuRTHJKm4A708ZGmEn6VbS0.crl (hash: S9CRa2NJKDwpjr8Q6VMFcxdZHb4fSuGGB2kTGbAxlj8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/j07qcuRTHJKm4A708ZGmEn6VbS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:a9:bc:75:41:9d:81:36:f4:f3:dc:6b:60:a5:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f4eea72e4531c92a6e00ef4f191a6127e956d2d
Validity
Not Before: Mar 25 22:01:50 2026 GMT
Not After : Mar 26 22:01:50 2026 GMT
Subject: CN=d6fc3abd068eeec60d41e422e04dbb1fe6287ad7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:94:3f:05:f5:b2:00:44:1c:26:fe:e5:b0:35:
fe:91:8c:60:44:a4:7c:e4:6c:b6:43:48:55:96:05:
17:95:9b:08:62:b9:26:df:ec:29:47:55:c0:83:16:
e2:f1:f1:29:37:bb:98:bc:24:ad:94:b5:fc:89:d2:
e6:ed:8a:a5:0d:9c:41:41:34:61:52:20:a6:2a:67:
0a:27:50:ec:97:da:78:e3:22:93:27:75:be:e7:49:
9b:b8:36:8b:a3:63:18:a7:39:25:5c:a3:63:44:cd:
a1:d0:bc:28:c3:cf:25:4f:13:8b:03:aa:58:7f:23:
1b:21:b9:e0:75:40:dd:31:cb:66:b5:53:9d:c6:42:
ff:67:30:29:a4:c6:e3:61:a4:7c:61:11:0f:f4:b5:
e8:b9:88:b6:71:86:ea:76:f1:dd:2a:95:5c:7a:78:
18:fb:e4:76:d8:0c:1a:b2:1f:8d:e8:fd:e9:fc:90:
4b:7c:30:cf:e7:75:0a:be:6a:92:f5:d1:9d:00:2a:
9d:c7:15:b6:bd:1f:e1:cb:2e:65:f3:b0:4b:95:41:
75:07:52:19:0f:1d:aa:10:66:eb:79:4c:9c:2d:4e:
8a:8f:55:ac:13:86:66:0a:62:79:e7:8f:3d:de:15:
f8:4e:4a:1a:a6:d1:25:1f:4e:c7:bf:8b:8d:99:e0:
26:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:FC:3A:BD:06:8E:EE:C6:0D:41:E4:22:E0:4D:BB:1F:E6:28:7A:D7
X509v3 Authority Key Identifier:
keyid:8F:4E:EA:72:E4:53:1C:92:A6:E0:0E:F4:F1:91:A6:12:7E:95:6D:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j07qcuRTHJKm4A708ZGmEn6VbS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/67e623-7945-409e-ad32-4618fbfa4c89/1/j07qcuRTHJKm4A708ZGmEn6VbS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:04:d6:37:42:46:33:d3:63:ed:21:e3:b7:83:a1:4c:5c:06:
1d:92:ef:57:bc:bd:89:30:72:8f:f8:62:8f:67:be:30:cf:73:
26:6b:f0:2f:7c:30:b5:42:df:60:ad:fd:bb:09:83:2a:86:32:
1b:53:59:5a:93:af:f6:42:cb:d6:55:cf:56:0a:d2:f5:49:85:
0f:2d:90:bd:a2:b1:47:88:21:2d:19:de:43:f6:2c:b9:66:64:
8e:e9:a1:ec:db:49:66:ca:82:37:95:95:02:a5:df:64:a1:d6:
14:d6:46:d8:ee:83:b7:c1:b2:1f:b3:43:c7:a6:65:d1:9a:92:
2e:2d:b4:a9:46:73:59:9e:b5:33:10:48:92:9f:3d:bc:f6:91:
9e:99:c7:cd:14:e4:db:39:a4:d1:85:ab:43:4b:f0:33:fa:64:
f8:3f:ce:13:a4:b4:62:e2:4b:29:f0:71:e4:55:c3:c1:f3:ff:
49:51:21:e6:b6:31:22:63:a8:0b:a0:1c:e0:a1:06:08:27:60:
af:0b:d9:2e:fb:2d:f1:86:7b:ca:e9:7b:a3:4e:da:5d:43:e4:
04:8a:e7:45:84:05:b1:c1:4d:36:fc:aa:8e:63:8f:a3:67:d9:
9a:df:44:89:6c:50:55:28:62:2c:11:76:6b:10:82:45:4c:e8:
98:c1:20:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:55:05 2026 by rpki-client