Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
File: ruCNkzby5s0WXrcwKX_m0gyDw5o.mft (raw, json)
Hash identifier: rmeMcEhO8OQnEmZ2ncRqJaj0wPlr+ttud4+iB7paOwQ=
Subject key identifier: 3E:9D:3E:CB:D8:97:A9:D0:CF:EF:56:DC:04:33:D4:86:9E:AF:69:38
Authority key identifier: AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
Certificate issuer: /CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Certificate serial: 019D2BBCB24977BC6ED0DA7A2B5C5E1925A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
Manifest number: 15D4
Signing time: Thu 26 Mar 2026 20:01:19 +0000
Manifest this update: Thu 26 Mar 2026 20:01:19 +0000
Manifest next update: Fri 27 Mar 2026 20:01:19 +0000
Files and hashes: 1: 123WXGbRTZdeisXrE-k_3g3EMvk.roa (hash: PVrjq81b7ONxfTHO259I9HIBssHsthuK6wCJzCfRRBw=)
2: 3JLEaN47mFd4AJ1ulcTajHwX46Q.roa (hash: 7nuv0xJK6J/Wz9ZBABmkHA68zDZCu6LbMkw8k4JA0aY=)
3: 3m4ZcWe4AoRitpxIdoHTfvPCTz4.roa (hash: R1IDNKkyr2PRIrfMe44b/uoEQJhofAwIdcVDkSZ0J1s=)
4: ktGWBH_rz8CZASP_zJHcbXXlp7Y.roa (hash: WQj8sJ8bysuFkPbFG5oVPz6oUf8fVBbz+1mkOQXAzAY=)
5: qmwlU-LpszPGm_f_AiX4jfEipIU.roa (hash: eBcbl11HwyKBKgKCJIYPrcRxwRYlzqQyOytUqmTgqj8=)
6: ruCNkzby5s0WXrcwKX_m0gyDw5o.crl (hash: 5sc97EdhvQhsx0HnHGAQ6zIu8stcZGBQXIOsTj70vw8=)
7: wwateRuj040-ENpDYQ6qLA2XVl0.roa (hash: NH6PZI4atftudx1FEvFD8kdIjwc++XEY3pey7kw2zFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:bc:b2:49:77:bc:6e:d0:da:7a:2b:5c:5e:19:25:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee08d9336f2e6cd165eb730297fe6d20c83c39a
Validity
Not Before: Mar 26 20:01:19 2026 GMT
Not After : Mar 27 20:01:19 2026 GMT
Subject: CN=3e9d3ecbd897a9d0cfef56dc0433d4869eaf6938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:53:22:21:66:23:0e:8d:b8:ec:74:51:6d:29:
83:51:bd:ff:3e:5a:ba:c8:e1:24:f3:ff:6c:8d:d6:
c2:c1:e5:0d:bb:8e:cc:16:1e:c5:9d:34:fe:b7:0f:
ae:35:7b:65:39:ca:2b:ae:1b:e9:17:72:91:d8:a6:
08:5b:45:da:bf:9a:15:0f:d5:fe:c6:64:22:c2:bc:
d1:85:58:58:6d:ad:89:39:b7:55:e9:2b:e8:e5:d4:
2b:5a:31:72:90:db:99:a1:52:c4:c9:45:dc:0a:3d:
e4:f4:ce:94:b0:69:cd:f4:7f:30:d2:31:e1:94:2f:
5c:93:1c:6e:80:46:9a:58:c4:78:c2:71:c2:ed:64:
3e:c6:8b:41:35:75:4d:a7:e0:ea:94:59:d5:28:64:
65:5e:e2:b1:23:12:54:08:7b:00:a8:1e:ff:e7:34:
43:5c:3e:9c:f1:5d:54:3b:c1:38:51:de:36:0f:ab:
57:a9:64:a3:0a:83:3d:e2:4c:c0:fa:46:d7:04:54:
91:11:d6:82:ab:fe:3f:9a:0a:de:8b:7f:71:11:21:
41:34:83:50:19:b7:07:7e:6c:03:b4:dd:f3:3f:d7:
c4:3c:74:43:51:d7:98:18:b1:b3:07:40:6b:f3:79:
f1:c6:6a:b8:b7:2d:07:70:5b:5b:09:aa:c7:a4:bd:
57:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:9D:3E:CB:D8:97:A9:D0:CF:EF:56:DC:04:33:D4:86:9E:AF:69:38
X509v3 Authority Key Identifier:
keyid:AE:E0:8D:93:36:F2:E6:CD:16:5E:B7:30:29:7F:E6:D2:0C:83:C3:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ruCNkzby5s0WXrcwKX_m0gyDw5o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f853f8-2071-49de-b6a0-497bedd71eb9/1/ruCNkzby5s0WXrcwKX_m0gyDw5o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:65:97:87:f1:4c:e2:e9:fb:18:0a:4a:d9:d6:fd:c6:18:69:
85:70:b1:9c:82:06:7e:e2:1e:29:c2:af:a3:55:78:c0:d7:52:
83:92:a7:7e:2f:8f:b7:71:1a:14:0a:c1:4c:46:28:48:0d:4e:
96:98:ee:04:4c:19:15:1e:57:42:e0:b0:7a:ae:a3:10:45:ec:
d9:f8:cb:5c:15:44:ec:b9:7e:1d:49:ad:a7:62:a7:1c:97:62:
2e:38:af:7a:98:ac:2f:b0:51:9d:b5:b9:97:02:1e:c3:1e:f2:
12:60:32:63:f2:bc:f7:f8:e3:52:a0:3a:ae:03:59:75:be:cc:
ad:6e:b6:48:40:bb:8f:23:57:54:6d:0b:d6:54:ad:35:c2:fe:
e7:b1:b0:03:d1:d4:a1:19:75:95:a6:a0:b1:5b:aa:7a:78:96:
be:c5:58:cb:b0:91:56:54:c9:ef:df:44:cc:f2:5b:ef:78:cf:
d6:a2:80:db:89:4b:f1:10:ac:c8:af:c3:d1:fd:0c:a8:c4:f3:
d9:3b:eb:60:22:91:76:f9:0d:39:04:79:72:a8:dd:87:7d:ce:
a1:5e:1a:b2:51:ec:e8:83:cd:24:c3:9a:b5:87:35:3b:59:f6:
b1:70:76:41:46:2d:bd:6a:0a:a5:e4:de:4d:83:64:a7:86:6b:
32:a6:fb:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:11:35 2026 by rpki-client