Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/b27704-ef52-44a7-bdd1-f9f91e4e31fa/1/d3JBEvAoXYMMh-4yVtUZaPFbuQs.mft
File: d3JBEvAoXYMMh-4yVtUZaPFbuQs.mft (raw, json)
Hash identifier: 0Uqlvsv+O1W2MKGRtlvjHf8y/KR8yZuFBwg2BPd+Vwc=
Subject key identifier: 8A:BC:5B:84:24:15:18:48:E6:79:35:BE:D5:37:EC:97:AA:E7:C1:7D
Authority key identifier: 77:72:41:12:F0:28:5D:83:0C:87:EE:32:56:D5:19:68:F1:5B:B9:0B
Certificate issuer: /CN=77724112f0285d830c87ee3256d51968f15bb90b
Certificate serial: 019D26282CA9A5B0A931EB6848F2452F69C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d3JBEvAoXYMMh-4yVtUZaPFbuQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/b27704-ef52-44a7-bdd1-f9f91e4e31fa/1/d3JBEvAoXYMMh-4yVtUZaPFbuQs.mft
Manifest number: 43
Signing time: Wed 25 Mar 2026 18:01:00 +0000
Manifest this update: Wed 25 Mar 2026 18:01:00 +0000
Manifest next update: Thu 26 Mar 2026 18:01:00 +0000
Files and hashes: 1: 6p1ednwrZQ_JDbcmNlbUx0LPSFQ.roa (hash: hIJJSdmlqRlS5NfeTFhoCLt5Vs93+x5E1RzMdfdB3oA=)
2: d3JBEvAoXYMMh-4yVtUZaPFbuQs.crl (hash: PCS/nOGa/eu9B8p868cAIW7s/tukd/ddFpoTIdGQRds=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/b27704-ef52-44a7-bdd1-f9f91e4e31fa/1/d3JBEvAoXYMMh-4yVtUZaPFbuQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/b27704-ef52-44a7-bdd1-f9f91e4e31fa/1/d3JBEvAoXYMMh-4yVtUZaPFbuQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/d3JBEvAoXYMMh-4yVtUZaPFbuQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 18:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:2c:a9:a5:b0:a9:31:eb:68:48:f2:45:2f:69:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77724112f0285d830c87ee3256d51968f15bb90b
Validity
Not Before: Mar 25 18:01:00 2026 GMT
Not After : Mar 26 18:01:00 2026 GMT
Subject: CN=8abc5b8424151848e67935bed537ec97aae7c17d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:47:67:7c:03:26:d2:b0:7e:3a:25:59:7e:10:
69:78:45:8b:b0:27:35:90:2b:0f:9f:d2:ba:0e:80:
17:c1:a1:9f:15:3a:26:0e:69:3a:ee:d8:0a:32:45:
7b:37:cc:6e:24:7f:38:fd:b5:50:0e:1e:f9:b0:e5:
bf:fd:fb:f9:9e:9f:f4:c3:61:ed:18:2c:ed:72:93:
ed:7d:c1:c7:cf:39:5c:83:b4:33:b6:8d:40:e1:b7:
ae:9e:0e:68:32:e3:ad:5f:47:4e:e9:c8:c7:f2:c3:
b7:bd:29:e4:35:54:e9:a4:05:c1:d0:24:15:db:c7:
e5:00:dd:dc:6d:1b:81:15:5a:9a:87:01:4c:66:51:
3d:93:6f:de:67:3b:06:7f:17:a2:49:ae:7b:bf:9e:
24:e6:3d:a8:86:93:27:f1:28:56:25:06:42:23:b8:
04:a5:46:5e:dd:c2:b8:92:3f:01:a9:63:b9:c5:3b:
cc:c2:ec:66:30:aa:0c:d1:4a:29:66:36:87:e2:4e:
04:e8:bf:f4:bb:45:7b:31:0a:a8:4b:08:e7:06:e0:
b3:dd:8b:66:e2:5e:4d:80:9d:5c:cf:34:0e:9f:a1:
a4:ef:d3:21:a7:c7:57:81:6e:4b:6e:dc:3e:a8:f2:
f3:81:32:27:45:4a:aa:85:3f:c4:5e:d9:97:ca:30:
43:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:BC:5B:84:24:15:18:48:E6:79:35:BE:D5:37:EC:97:AA:E7:C1:7D
X509v3 Authority Key Identifier:
keyid:77:72:41:12:F0:28:5D:83:0C:87:EE:32:56:D5:19:68:F1:5B:B9:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3JBEvAoXYMMh-4yVtUZaPFbuQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b27704-ef52-44a7-bdd1-f9f91e4e31fa/1/d3JBEvAoXYMMh-4yVtUZaPFbuQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/b27704-ef52-44a7-bdd1-f9f91e4e31fa/1/d3JBEvAoXYMMh-4yVtUZaPFbuQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:2d:a0:ec:a4:a5:27:88:4d:29:bb:01:60:fe:9b:91:79:89:
ec:20:fb:5e:36:e3:e9:dc:eb:4c:6a:79:b7:12:bf:72:13:e1:
e9:01:25:fc:1b:9f:59:3c:7e:79:5c:45:15:d2:df:f7:f5:bb:
cb:cc:23:fa:d5:24:c1:61:69:8b:16:ab:6a:12:dc:a2:4a:95:
be:b9:7c:1b:3c:27:c9:05:aa:84:34:a9:e1:df:97:f0:6d:3f:
be:a3:15:6b:b9:bd:d8:3a:38:10:04:ae:d3:98:50:07:c4:36:
21:a6:4e:34:aa:ed:bc:5a:96:be:9d:fb:c7:ed:67:0f:37:43:
fc:f1:36:9a:90:73:46:1e:2f:e1:1b:60:30:71:94:3d:07:d0:
7e:27:87:b2:6e:b7:39:2f:3b:63:e2:c1:a4:f8:1e:76:5c:b3:
71:f8:4e:38:73:f0:3a:7b:db:54:d8:97:40:1d:35:42:5c:6f:
82:9f:83:67:00:3a:93:40:2e:e8:c1:47:31:7c:ac:6b:e6:66:
22:bc:a6:64:ff:5d:56:99:29:40:cc:8b:28:04:d9:86:30:22:
ea:dd:35:d1:4c:53:36:5b:d2:d5:58:94:2f:13:90:af:5c:b8:
0c:c1:c0:6f:a9:44:82:a1:b8:75:b2:e1:7f:05:10:87:d7:f3:
77:51:ca:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:48:13 2026 by rpki-client