Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
File: ruCNkzby5s0WXrcwKX_m0gyDw5o.mft (raw, json)
Hash identifier: qr3u6ryT3oXvClxMXt5X2/nSZ7juyPtmZ9MTE+7H8AQ=
Subject key identifier: 88:BC:81:7E:3B:52:E7:21:73:8A:93:B8:B5:54:A0:0F:C0:19:16:96
Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Certificate serial: 019D29CE05F6A438CF4F407B448DCF888FD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
Manifest number: 15D3
Signing time: Thu 26 Mar 2026 11:01:00 +0000
Manifest this update: Thu 26 Mar 2026 11:01:00 +0000
Manifest next update: Fri 27 Mar 2026 11:01:00 +0000
Files and hashes: 1: 123WXGbRTZdeisXrE-k_3g3EMvk.roa (hash: PVrjq81b7ONxfTHO259I9HIBssHsthuK6wCJzCfRRBw=)
2: 3JLEaN47mFd4AJ1ulcTajHwX46Q.roa (hash: 7nuv0xJK6J/Wz9ZBABmkHA68zDZCu6LbMkw8k4JA0aY=)
3: 3m4ZcWe4AoRitpxIdoHTfvPCTz4.roa (hash: R1IDNKkyr2PRIrfMe44b/uoEQJhofAwIdcVDkSZ0J1s=)
4: ktGWBH_rz8CZASP_zJHcbXXlp7Y.roa (hash: WQj8sJ8bysuFkPbFG5oVPz6oUf8fVBbz+1mkOQXAzAY=)
5: qmwlU-LpszPGm_f_AiX4jfEipIU.roa (hash: eBcbl11HwyKBKgKCJIYPrcRxwRYlzqQyOytUqmTgqj8=)
6: ruCNkzby5s0WXrcwKX_m0gyDw5o.crl (hash: OTgfE5RUdLxDOD9Zh4rYvPyJ3eMDqAjndkXbbJcR8y0=)
7: wwateRuj040-ENpDYQ6qLA2XVl0.roa (hash: NH6PZI4atftudx1FEvFD8kdIjwc++XEY3pey7kw2zFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 11:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:05:f6:a4:38:cf:4f:40:7b:44:8d:cf:88:8f:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Validity
Not Before: Mar 26 11:01:00 2026 GMT
Not After : Mar 27 11:01:00 2026 GMT
Subject: CN=88bc817e3b52e721738a93b8b554a00fc0191696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:59:1e:7e:f0:31:55:3b:4a:ad:5b:9b:f4:7b:
2a:4e:12:d2:99:67:da:fe:8c:bc:d6:d2:a8:27:18:
f4:b7:0f:b7:6e:7a:18:ec:11:2f:58:ce:f5:fe:c0:
ff:6d:a6:20:2a:6b:82:50:2b:be:07:5a:5e:2b:c7:
a7:c0:85:2d:88:d1:10:61:87:07:72:36:5b:89:7a:
1a:a8:3a:64:ad:7f:e8:b9:b1:62:bd:6f:cc:98:44:
11:71:b1:5d:24:29:75:98:5c:d0:4d:b5:60:72:78:
83:b9:62:47:ba:ea:4e:74:99:af:7a:1d:f7:8b:7e:
83:e3:4a:0b:df:9e:6b:54:58:4d:71:d0:8e:3f:f4:
be:f3:2e:26:af:22:dd:c1:d9:18:ae:26:26:9a:84:
be:61:74:6c:12:2a:1a:7b:94:5b:eb:55:bc:eb:ca:
cb:89:d2:27:72:12:be:5b:6e:39:69:6b:fd:33:0d:
67:54:22:04:81:e9:20:ee:24:f2:83:12:a9:f1:e6:
07:47:eb:52:50:50:92:aa:28:8d:ca:11:af:8b:a7:
79:4e:98:f1:65:f5:37:07:6b:c2:2c:95:0b:4c:75:
b5:53:28:90:c5:1e:f4:a0:90:aa:e1:17:91:cf:63:
95:c6:7e:67:7f:53:ba:1e:14:c1:c0:74:9a:a4:50:
98:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:BC:81:7E:3B:52:E7:21:73:8A:93:B8:B5:54:A0:0F:C0:19:16:96
X509v3 Authority Key Identifier:
keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:44:49:37:1f:67:f3:02:23:ae:9d:d7:de:23:92:a5:51:a8:
4a:7d:1b:31:52:a4:2f:65:ed:bd:96:b2:f2:69:f3:54:c3:a4:
91:ec:2c:ff:f7:ce:89:d5:50:f2:f7:d4:ef:21:91:4e:b8:14:
70:9b:0a:0f:51:89:8b:6c:1d:ec:7a:f9:b1:a8:86:72:04:57:
a6:88:32:0a:6b:67:fe:c9:93:e1:07:9f:7a:ca:58:24:f7:f4:
94:bd:9d:93:b5:cc:47:3f:f6:e7:da:cf:97:e6:3f:01:89:58:
fc:c4:28:ab:62:e8:dc:31:28:2c:37:ce:f0:17:93:bc:08:e8:
22:2a:6c:72:a3:3f:26:be:48:77:f4:5b:a4:d5:2a:63:4d:76:
b9:5f:b9:78:fe:e8:81:15:3a:50:34:f6:39:86:42:bd:e4:49:
9a:56:71:40:99:f0:0e:2d:91:23:bd:5f:4b:87:fe:e5:73:a3:
e0:6b:d5:4f:9f:0e:3e:a3:d4:b1:de:e8:2f:b4:9f:26:08:a6:
1d:15:ad:8f:cd:01:19:a0:99:02:c7:0b:38:cd:3d:80:61:08:
3b:78:a4:0a:2e:bc:c8:14:ce:7e:d6:ba:ed:89:d8:29:fa:8e:
f2:3b:e2:90:5e:78:18:b4:2f:0b:65:44:0b:08:d8:0e:de:c5:
9a:54:db:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:03:11 2026 by rpki-client