Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
File: mXyCWBNDX7ARVDjuP2B2N869jo4.mft (raw, json)
Hash identifier: dmT8MOlz2phU5LLoAlVb/j+ve33EumgSCqnC5tRXydw=
Subject key identifier: E1:D6:93:70:AA:78:45:26:3A:84:2F:38:E7:A7:1F:6D:B6:DA:19:0F
Authority key identifier: 99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
Certificate issuer: /CN=997c825813435fb0115438ee3f607637cebd8e8e
Certificate serial: 019D2960A331A5E74DD195D7D11717747F94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
Manifest number: 0167
Signing time: Thu 26 Mar 2026 09:01:32 +0000
Manifest this update: Thu 26 Mar 2026 09:01:32 +0000
Manifest next update: Fri 27 Mar 2026 09:01:32 +0000
Files and hashes: 1: IqAZ7XQz7BlbCx4e-ofeDvMJfNU.roa (hash: Kp2XtcxtOkZThbBMLc4hB6JTrGLoaZOP4GbgJkvTA/A=)
2: mXyCWBNDX7ARVDjuP2B2N869jo4.crl (hash: FAISZpStR6yCvRwTaQOp9O3BMPWtAbmFDCvo/dRy6Qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:a3:31:a5:e7:4d:d1:95:d7:d1:17:17:74:7f:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997c825813435fb0115438ee3f607637cebd8e8e
Validity
Not Before: Mar 26 09:01:32 2026 GMT
Not After : Mar 27 09:01:32 2026 GMT
Subject: CN=e1d69370aa7845263a842f38e7a71f6db6da190f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:69:6e:9e:b0:90:30:87:18:cf:7b:5a:02:fa:
c9:28:cb:89:f7:a0:07:45:f8:13:6a:94:26:b0:7e:
82:a0:67:77:55:94:ce:75:d2:0a:fc:85:7b:1c:31:
e5:62:e5:6f:33:17:1f:81:a2:cd:b9:bb:d8:99:c0:
3e:7a:c2:20:f7:94:e6:9d:c5:54:c9:28:f0:38:bb:
6d:c5:d5:70:b0:b7:2c:ea:3a:28:aa:0b:06:50:ed:
89:91:7f:ee:c6:86:66:35:85:f9:8c:f4:77:b7:1e:
86:73:a7:83:be:1b:7d:66:24:2e:a9:0b:55:eb:ce:
db:99:49:23:d6:17:bd:b7:bc:61:80:69:ab:67:2e:
de:cb:35:c9:09:0e:39:6e:ab:4a:26:9a:85:b9:ff:
41:a3:0c:73:e5:58:71:ee:fb:27:3f:4a:24:9c:a3:
f8:4b:07:b9:7d:28:49:59:28:59:32:53:88:cb:09:
0b:ef:0b:51:bc:82:bc:f7:10:f5:30:20:d8:96:b0:
04:41:d4:dd:73:a4:b6:65:9c:95:83:aa:e7:48:e9:
49:f0:d8:a5:3a:50:f2:39:9c:af:36:77:f9:38:7d:
49:6a:82:9f:b2:fc:c5:ef:2a:bf:84:a0:c2:3c:75:
47:82:8b:c0:2a:93:13:50:f5:21:90:56:3a:36:eb:
13:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:D6:93:70:AA:78:45:26:3A:84:2F:38:E7:A7:1F:6D:B6:DA:19:0F
X509v3 Authority Key Identifier:
keyid:99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:0b:8d:fb:50:7b:6c:5b:57:24:fa:51:cd:74:e0:53:56:63:
bd:79:8c:b4:2c:c9:09:65:df:58:ed:cf:19:84:5a:3e:f3:1c:
24:3b:ff:e2:70:b1:67:b8:2b:90:f3:71:e9:29:89:8e:c6:31:
5a:5e:b2:de:7c:1b:8b:1d:ab:71:1e:94:e4:84:40:86:fb:97:
c3:7e:ab:88:4a:7b:7b:12:f8:a1:3c:53:a5:6f:65:16:29:a7:
44:04:1e:da:1b:e0:91:23:b7:98:3c:ef:ac:20:41:51:d0:ff:
4d:42:6d:d3:17:ed:bd:f4:99:c1:e9:13:a4:2f:90:55:e3:a9:
75:1b:ea:a7:7c:72:01:50:5f:4d:a1:2e:08:00:05:a6:29:db:
47:a1:7d:fa:a1:d4:ff:65:94:05:62:21:b2:c6:bb:bd:c7:5a:
89:55:37:8f:91:60:27:73:e7:8d:19:e1:c7:3c:ce:7f:c7:ba:
89:24:ac:38:fb:6c:b3:99:11:33:1a:75:8e:94:5a:a7:fc:21:
3a:95:aa:92:14:81:96:bb:a1:2b:36:9b:e2:e3:af:ea:64:39:
09:3f:ff:4b:e2:6a:30:46:e1:7a:23:55:d3:26:9c:b3:c0:0a:
22:a2:3e:39:90:ea:09:62:86:d6:d1:c8:7a:ab:29:ba:ed:5d:
55:66:73:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:07:46 2026 by rpki-client