Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
File: byDBquA8J08ClCjuoKRCQgjU8-0.mft (raw, json)
Hash identifier: oJX+9jYiPV6cRgpMauyHgOJJvw0j7PVRRDQk2Q55Ia0=
Subject key identifier: 2F:6C:DB:A4:13:AE:C6:30:ED:26:7B:FE:5C:0E:6B:A3:56:67:ED:28
Authority key identifier: 6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED
Certificate issuer: /CN=6f20c1aae03c274f029428eea0a4424208d4f3ed
Certificate serial: 019D27E057DCFBED71ECB04EE59D98FD272C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 02:01:46 +0000
Manifest this update: Thu 26 Mar 2026 02:01:46 +0000
Manifest next update: Fri 27 Mar 2026 02:01:46 +0000
Files and hashes: 1: byDBquA8J08ClCjuoKRCQgjU8-0.crl (hash: nnjcFOt5JxgJm35RruijXeJ5jkPtG8O7YQJT40dFj7A=)
2: grB1qqfTRQP7MTNrrn-WzmUk8gw.roa (hash: +6I+Ww911XZBE+FZXYbMuXqk8USqXVoE6JeVtzI2oaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:57:dc:fb:ed:71:ec:b0:4e:e5:9d:98:fd:27:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f20c1aae03c274f029428eea0a4424208d4f3ed
Validity
Not Before: Mar 26 02:01:46 2026 GMT
Not After : Mar 27 02:01:46 2026 GMT
Subject: CN=2f6cdba413aec630ed267bfe5c0e6ba35667ed28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:08:ef:54:0a:4f:ea:27:32:27:11:4b:f2:e2:
ba:33:17:c8:08:d2:cd:1e:05:f0:7a:81:76:28:8a:
a2:7b:85:f0:0e:98:7c:29:ef:9f:9a:6c:bf:a7:91:
c5:41:bf:53:27:e9:d4:ec:17:5a:b8:e8:b0:99:58:
6c:ff:0e:9a:df:42:54:90:38:f9:ea:f8:78:09:0f:
e5:1c:9c:31:d1:25:f8:95:87:4b:67:2e:ee:8b:aa:
d3:65:96:fc:25:bb:aa:83:32:40:ec:78:d2:c6:26:
e3:b9:ec:6c:bf:49:a7:92:9e:47:14:6a:6e:bd:bf:
c8:af:a3:d4:1c:cd:b3:34:aa:9c:36:58:56:37:17:
10:bb:99:40:0a:d1:c8:b3:ae:1c:18:30:86:c4:a7:
d1:e7:e5:e4:a1:b6:54:98:90:24:26:be:9c:2d:9f:
0f:4e:f3:8c:af:ea:24:46:60:20:d7:99:44:a9:52:
b4:04:df:ef:92:2e:db:db:a1:a4:96:65:68:c2:bb:
61:2b:98:b5:94:ad:ff:2e:a4:f5:af:dd:97:41:46:
ff:5c:11:01:1f:af:ef:d5:e5:a7:33:d8:66:7f:ad:
56:5b:9b:a2:ea:4d:1b:a8:dc:e9:ad:d2:5b:bf:31:
44:d4:f1:a4:d9:aa:71:6b:6c:4d:31:2e:0a:bd:56:
99:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:6C:DB:A4:13:AE:C6:30:ED:26:7B:FE:5C:0E:6B:A3:56:67:ED:28
X509v3 Authority Key Identifier:
keyid:6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:b8:e8:97:7b:24:e2:8c:0f:3a:74:08:ff:0b:df:ac:3d:8f:
1b:9a:ff:48:1b:f1:2b:1e:a0:0a:90:1e:40:04:cc:cb:b7:b6:
0b:6f:88:c8:07:6d:d1:ba:52:c1:1f:c7:aa:07:d4:9b:01:19:
77:8d:48:79:c4:e5:8c:a0:bd:d0:f3:87:63:e3:c4:7c:c7:8f:
ba:d1:ad:66:b3:83:c7:19:a1:f7:90:3a:76:68:8b:99:a0:df:
e6:6f:2c:65:dc:ea:5c:84:ee:f3:16:2b:7b:77:9c:69:a7:ae:
8d:f4:e3:9f:a6:1a:9d:6f:07:cb:62:1e:29:41:fb:cf:fa:b5:
11:dd:96:e5:11:b3:ec:f9:8b:d1:c3:05:b0:40:d4:fa:4b:b2:
9e:c9:d1:4d:46:6c:fe:76:4b:8b:75:65:80:07:de:dc:ff:8a:
b6:ad:4e:25:1e:af:5a:e6:14:f9:a5:ec:de:a0:5e:55:f7:75:
9b:77:58:8f:8f:7f:92:59:4a:2c:c7:13:5e:4b:df:94:02:ca:
1f:58:40:33:7f:97:e2:fd:99:b6:81:18:73:97:57:8d:9c:5b:
97:e9:b7:1d:80:5a:cc:85:0f:07:cc:c1:5e:37:dc:68:41:b5:
0f:c0:71:9f:c9:ea:2e:1f:8f:d4:de:0e:d0:49:3f:1e:45:a8:
b9:04:25:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:25:42 2026 by rpki-client