Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
File: R1oGyte9DD25-KOB8euc1sdaqyg.mft (raw, json)
Hash identifier: W8LZUWBLkDLMcOI1NB557ySaPeAFnPgiRzfYHTDSiKg=
Subject key identifier: E4:5C:8F:C8:F5:3D:D1:A9:22:AB:73:E1:15:EA:7D:79:39:79:1D:28
Authority key identifier: 47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
Certificate issuer: /CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Certificate serial: 019D2A725F4968C018E8D1878135A1E447E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
Manifest number: 0443
Signing time: Thu 26 Mar 2026 14:00:31 +0000
Manifest this update: Thu 26 Mar 2026 14:00:31 +0000
Manifest next update: Fri 27 Mar 2026 14:00:31 +0000
Files and hashes: 1: R1oGyte9DD25-KOB8euc1sdaqyg.crl (hash: yBVJHi85si4sH+I1PjNCM+0YXwv0+7g4JJoQIEg5Sbo=)
2: WssIiJPoFY7lcNnyGVymIImcWDA.roa (hash: k9Vj39pdgub01PhKYMQsaWQH2pHY+R5nnRnCmdZFUMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:5f:49:68:c0:18:e8:d1:87:81:35:a1:e4:47:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Validity
Not Before: Mar 26 14:00:31 2026 GMT
Not After : Mar 27 14:00:31 2026 GMT
Subject: CN=e45c8fc8f53dd1a922ab73e115ea7d7939791d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:18:92:3e:0e:fe:ee:e3:86:61:4a:6f:c3:a2:
b4:e1:ab:61:5a:20:f2:ef:ac:67:0f:03:18:39:7b:
d7:a4:96:65:f3:30:0a:3f:3d:07:08:ec:fa:80:18:
b6:fe:10:7c:a9:02:8b:01:fd:3d:89:b4:f6:27:3c:
2e:7d:3e:56:72:d4:ca:38:3f:83:94:94:0a:d2:55:
cf:cf:ad:7d:1c:15:62:ac:89:17:b9:19:e4:5a:c9:
f0:a1:16:eb:5d:39:e8:e6:3c:19:37:e3:2a:d2:d6:
fe:29:87:9d:76:39:b8:4c:22:77:a1:d0:4e:e4:e7:
79:62:c4:50:d3:ab:83:97:38:0e:4b:19:28:8f:35:
4c:a9:0f:b3:85:60:0d:15:a3:eb:df:1a:95:8a:89:
a4:7e:aa:50:9c:a0:88:60:bf:10:e7:d2:24:9a:56:
f0:a5:e8:42:24:3b:00:40:b3:f4:0f:9f:c8:d5:0a:
49:c6:24:f4:d3:20:26:dd:b4:cf:c9:69:8d:5b:78:
f8:57:01:1e:44:06:cf:4d:69:3f:ce:a9:86:40:ff:
0c:71:a2:ed:c4:98:cd:f3:a5:46:32:fc:2e:e4:67:
ef:9d:c9:de:b9:bc:99:2b:1d:f8:bc:06:fc:22:76:
11:ca:f5:e2:bc:84:29:88:6b:1d:64:1d:aa:12:74:
9b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:5C:8F:C8:F5:3D:D1:A9:22:AB:73:E1:15:EA:7D:79:39:79:1D:28
X509v3 Authority Key Identifier:
keyid:47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bf:c3:8d:6b:79:03:04:32:67:2a:5a:08:cf:cf:c8:20:19:b9:
0f:b2:a0:b0:6b:33:a4:b9:d0:2d:17:1a:a9:4c:06:7b:ad:ad:
d7:07:dd:99:41:9e:ad:29:b2:41:df:65:09:48:d2:e3:d3:bf:
20:47:d4:84:f8:95:20:f7:70:6a:a5:68:73:66:00:b0:71:8e:
a8:75:55:5f:c5:59:5b:da:8f:8d:90:50:e2:e3:f8:b9:ad:9b:
e6:e7:2f:e4:ec:45:ae:c1:b3:17:f6:97:f3:82:35:c3:1b:1a:
be:de:38:09:38:2f:f8:28:cc:42:f4:3e:19:71:15:cd:80:a1:
1b:d4:34:ff:85:e7:e4:31:05:7c:d8:80:9a:68:5b:4b:d6:70:
35:7d:a0:63:09:7e:2c:4c:07:d2:bc:e7:fd:de:75:40:90:88:
f4:bc:ce:c8:71:aa:f9:ff:97:7a:fa:0b:5d:0e:80:c8:c7:22:
d7:73:63:dc:0b:64:7f:32:56:4d:51:8e:f0:3c:67:3f:9a:80:
2f:76:de:e8:65:b8:af:7a:11:dc:ad:89:57:50:3f:85:c2:5b:
16:29:99:32:01:19:9b:fa:c0:86:5b:b5:8f:64:9e:98:2d:55:
b9:f5:64:f8:30:e8:3c:20:77:97:95:03:60:6b:c8:53:8b:86:
b7:a6:af:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:38:37 2026 by rpki-client