
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
File: maykAWr4XVlpVITNYTzxiW39WaE.mft (raw, json)
Hash identifier: tq1hfcUAnc3KK9l4e8UTgXWhqdR/Yai14wDNXc2KE0Y=
Subject key identifier: 96:51:7E:58:58:FF:AA:10:35:99:C4:8A:42:F2:86:2C:75:87:23:2D
Authority key identifier: 99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1
Certificate issuer: /CN=99aca4016af85d59695484cd613cf1896dfd59a1
Certificate serial: 019D28BB2A15B8C25747C0A0B24553D1FF7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
Manifest number: 069C
Signing time: Thu 26 Mar 2026 06:00:47 +0000
Manifest this update: Thu 26 Mar 2026 06:00:47 +0000
Manifest next update: Fri 27 Mar 2026 06:00:47 +0000
Files and hashes: 1: WXXJ5075ZAff04RmS5smR110RVw.roa (hash: uErB5MACpy/J873DH0P3yHm3DQt+fz1WVOuw3Q44104=)
2: maykAWr4XVlpVITNYTzxiW39WaE.crl (hash: Hq0x06HOgH4TaIgLVGKWldw1hiZxYs4zmymg4F8uSZE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:2a:15:b8:c2:57:47:c0:a0:b2:45:53:d1:ff:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99aca4016af85d59695484cd613cf1896dfd59a1
Validity
Not Before: Mar 26 06:00:47 2026 GMT
Not After : Mar 27 06:00:47 2026 GMT
Subject: CN=96517e5858ffaa103599c48a42f2862c7587232d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:04:8b:a2:44:9a:90:56:47:ed:a9:a8:19:d5:
9f:69:76:99:c2:df:d0:20:ef:2d:40:5d:5b:24:4e:
28:0d:ee:fa:b3:e0:12:80:5d:e6:77:e0:54:71:a6:
c3:35:7d:ba:44:bc:c7:80:30:9a:de:ac:6d:70:df:
49:1b:ec:32:d9:ef:37:54:39:61:b9:e7:8f:f3:f3:
0b:b5:27:6f:8f:da:56:5b:5b:3f:34:70:5d:bc:94:
54:83:39:34:74:2b:cc:92:ca:ff:e5:09:3c:c1:fd:
7a:08:36:fc:e8:e6:f0:78:e0:e4:6f:53:9a:4b:55:
22:ab:a9:65:d3:e1:be:e1:cd:b7:14:e2:20:78:81:
06:8e:31:ab:e9:2b:05:d4:64:8a:24:2f:de:0e:88:
1c:04:6a:50:ea:11:69:21:eb:4e:eb:b0:fe:77:b3:
d4:10:f2:0b:6c:7e:6b:30:98:05:f0:d9:71:03:4c:
68:6a:62:ea:a2:79:18:0a:ee:72:af:8e:c0:0f:a7:
05:1a:83:c1:5f:4f:bd:f3:9d:ac:62:67:dd:1e:c9:
c8:5b:10:d5:3d:7f:73:57:21:13:25:49:b3:b0:14:
24:02:82:cc:e8:17:0a:f1:18:25:3a:a6:b5:09:0b:
53:88:43:49:cd:89:61:27:dd:28:b7:14:88:d5:65:
6a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:51:7E:58:58:FF:AA:10:35:99:C4:8A:42:F2:86:2C:75:87:23:2D
X509v3 Authority Key Identifier:
keyid:99:AC:A4:01:6A:F8:5D:59:69:54:84:CD:61:3C:F1:89:6D:FD:59:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/maykAWr4XVlpVITNYTzxiW39WaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/e0c1d4-8b33-4360-9f50-cbbac6e4ad71/1/maykAWr4XVlpVITNYTzxiW39WaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:97:ef:40:55:0e:94:cd:ba:eb:9d:a1:b2:16:ab:44:72:03:
bf:93:85:94:89:2b:9b:c5:c5:f5:f5:39:4f:cf:31:0f:a7:eb:
12:d2:d4:b8:47:19:03:7c:51:eb:0d:48:ab:bb:01:20:94:b7:
dd:4c:b0:13:bd:51:3c:01:f8:36:c0:65:5d:eb:c0:e5:2b:8d:
6c:cd:cf:ee:7c:7b:b1:a3:78:26:db:17:b0:01:d6:81:be:dd:
d6:63:ca:27:e0:e6:ab:00:2a:27:fa:ae:8c:b2:9b:b5:77:fe:
76:9e:9e:24:72:39:4a:5c:d0:ef:45:98:65:67:13:7b:95:00:
f3:db:ec:17:f4:53:26:11:44:09:e2:36:e3:d9:53:90:ac:21:
53:17:50:98:a8:44:77:16:f4:ee:d5:03:bd:4c:65:11:b6:b6:
28:35:1a:57:58:27:4c:05:4e:1d:a2:be:0c:8c:77:2a:b1:f4:
cd:de:d5:64:88:25:4b:8e:a8:08:35:66:0a:a4:7b:e7:38:ee:
8d:e6:3a:50:4c:b7:e1:f6:90:22:54:5e:27:62:e5:9a:ab:3c:
f9:94:51:aa:fb:8e:c2:44:b0:4e:57:f6:04:42:ef:e2:5a:d2:
4a:81:e0:f6:f9:87:d9:8c:c2:86:9c:df:20:1e:5f:7f:b1:85:
22:28:57:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:55:11 2026 by rpki-client