Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
File: US4nvokbGeypvOtT5NwjfFo1Vpc.mft (raw, json)
Hash identifier: xQ5331aAY965dauOnX634DLE+Y/HX3wRnY0arseetnY=
Subject key identifier: BF:94:BC:2D:C7:25:DC:7E:E9:65:8E:64:72:7C:EE:42:51:61:5F:F1
Authority key identifier: 51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
Certificate issuer: /CN=512e27be891b19eca9bceb53e4dc237c5a355697
Certificate serial: 019D28F3071AB1FEF4E647F847410C0B03FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
Manifest number: 0E84
Signing time: Thu 26 Mar 2026 07:01:48 +0000
Manifest this update: Thu 26 Mar 2026 07:01:48 +0000
Manifest next update: Fri 27 Mar 2026 07:01:48 +0000
Files and hashes: 1: 4XAM9liM1Y7hRRkcksNiW_aru-A.roa (hash: P0kySiJIZ6zOBwufqTsAfZ+d9KAiQxaN8Hb6kdFbtyE=)
2: US4nvokbGeypvOtT5NwjfFo1Vpc.crl (hash: jWJu/JWpRtVm0r+G30oa4X06jpQ66+xToeY3tiMY6XU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 07:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f3:07:1a:b1:fe:f4:e6:47:f8:47:41:0c:0b:03:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512e27be891b19eca9bceb53e4dc237c5a355697
Validity
Not Before: Mar 26 07:01:48 2026 GMT
Not After : Mar 27 07:01:48 2026 GMT
Subject: CN=bf94bc2dc725dc7ee9658e64727cee4251615ff1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c8:71:89:04:c2:3d:0d:97:27:d9:f5:47:01:
bd:14:28:3e:ca:30:82:97:7d:f4:13:3b:49:89:66:
f0:11:52:38:7f:9f:1c:7b:bd:29:3b:96:a6:17:c3:
e1:54:84:74:98:38:18:78:41:85:05:3b:80:0e:9a:
67:a1:a5:26:0f:6c:a9:9a:d4:28:2f:5c:b2:9c:2b:
9b:2a:0e:fb:3d:b7:8f:1a:72:53:35:90:bc:87:e0:
99:ed:7e:8e:a0:db:4b:11:5b:4a:aa:f2:a8:89:2c:
6a:38:5d:3d:fd:a9:aa:c1:df:de:20:ae:08:4a:11:
39:af:4d:d5:d4:ad:ea:cc:80:8b:91:aa:38:9a:cf:
be:87:fb:44:6c:a5:8b:8c:02:28:6e:f0:d3:e1:11:
c7:0a:e4:6e:54:8c:0b:f4:c6:ac:d2:f3:73:29:ac:
16:c0:17:03:fe:7a:ed:23:42:59:96:62:d1:c5:55:
11:88:98:b8:be:85:29:c2:fb:ea:70:55:96:b6:2e:
c8:46:8b:1f:97:b3:ac:91:03:70:13:f3:45:67:47:
b3:92:30:47:af:30:2e:26:06:63:f9:40:7e:4e:45:
65:79:51:01:12:92:16:ef:c1:13:1a:ec:03:4e:57:
c5:b5:bf:3f:07:76:b3:96:20:d7:ca:bc:9d:e8:2e:
67:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:94:BC:2D:C7:25:DC:7E:E9:65:8E:64:72:7C:EE:42:51:61:5F:F1
X509v3 Authority Key Identifier:
keyid:51:2E:27:BE:89:1B:19:EC:A9:BC:EB:53:E4:DC:23:7C:5A:35:56:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/US4nvokbGeypvOtT5NwjfFo1Vpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0f1b8f-1d47-42f0-a050-5a114ef9b2aa/1/US4nvokbGeypvOtT5NwjfFo1Vpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:3c:90:88:35:64:c7:1e:cd:f0:0b:2c:46:18:97:08:f4:fb:
15:ba:7c:a5:c3:19:17:c4:fc:a2:fb:b6:03:f9:34:76:0d:47:
84:e7:3e:ef:2e:b6:76:7e:9b:36:6d:8f:94:8f:e8:06:9f:44:
4e:0a:1b:be:b7:71:8a:eb:56:05:63:32:15:57:cd:4f:7f:b0:
cc:e4:44:6b:98:0e:de:80:f0:ff:17:ae:c1:ab:60:64:d8:4e:
ac:62:f8:52:59:32:19:ea:39:ba:37:92:ef:83:b6:63:f3:fd:
0c:64:ae:38:eb:0e:88:5d:73:ea:bd:dd:8b:4f:b6:97:59:19:
c7:53:c6:a6:1b:69:3d:ed:70:90:dc:b3:54:7a:60:ed:2a:8d:
32:ca:06:2d:b2:a6:56:cb:92:49:1d:41:d9:93:05:c6:fa:c9:
7d:c2:bf:c7:5e:0c:18:3d:df:83:5a:1f:b9:45:b9:86:d3:64:
1a:75:ac:ea:c4:47:75:eb:90:8e:87:68:43:cb:98:58:05:ce:
ff:c0:99:29:c9:96:27:42:1e:4c:8c:52:39:10:c3:30:4b:07:
05:f5:5c:e1:ad:df:4c:0b:40:a9:3f:3f:a2:1e:be:1f:6f:d7:
ed:fd:be:dc:4c:57:1e:fe:51:a4:ad:f1:71:12:38:69:66:4a:
fd:1c:40:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:54:13 2026 by rpki-client