Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
File: d53x3kOsymHuwDTOomi0ZUzBXKw.mft (raw, json)
Hash identifier: sArt0c+1vkFPcpz1+Z2mp7mi+qLB9qw2yYfrfbIPb1A=
Subject key identifier: CF:15:6F:09:2E:98:8D:27:11:DA:85:11:BF:38:DA:58:0D:43:1F:DA
Authority key identifier: 77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
Certificate issuer: /CN=779df1de43acca61eec034cea268b4654cc15cac
Certificate serial: 019D337571084823F61B4641432F24A770AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
Manifest number: 188E
Signing time: Sat 28 Mar 2026 08:00:27 +0000
Manifest this update: Sat 28 Mar 2026 08:00:27 +0000
Manifest next update: Sun 29 Mar 2026 08:00:27 +0000
Files and hashes: 1: d53x3kOsymHuwDTOomi0ZUzBXKw.crl (hash: 0vCQKHTamjmIyneCX7Nfe4/GVHOWXdnuAUpoprfHZf0=)
2: qkfb5dgXrvL76Dgcof3UGGpLsV4.roa (hash: Kw++qitEj/WGMIrnlQb0PcDTMOh4VFy1to3tIAXAWJs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:75:71:08:48:23:f6:1b:46:41:43:2f:24:a7:70:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779df1de43acca61eec034cea268b4654cc15cac
Validity
Not Before: Mar 28 08:00:27 2026 GMT
Not After : Mar 29 08:00:27 2026 GMT
Subject: CN=cf156f092e988d2711da8511bf38da580d431fda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a3:51:7b:4c:22:49:d4:88:f2:e2:28:9d:76:
86:85:d5:bd:d4:a8:e1:e3:94:78:1f:91:19:56:22:
39:13:49:3c:46:1f:72:78:7a:43:0e:1b:2c:e4:3e:
49:d5:7f:a8:c8:ec:7e:c3:5e:8a:95:c7:21:65:a4:
3a:00:df:a8:7e:08:6b:60:9f:1f:dd:b6:d5:70:81:
e7:4b:52:af:4c:a3:9f:e8:ab:b0:8c:8e:43:fc:2b:
a2:c3:1f:59:f9:33:24:d8:d8:54:dc:68:10:38:0e:
2d:35:09:8d:bd:d3:65:fc:ad:c7:4b:3a:e3:9f:38:
41:18:22:d2:f6:20:28:87:62:65:a5:84:07:c6:e8:
f7:c7:e3:25:37:bd:62:cb:02:72:a9:f5:da:71:61:
6f:75:e9:fa:a9:f3:a5:e8:96:92:35:a5:6a:ce:40:
83:23:09:10:4c:1d:33:01:d3:62:46:76:ed:59:e4:
7b:e2:d3:1b:da:b9:cf:1f:4f:7c:90:23:bc:33:ef:
cf:9c:54:72:a4:f7:7d:98:37:0a:c9:c0:bc:03:a8:
d2:3f:1e:d9:a4:1a:25:03:56:78:d2:bc:19:fe:fb:
6a:c4:de:06:b0:da:54:8d:86:39:b9:02:28:5b:fb:
7e:24:b3:06:39:aa:ef:41:bd:08:78:79:6b:e6:c8:
2c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:15:6F:09:2E:98:8D:27:11:DA:85:11:BF:38:DA:58:0D:43:1F:DA
X509v3 Authority Key Identifier:
keyid:77:9D:F1:DE:43:AC:CA:61:EE:C0:34:CE:A2:68:B4:65:4C:C1:5C:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d53x3kOsymHuwDTOomi0ZUzBXKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3af48a-0616-4c32-bb40-4b9ae41b3d2f/1/d53x3kOsymHuwDTOomi0ZUzBXKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:3f:11:36:c8:6e:55:ed:6f:3e:fe:48:02:41:b6:d3:62:42:
46:79:ad:34:f6:18:1d:39:89:38:37:28:9a:97:cd:5c:76:dd:
bc:80:80:87:a9:de:68:be:45:ae:a7:7a:26:35:c0:0c:ad:bc:
a5:06:a9:18:83:f7:54:cc:69:bd:2d:5e:1d:fc:17:96:7e:22:
7a:9a:35:29:bd:21:bc:f3:ed:bc:72:25:a3:23:f9:05:94:5f:
2d:38:c4:1a:f7:8f:16:8c:3f:9f:8f:7b:a6:c8:1d:0e:31:1b:
2f:37:d9:76:82:d2:0e:93:29:db:58:5d:87:f3:c7:7d:89:55:
e5:b5:7f:b4:c2:b7:64:54:2a:89:4d:91:1a:d7:7b:bf:6b:78:
9f:ea:91:ac:87:4e:4e:d6:77:2b:c9:df:4c:a1:35:fc:17:23:
77:32:4f:c7:3f:7c:08:88:b9:ff:e9:8f:60:bd:5e:e7:19:a7:
a4:d9:e9:78:22:ad:fa:56:85:52:db:b1:07:90:12:dd:0e:c4:
60:13:d7:69:00:53:98:15:3d:a2:de:4e:34:e9:cd:20:b9:8e:
e2:26:88:f7:8c:de:95:e8:4b:3b:c0:d4:3f:b5:bc:b6:87:e3:
87:9c:2b:4c:29:ff:e7:ff:43:d4:17:46:b4:2b:d4:6b:a0:8d:
be:ae:b8:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 12:11:07 2026 by rpki-client