Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json)
Hash identifier: jTu89PE2k0/PobTBU9llUHC7156OoCBbyirxUpe+y6Q=
Subject key identifier: 61:85:F2:DD:5B:E3:67:7A:88:71:7C:08:C6:FF:AE:64:04:D6:A3:F4
Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Certificate serial: 019D284DC80F8BB047B0851633FA0C8B552C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
Manifest number: 0D4F
Signing time: Thu 26 Mar 2026 04:01:19 +0000
Manifest this update: Thu 26 Mar 2026 04:01:19 +0000
Manifest next update: Fri 27 Mar 2026 04:01:19 +0000
Files and hashes: 1: 0V_y0HBzvEsTHB0OqOkherqmcqg.roa (hash: 5K9v1dL8zyHCCylOHHNJD1ggYb0DLDZrjC3+O53wQvs=)
2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: w3oZKdHbJgexqW2Emgzu/cts5v58jcWNRf+qQD3+6yE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:c8:0f:8b:b0:47:b0:85:16:33:fa:0c:8b:55:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Validity
Not Before: Mar 26 04:01:19 2026 GMT
Not After : Mar 27 04:01:19 2026 GMT
Subject: CN=6185f2dd5be3677a88717c08c6ffae6404d6a3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:76:58:fb:a3:06:30:50:c1:60:b3:97:70:80:
e7:8e:3b:5c:a9:16:09:24:ae:fc:e2:7b:d4:6f:43:
a1:d1:3c:12:ff:52:62:9e:4c:b5:57:70:8d:43:24:
76:33:22:80:37:b2:5c:8a:a2:5b:f7:90:64:f6:c5:
e4:b6:93:7a:e2:ff:8a:c7:96:fe:7e:9f:01:01:29:
fd:40:29:55:d4:dc:77:8f:53:10:69:a2:a4:a4:5c:
f4:85:ef:15:d9:f3:8b:69:98:63:c3:e8:ed:9d:89:
5d:fe:26:a8:15:99:66:65:ab:ea:95:79:54:a7:db:
97:de:cd:e9:b2:f6:81:86:0d:aa:3b:d2:61:b7:b5:
21:6b:f2:05:d3:14:1c:a8:6b:67:34:3d:54:b9:74:
33:aa:21:5f:64:2b:f5:8a:fc:6f:fa:5a:b2:f7:10:
dd:c6:49:a4:4c:cf:af:d9:f0:42:94:62:1d:93:93:
2b:35:f1:b2:9e:b5:cc:95:4d:98:a4:c0:6a:61:6f:
ea:8f:45:8b:cb:9f:3c:ac:a5:11:ee:44:1a:b1:c0:
65:77:bd:9b:89:e4:8e:fe:5f:b7:82:8e:ae:49:65:
5b:42:79:e6:bc:53:bc:43:54:71:1c:79:e8:2a:b3:
d9:84:15:12:e6:45:90:c4:10:9d:f3:b7:05:f7:10:
cc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:85:F2:DD:5B:E3:67:7A:88:71:7C:08:C6:FF:AE:64:04:D6:A3:F4
X509v3 Authority Key Identifier:
keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:8d:8a:53:02:54:e5:c0:b8:83:8e:ce:b5:59:23:6a:1d:a6:
c2:98:c8:14:c4:04:b7:87:9d:e8:50:0e:8b:11:cf:38:1b:45:
bf:a3:77:d2:28:06:f8:e3:05:0d:54:bb:3d:7e:8a:57:e6:48:
9c:9b:af:35:a7:26:eb:b1:1c:7d:a0:9a:8f:70:b5:5b:3f:93:
a7:78:ab:45:d5:11:9a:28:ea:e0:8d:a3:3a:15:08:19:4c:22:
32:0a:ae:e2:2f:05:18:b2:b3:8b:bf:9b:a0:5b:23:b3:7f:3d:
d8:4d:92:a4:09:e7:bf:2a:c3:32:3c:52:12:1f:24:c0:97:7a:
49:bd:47:a3:e7:5e:81:f2:13:3d:4a:22:85:4d:45:3e:96:4e:
48:82:f5:b4:1f:87:a3:bd:fe:c9:16:b7:97:d8:37:63:03:d6:
ab:42:fb:6b:18:d3:d8:18:6b:cd:69:c0:98:bd:1e:92:fe:da:
94:eb:5e:49:96:f7:cb:6a:8f:92:c6:1b:5f:4f:75:5f:5e:64:
67:c0:44:ca:f3:03:ed:9f:b7:23:a3:32:73:e1:c5:b7:94:bf:
f5:1f:e8:20:79:d4:eb:b5:b1:67:95:a2:ef:9b:f3:51:b9:fa:
d0:1c:00:4c:24:d0:29:eb:3d:62:f5:21:7b:fc:86:d0:71:46:
e9:0b:e4:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:57:22 2026 by rpki-client