Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
File: maykAWr4XVlpVITNYTzxiW39WaE.mft (raw, json)
Hash identifier: WLXv2St4htAVD8zVBhuIoc3og2fL2DXaJS112PPTYd0=
Subject key identifier: 72:C3:82:F1:24:F9:90:83:F0:45:CC:8C:E3:E2:85:58:D5:6E:15:62
Authority key identifier: 99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1
Certificate issuer: /CN=99aca4016af85d59695484cd613cf1896dfd59a1
Certificate serial: 019D2AA97CA4AF1960B4910CEF100818E799
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
Manifest number: 069D
Signing time: Thu 26 Mar 2026 15:00:43 +0000
Manifest this update: Thu 26 Mar 2026 15:00:43 +0000
Manifest next update: Fri 27 Mar 2026 15:00:43 +0000
Files and hashes: 1: WXXJ5075ZAff04RmS5smR110RVw.roa (hash: uErB5MACpy/J873DH0P3yHm3DQt+fz1WVOuw3Q44104=)
2: maykAWr4XVlpVITNYTzxiW39WaE.crl (hash: M561zOp0NBHF1KAHepfj6OulM5E0Ie+Zvu/OCpW7TbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:7c:a4:af:19:60:b4:91:0c:ef:10:08:18:e7:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99aca4016af85d59695484cd613cf1896dfd59a1
Validity
Not Before: Mar 26 15:00:43 2026 GMT
Not After : Mar 27 15:00:43 2026 GMT
Subject: CN=72c382f124f99083f045cc8ce3e28558d56e1562
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:db:cf:2b:39:a4:ba:79:2a:e0:89:99:36:cc:
89:af:90:84:ec:a8:62:66:07:cc:53:47:db:4f:c2:
20:76:9c:67:f8:31:8c:5a:96:e9:f8:50:26:fa:a2:
a0:4f:20:e7:2f:23:38:f0:f4:b6:f0:35:55:19:8c:
4d:54:d4:ac:d6:0b:7b:5f:4a:16:05:86:e9:25:b4:
1a:52:0d:18:08:66:1d:c5:b5:cb:fe:37:a5:13:23:
90:8a:7a:4e:65:46:f2:6d:97:92:39:60:c5:7c:0c:
b4:cd:69:60:a2:17:02:2d:5c:01:4d:f0:05:db:7e:
08:0c:2c:2d:f9:ac:27:b1:a9:b0:b6:20:dc:d3:1c:
ec:f2:f6:9d:2c:ad:49:06:09:35:5a:98:4c:4f:fb:
59:35:b7:cb:65:76:78:d9:e5:ea:f6:9e:f9:1a:84:
a3:1e:66:f1:fd:05:77:50:83:e1:ea:fa:eb:46:aa:
5e:4d:2b:e3:90:6a:b2:a4:e1:1e:b2:9b:fc:3a:43:
b7:b5:32:4c:83:bb:9f:dc:74:47:b6:dd:54:a4:8a:
af:ff:e7:bb:bc:f5:57:38:d3:7c:60:df:c7:ad:a0:
4c:9c:28:6f:11:e2:1f:f6:89:48:ac:47:e9:23:e8:
8c:a5:fc:aa:a4:6e:00:f7:55:53:b2:de:0f:bb:2f:
6f:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:C3:82:F1:24:F9:90:83:F0:45:CC:8C:E3:E2:85:58:D5:6E:15:62
X509v3 Authority Key Identifier:
keyid:99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:6a:ce:fa:74:2f:ec:aa:e0:d9:64:88:2b:be:26:95:af:4d:
9f:18:16:a0:e5:a8:12:ff:7f:af:37:15:da:32:2c:b4:74:82:
78:cd:05:ef:09:fd:7d:a2:4d:62:9d:1b:5d:b0:53:c8:0a:b7:
cd:d9:f2:c5:d6:6b:1f:13:89:ed:3f:40:9b:0a:eb:e6:27:11:
c3:d6:11:11:4c:09:0a:13:d2:06:b4:8d:e3:8f:b8:d4:ab:a9:
1b:9e:6f:36:55:14:bd:f2:ff:03:a0:f8:0d:4b:79:19:db:49:
79:5e:2f:ad:1b:b2:ac:6a:31:23:c4:07:c7:bb:1e:05:ef:ed:
a2:dd:32:64:05:8c:5a:2b:48:14:30:e5:20:ea:44:68:4b:3e:
77:fc:2a:ac:07:1e:a6:01:16:5c:45:d3:65:ac:dc:e9:b6:0f:
e1:74:c3:4d:c8:65:cd:d1:18:ac:59:12:b0:60:75:d0:52:5a:
ca:18:5d:1e:8d:8c:21:b2:5f:4c:37:96:f2:ce:fd:6f:39:b4:
d7:38:55:1f:71:85:4b:c6:02:4d:d5:e4:e5:0c:72:68:86:2e:
0c:5c:20:00:5f:68:f4:04:14:18:39:83:35:db:0d:7d:3e:1d:
33:a9:19:79:35:7e:3a:1c:f6:61:3f:c8:83:74:96:3d:8a:e9:
43:8f:a4:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:48:15 2026 by rpki-client