Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
File: rCGhE9G6AdEH_feRMIwKUfPQbdo.mft (raw, json)
Hash identifier: Tb3La2AJxJBbvuYRZ2sHKAFONkmfMLCDTARLzK1jGaw=
Subject key identifier: C4:36:2D:FA:C5:48:83:5D:E4:F5:3C:2C:15:79:BD:67:17:37:B6:F9
Authority key identifier: AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
Certificate issuer: /CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Certificate serial: 019D2B4EBFD80290BF1152D053B7F7ED94CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
Manifest number: 0771
Signing time: Thu 26 Mar 2026 18:01:14 +0000
Manifest this update: Thu 26 Mar 2026 18:01:14 +0000
Manifest next update: Fri 27 Mar 2026 18:01:14 +0000
Files and hashes: 1: Hv-HpYlBtcGtjlR8qtNflDayGpQ.roa (hash: aBGsg4UHN28OpsS2xFbkAdXhnlHxP423kuvv3ReKy28=)
2: rCGhE9G6AdEH_feRMIwKUfPQbdo.crl (hash: 2p1G7RKh47Fo08PTT0XvxGz0B8vuq0x/UxFxNdC0r2Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:4e:bf:d8:02:90:bf:11:52:d0:53:b7:f7:ed:94:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Validity
Not Before: Mar 26 18:01:14 2026 GMT
Not After : Mar 27 18:01:14 2026 GMT
Subject: CN=c4362dfac548835de4f53c2c1579bd671737b6f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3e:44:f6:23:9f:27:10:cf:46:bc:93:50:ac:
a6:c2:f6:c8:00:ea:07:d1:83:41:de:56:91:e5:0c:
fe:06:76:41:a6:10:e5:bb:a1:79:2f:e7:38:e6:53:
f5:5d:f4:be:9f:e9:e6:6a:2d:5c:59:bf:48:6c:5d:
bd:e7:de:e9:23:37:09:5d:78:fe:b8:99:b2:7c:14:
62:11:61:96:38:d6:5d:95:8f:29:7d:ae:58:94:b6:
d6:8c:d2:85:ed:9f:4d:bf:55:43:ea:47:14:aa:7f:
a8:25:1d:35:dc:2b:9d:6d:45:92:45:bf:73:88:ad:
47:4e:a4:04:24:f2:2d:b3:d1:9a:1c:51:57:3a:c9:
b8:1e:68:ca:4e:ce:2b:e0:e6:59:5e:7c:ac:97:11:
36:e9:7b:a4:17:63:84:df:db:12:dc:52:c0:9e:08:
b0:b4:4a:e7:f7:5c:63:3d:14:28:15:79:4a:34:7a:
3d:a5:fd:99:e0:b4:a4:39:37:48:d9:c8:8b:0b:cd:
78:b6:96:62:4e:12:5f:00:e7:0e:88:84:02:ad:75:
d2:a9:ef:f4:85:3f:df:67:46:c5:24:7f:b5:a8:a3:
af:54:3c:fb:97:00:c1:75:50:5b:c7:a7:c7:a2:9c:
78:a5:f5:16:dd:72:c5:39:a8:00:ee:39:b9:ac:50:
bc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:36:2D:FA:C5:48:83:5D:E4:F5:3C:2C:15:79:BD:67:17:37:B6:F9
X509v3 Authority Key Identifier:
keyid:AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:7b:59:1c:f0:08:2e:40:fc:1e:80:28:fa:78:90:c6:6c:74:
e4:37:e3:48:00:19:ed:ca:44:17:9d:18:8f:cc:b4:28:a4:59:
af:a8:ac:1a:fa:52:e6:38:cd:63:27:90:ee:7d:da:a0:b4:2a:
ea:4c:45:9c:84:a7:8c:97:af:58:fb:1d:2f:36:03:64:39:50:
d0:d0:a6:05:46:9d:c4:51:06:09:0a:30:ee:2c:4c:b1:45:17:
9b:74:eb:fb:e7:79:3b:b3:1f:ce:54:28:39:48:90:27:74:25:
b5:cc:b5:8c:14:da:3b:a4:48:96:0d:45:b1:34:4c:d3:4b:99:
06:37:bb:1b:23:9d:b6:4a:94:39:8a:d5:b4:a7:83:7d:c0:0a:
01:5b:13:f9:59:cd:6c:83:7c:f7:9d:84:6a:94:e9:ac:a1:e8:
a6:bb:65:d4:70:63:e8:ad:7c:d0:a4:3c:5e:f2:05:39:7f:09:
74:80:71:e6:f8:cb:38:8b:30:50:cc:e2:f8:bb:17:db:79:fd:
19:f3:9d:b5:a5:15:c3:85:0a:e6:d2:37:2d:d8:07:07:46:d9:
a6:65:f6:d8:6f:ea:a6:57:31:f2:7f:11:a6:d0:cf:e4:61:a8:
a7:cc:00:6e:02:97:eb:f4:6f:6a:c6:79:cf:6e:ac:17:40:e0:
fd:2a:5f:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 21:13:50 2026 by rpki-client