Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
File: ruqgluuzdlfk060hdmQRctbiArw.mft (raw, json)
Hash identifier: vgm9UNDsHNScdPyZGt4FCr6jNhazCR3k5vqnYm+JIrk=
Subject key identifier: ED:B2:48:98:AF:AF:98:A7:58:CF:76:35:42:4D:3E:5E:32:6E:3C:B3
Authority key identifier: AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
Certificate issuer: /CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Certificate serial: 019D292986C9B3C8CA60F08451A6E7DC1E68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
Manifest number: 0D20
Signing time: Thu 26 Mar 2026 08:01:20 +0000
Manifest this update: Thu 26 Mar 2026 08:01:20 +0000
Manifest next update: Fri 27 Mar 2026 08:01:20 +0000
Files and hashes: 1: akW7_4B1c1-TUlyABJDZZ5C9MTs.roa (hash: R6h75h04kvMzsvpJpfqerZYqo36Vm9P1L15UtjUMqOQ=)
2: ruqgluuzdlfk060hdmQRctbiArw.crl (hash: Sw4PdfCB/La8Jgw8emKtq9wEYwcaix+vsXLl8BCPsoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:86:c9:b3:c8:ca:60:f0:84:51:a6:e7:dc:1e:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeeaa096ebb37657e4d3ad2176641172d6e202bc
Validity
Not Before: Mar 26 08:01:20 2026 GMT
Not After : Mar 27 08:01:20 2026 GMT
Subject: CN=edb24898afaf98a758cf7635424d3e5e326e3cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7f:a2:a6:4f:5b:80:42:54:a4:b9:f3:5a:ba:
42:14:e5:5c:da:7a:f1:b2:04:fe:42:fb:62:6f:cc:
37:e6:41:ae:da:cd:55:b3:e2:00:80:ce:ca:61:a0:
4a:ba:fb:50:0f:50:fb:b3:69:5f:7f:ae:04:c7:7c:
17:26:19:e3:24:98:ef:87:3a:cc:91:98:45:d2:28:
78:d8:ce:5e:2b:6f:9a:a4:46:3a:c8:66:ec:a3:ed:
54:63:ee:00:01:a5:a4:1c:9d:13:cc:ff:7d:f6:c2:
62:d2:d8:6b:9e:ac:d9:60:e8:a4:ff:ea:9c:b0:5e:
6b:28:c6:e8:ef:2e:a6:a7:f3:cf:7a:82:34:6a:17:
b7:47:45:6d:84:ef:02:4a:10:5b:cd:00:25:ab:0a:
03:2f:50:84:56:4b:b8:17:91:2f:71:bb:ab:62:67:
3e:96:d6:6d:c8:a2:65:ac:c1:94:3e:31:60:6e:da:
01:1e:88:b6:e9:11:ee:c0:94:29:d8:9d:f9:a6:1c:
df:d7:17:2e:5b:04:4d:07:ff:37:2d:f1:a4:bb:4a:
c2:98:1b:9b:04:bc:72:c1:eb:8d:0d:78:79:22:18:
59:cc:f4:34:18:08:50:0f:b5:22:67:f8:4d:fe:c9:
8f:6d:71:0c:8e:f9:50:48:d7:b1:99:40:09:f6:b9:
b7:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:B2:48:98:AF:AF:98:A7:58:CF:76:35:42:4D:3E:5E:32:6E:3C:B3
X509v3 Authority Key Identifier:
keyid:AE:EA:A0:96:EB:B3:76:57:E4:D3:AD:21:76:64:11:72:D6:E2:02:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruqgluuzdlfk060hdmQRctbiArw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/becf48-035a-4471-bdf3-ffd5bf5969df/1/ruqgluuzdlfk060hdmQRctbiArw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:3d:53:3c:10:b1:f0:cc:9c:99:01:5b:c1:a0:2e:80:5c:69:
ac:9f:da:0f:4e:74:40:8b:3e:f6:1d:73:c3:94:a2:8d:86:29:
b2:23:1e:d8:99:e1:b5:3b:55:d0:17:52:80:a2:36:53:37:67:
9c:8e:d3:c4:9b:56:78:1c:06:a6:c4:be:cf:c6:77:2f:a0:c5:
4c:ac:95:cb:dd:8e:8d:2a:92:de:79:ff:4c:d3:78:c2:3c:f3:
98:bd:4b:ee:16:a3:1d:56:bd:7f:d8:85:71:48:ad:59:1d:b0:
10:55:ad:37:45:51:09:6c:16:2a:26:40:40:e2:f7:dc:54:17:
38:2d:3c:91:70:0d:b5:d4:35:52:9d:77:20:a0:94:69:e3:b7:
d5:97:2c:d1:e3:3e:0e:c6:0a:d9:b8:19:5d:05:98:e5:41:ae:
af:5d:4d:3c:0c:11:47:5d:9b:9a:58:b9:60:c1:ed:27:e6:6b:
b8:03:a4:e6:2a:b7:89:99:1f:9e:41:e2:90:9e:d5:d5:f3:4b:
fe:a2:5d:20:98:29:cd:cf:83:0d:3a:74:d0:fe:5d:72:5e:a0:
8c:a1:22:cf:a3:35:76:48:85:f1:7f:40:23:8b:33:b8:98:2a:
ec:06:16:ea:79:f1:84:fe:80:85:8a:8a:32:87:ad:52:ee:1c:
2a:54:79:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:09:55 2026 by rpki-client