Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
File: rCGhE9G6AdEH_feRMIwKUfPQbdo.mft (raw, json)
Hash identifier: emiqnMLu3Gvg5DCZ09Vimq80nRGsOnI0iHFe6+MQQRI=
Subject key identifier: 3F:7D:43:E2:75:EC:6A:CC:E7:64:C6:FE:99:E2:B1:EB:57:9C:D0:1E
Authority key identifier: AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
Certificate issuer: /CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Certificate serial: 019D29616CB25753F7DA990103EF8C7F2809
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
Manifest number: 0770
Signing time: Thu 26 Mar 2026 09:02:23 +0000
Manifest this update: Thu 26 Mar 2026 09:02:23 +0000
Manifest next update: Fri 27 Mar 2026 09:02:23 +0000
Files and hashes: 1: Hv-HpYlBtcGtjlR8qtNflDayGpQ.roa (hash: aBGsg4UHN28OpsS2xFbkAdXhnlHxP423kuvv3ReKy28=)
2: rCGhE9G6AdEH_feRMIwKUfPQbdo.crl (hash: YpYuDlApKl7gonNhLwkZyZUBEHCjBaKIAu8TECAR6Wc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:6c:b2:57:53:f7:da:99:01:03:ef:8c:7f:28:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac21a113d1ba01d107fdf791308c0a51f3d06dda
Validity
Not Before: Mar 26 09:02:23 2026 GMT
Not After : Mar 27 09:02:23 2026 GMT
Subject: CN=3f7d43e275ec6acce764c6fe99e2b1eb579cd01e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:67:b8:41:11:d2:aa:06:3c:67:de:0a:74:48:
c2:5c:a5:16:0b:47:a9:54:d6:b6:94:98:5b:89:ec:
0e:2e:fe:e4:2c:f8:16:50:0a:e2:bc:3c:73:c4:ea:
68:46:c1:64:6f:b4:71:e4:b0:fc:a0:5d:79:83:fc:
66:3f:b1:1e:c1:d5:a0:d1:5c:8b:92:63:87:ea:9b:
11:c6:a4:a1:8d:6e:c3:12:de:ea:25:ab:0c:fe:30:
14:39:0c:3c:3f:38:dd:1e:9e:1d:16:6d:d5:f5:f9:
54:40:fc:37:a7:35:5d:2f:c9:b3:07:5c:5b:43:2d:
2b:06:f7:6b:c5:1c:36:28:ce:97:cf:b0:4c:ef:e9:
2d:7b:78:42:d8:4d:56:9e:c0:60:e4:a9:75:93:e4:
6c:93:ab:ba:9e:d0:06:cb:5e:0b:78:87:8d:88:01:
d8:91:eb:f9:07:5b:6f:05:e1:7a:d4:ba:c4:01:08:
8a:74:d9:5e:c2:98:b9:cb:04:99:33:fe:cd:19:9f:
df:aa:d6:23:ae:b5:d3:8f:a5:e6:99:17:19:35:29:
90:64:bc:f8:23:7a:23:4e:66:79:9c:ef:57:2e:ff:
98:d8:09:68:8e:2d:fa:06:57:38:b7:f6:34:04:ce:
85:6d:34:55:02:b1:16:2b:87:32:4c:76:cf:f6:00:
a0:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:7D:43:E2:75:EC:6A:CC:E7:64:C6:FE:99:E2:B1:EB:57:9C:D0:1E
X509v3 Authority Key Identifier:
keyid:AC:21:A1:13:D1:BA:01:D1:07:FD:F7:91:30:8C:0A:51:F3:D0:6D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rCGhE9G6AdEH_feRMIwKUfPQbdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/5893f7-b4f1-4961-9426-fd73b80833b7/1/rCGhE9G6AdEH_feRMIwKUfPQbdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:76:f2:20:ff:4a:f4:93:1a:e8:20:53:63:33:01:dd:41:0f:
e8:8c:04:bd:96:2e:d0:d2:78:6f:16:6e:45:76:ef:23:02:b9:
a2:10:03:12:99:e1:f3:b3:aa:6e:f7:e0:bf:48:32:a6:27:09:
52:7b:50:80:08:5e:72:dd:af:8b:14:fb:96:af:46:80:53:e8:
f2:a1:fc:8f:c2:af:be:5b:11:67:c5:dc:a0:c8:c1:f3:a4:11:
d9:c3:5b:e7:3b:39:71:77:6f:8e:7a:a0:71:0f:50:6b:64:2a:
0b:9d:cb:4a:13:77:ca:06:1c:0a:e1:11:ac:7e:5a:68:fd:43:
0d:91:36:02:f3:d2:f1:1a:50:78:d2:f8:6a:c5:53:20:60:d6:
60:c6:7f:b3:09:4f:52:c1:cb:e0:ff:33:79:1c:28:6a:1a:63:
5a:57:78:84:a9:67:3a:a1:a4:19:ed:92:12:79:8e:1b:5d:a7:
e4:4b:47:b9:36:99:0a:44:59:45:8f:86:78:e8:3a:f6:77:92:
f4:e3:86:b9:30:8b:f4:75:eb:2a:25:c4:d0:97:ea:de:dc:01:
3d:21:0c:cd:7a:c9:bf:d1:48:d8:40:d3:12:86:eb:e1:6d:41:
67:53:86:ab:8e:3a:fe:1b:17:01:10:61:ee:6e:db:ff:75:ec:
2f:9c:ff:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:58:20 2026 by rpki-client