Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft
File: 352lG6cnhKBORBIPne1HhWd5TBs.mft (raw, json)
Hash identifier: vr5uTQFHz280oz2vWHKpG5K3xmGFWvlbspLjRg+kIJs=
Subject key identifier: 47:E3:ED:6A:4D:AD:CF:39:BD:D9:FD:97:5A:1B:7B:E7:EE:77:A2:0F
Authority key identifier: DF:9D:A5:1B:A7:27:84:A0:4E:44:12:0F:9D:ED:47:85:67:79:4C:1B
Certificate issuer: /CN=df9da51ba72784a04e44120f9ded478567794c1b
Certificate serial: 019D26282F48AD729B6F5C561FC33B560271
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/352lG6cnhKBORBIPne1HhWd5TBs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft
Manifest number: 0C6E
Signing time: Wed 25 Mar 2026 18:01:00 +0000
Manifest this update: Wed 25 Mar 2026 18:01:00 +0000
Manifest next update: Thu 26 Mar 2026 18:01:00 +0000
Files and hashes: 1: 2W88bJ9UIevT6ruHtvcfNI1Zt7c.roa (hash: WGP7jajyyzt7YE+QpBz+OBA3QcdppcJEykw9cTms7PE=)
2: 352lG6cnhKBORBIPne1HhWd5TBs.crl (hash: b2c3Ib7wWQ7XQzG7gbVeqdxvltXBRBFNyvVnT4LdPcY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft
rsync://rpki.ripe.net/repository/DEFAULT/352lG6cnhKBORBIPne1HhWd5TBs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:2f:48:ad:72:9b:6f:5c:56:1f:c3:3b:56:02:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df9da51ba72784a04e44120f9ded478567794c1b
Validity
Not Before: Mar 25 18:01:00 2026 GMT
Not After : Mar 26 18:01:00 2026 GMT
Subject: CN=47e3ed6a4dadcf39bdd9fd975a1b7be7ee77a20f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ae:ed:f2:df:2f:57:40:7b:ec:70:3f:8c:b6:
50:f4:e2:e5:a9:f8:c1:05:a2:41:4d:fa:2f:79:25:
a8:76:6b:ac:08:86:a9:2f:80:54:d8:32:19:71:4f:
cc:24:f5:d0:3d:c2:87:df:d8:7f:77:2c:1f:96:d3:
1a:e5:20:27:60:f9:16:04:28:25:4f:37:04:0b:85:
4d:ae:e2:d3:f8:48:e5:5f:2c:a4:75:0b:3d:47:65:
64:7a:af:3b:3f:c6:05:d5:05:76:13:66:95:41:75:
69:25:fa:d9:9f:06:b0:07:4a:82:04:25:ec:1b:3c:
04:24:45:47:3b:d5:7c:43:46:d1:49:c8:7d:f5:5e:
2c:b9:c8:e9:6b:73:8f:15:cc:52:7a:cb:05:56:da:
0d:8e:bf:90:69:83:4f:b4:25:ec:2e:a4:fc:55:65:
80:07:75:9e:6b:7d:d2:f7:2a:a8:09:bd:09:13:40:
73:43:c3:bd:d4:a0:2d:7e:0b:ad:4e:00:ff:cf:36:
84:b5:7e:1c:65:21:40:d3:3c:87:63:7f:5e:90:7f:
fa:75:ef:5a:39:1c:48:d8:66:4c:db:d2:2f:05:47:
61:d1:4b:56:61:e0:41:d3:88:08:59:8f:76:03:e4:
8e:06:7e:c8:35:bc:11:44:1a:c1:8c:b9:6a:fe:60:
6e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:E3:ED:6A:4D:AD:CF:39:BD:D9:FD:97:5A:1B:7B:E7:EE:77:A2:0F
X509v3 Authority Key Identifier:
keyid:DF:9D:A5:1B:A7:27:84:A0:4E:44:12:0F:9D:ED:47:85:67:79:4C:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/352lG6cnhKBORBIPne1HhWd5TBs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:6a:69:8b:7a:92:d9:94:46:de:05:ff:65:37:3f:3e:5e:45:
e6:b3:0f:d4:f8:a9:7e:02:4f:00:d2:7d:b0:e7:65:8a:08:bb:
dc:5d:2d:e4:0c:28:5b:19:a0:99:30:3e:d8:96:7c:c4:f2:e0:
50:90:2c:c9:7a:0d:6c:a2:42:ce:f6:52:6c:c9:b4:51:17:5f:
ff:23:cd:91:a2:cf:16:dc:5c:15:c8:2d:52:fa:5d:fd:d4:e4:
a0:27:29:c6:23:63:bc:80:95:1e:23:6b:68:70:b7:38:b3:d0:
31:24:ae:87:45:8d:13:d8:90:60:fc:1c:eb:a5:d6:a1:f3:f6:
fb:77:d9:ea:e7:ac:50:7a:83:eb:1c:1e:41:99:b3:b3:b7:7d:
b9:02:9b:30:82:17:76:fd:b7:8a:a0:27:6b:29:5c:cd:8e:dd:
5b:01:45:52:56:e8:13:ad:a5:bb:e7:17:e8:37:a3:0f:61:d4:
2a:35:85:fc:33:2c:5e:1e:7e:25:12:0f:ae:0f:df:5d:12:43:
d5:ac:f2:4f:9d:9a:95:17:6c:69:f6:47:28:7a:ff:83:74:63:
2e:d4:1b:6d:77:1b:22:26:d3:5c:f1:ea:65:c3:dd:55:b8:a7:
47:51:31:84:5b:c3:34:e7:9a:aa:e9:50:35:25:84:b4:86:1b:
bd:7e:c0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:24:06 2026 by rpki-client