Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
File: 59aKnrhqgmTp3cMSKEm4DMNC9dw.mft (raw, json)
Hash identifier: DwkUnX/Zwsh5Wq093kicMBWxCj0RcN2uvWVGnOC0Ztc=
Subject key identifier: A7:0A:C3:18:47:0F:BE:58:3E:92:8D:28:8A:E2:2E:76:B9:13:10:55
Authority key identifier: E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
Certificate issuer: /CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Certificate serial: 019D2695F93BFC8DC1FC521BCFB796389D5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
Manifest number: 15A0
Signing time: Wed 25 Mar 2026 20:00:55 +0000
Manifest this update: Wed 25 Mar 2026 20:00:55 +0000
Manifest next update: Thu 26 Mar 2026 20:00:55 +0000
Files and hashes: 1: 59aKnrhqgmTp3cMSKEm4DMNC9dw.crl (hash: F+fyD3RkOrJukrhrzfg4vecvNP+/YjuFFc2FYwYRa/8=)
2: 5D_6V1jfsiELpRkCmEhi7rdCKRg.roa (hash: /d0M4c6YWxQ0V8Mp5iLPG6sVPAc4eaY42hLJi+0oXvQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:95:f9:3b:fc:8d:c1:fc:52:1b:cf:b7:96:38:9d:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Validity
Not Before: Mar 25 20:00:55 2026 GMT
Not After : Mar 26 20:00:55 2026 GMT
Subject: CN=a70ac318470fbe583e928d288ae22e76b9131055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d7:91:12:d3:f6:be:bb:f8:d5:b9:ac:59:0c:
ce:0f:88:21:39:cd:19:96:2c:61:45:28:2d:7b:f6:
b1:3d:34:79:a5:c1:94:3a:a3:c9:c4:21:86:e2:f0:
8e:36:3e:c0:15:53:42:88:53:7b:cb:5a:b4:5f:08:
d8:c2:e5:ce:07:ad:da:e8:b8:c1:73:a0:30:00:2b:
dc:e6:90:7d:cc:11:cf:d3:38:92:e6:56:f5:1d:42:
05:7a:62:84:fa:e2:e0:2d:40:2c:7a:22:6b:44:fa:
7b:01:97:7e:53:c4:d2:01:81:aa:3d:85:55:64:78:
71:ea:a7:c4:fb:a0:a1:c9:97:a6:a1:9e:7a:19:ef:
47:d0:a1:8a:7b:b7:32:5a:78:77:02:2b:1e:fb:ea:
f8:46:e8:42:a1:93:93:f3:95:16:46:e9:e5:2a:af:
bb:a7:03:bd:62:68:1a:0a:12:8c:61:08:72:4b:ce:
bb:f8:b5:28:ab:30:b9:3c:67:84:47:bd:90:f9:3e:
39:0f:fa:93:22:cb:4b:1b:c5:89:86:0c:af:42:cd:
ea:87:67:db:69:d7:6c:57:b4:81:50:f5:c5:61:ff:
40:fb:79:62:13:cd:57:01:d8:57:54:2e:11:ab:1d:
25:d2:4e:39:ac:c9:43:62:2c:7a:22:9c:3f:cf:5a:
44:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:0A:C3:18:47:0F:BE:58:3E:92:8D:28:8A:E2:2E:76:B9:13:10:55
X509v3 Authority Key Identifier:
keyid:E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:c4:c8:3f:e8:24:8e:6a:e8:7d:ea:19:6b:2d:cc:8b:92:fa:
26:d3:d6:07:59:be:d4:63:69:56:ac:12:d3:64:c2:5e:ba:04:
1a:6f:20:5a:63:fc:c5:da:73:71:ae:2a:81:24:25:51:a3:7e:
76:2e:73:ec:34:07:7a:6b:16:0f:50:86:4f:72:68:bd:95:08:
60:9a:d0:e9:2e:d3:cf:9f:0a:ea:88:dc:7c:e6:35:31:13:52:
5e:3d:2a:89:b1:5c:a5:21:5b:95:42:40:93:17:c9:f8:00:b0:
4f:5b:32:c5:e6:9e:2b:16:de:e4:fe:a0:bc:1d:d3:0c:c4:99:
8a:02:86:b4:97:21:ba:56:cb:54:f8:64:75:17:c9:92:37:99:
b2:e9:b3:dc:43:a9:c2:85:4c:f0:2e:22:6a:a6:90:33:35:52:
b0:b0:f0:36:7e:60:df:02:95:f5:b1:18:1b:0e:a8:4a:6f:f2:
c0:f8:6b:1d:66:43:12:74:aa:7c:87:6b:bd:6b:12:14:42:4d:
07:16:85:ff:18:6c:30:73:31:13:00:ef:d4:d7:78:1c:fa:12:
e1:18:ee:e1:0f:82:a1:93:2e:04:f1:65:da:72:84:c1:b1:92:
85:03:b0:59:2e:fc:dd:e1:99:b1:47:fb:cd:a8:e9:da:4e:51:
11:98:7b:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:34 2026 by rpki-client