Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json)
Hash identifier: U6vMQJ3Lpr84klBSImC3DILyuj3HJOnVrVCgqhq8hxM=
Subject key identifier: D3:7A:96:D4:46:EE:F9:8E:14:90:27:59:7A:F7:B2:77:89:72:C2:B0
Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Certificate serial: 019D2AA9631329ED77C45C07B8B2CF36B341
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
Manifest number: 1198
Signing time: Thu 26 Mar 2026 15:00:37 +0000
Manifest this update: Thu 26 Mar 2026 15:00:37 +0000
Manifest next update: Fri 27 Mar 2026 15:00:37 +0000
Files and hashes: 1: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: HwQloHlAtEilUTUnQFo19iSk5z50IXueGCX9pLEhEmw=)
2: v-QuOOYMf4HsWM21RDZIDik1F8Y.roa (hash: tkB5JnPvXNK8KkYHS1hN95y7jCOIV01txTm1VSy3JoA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 15:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:a9:63:13:29:ed:77:c4:5c:07:b8:b2:cf:36:b3:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad
Validity
Not Before: Mar 26 15:00:37 2026 GMT
Not After : Mar 27 15:00:37 2026 GMT
Subject: CN=d37a96d446eef98e149027597af7b2778972c2b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d9:42:1c:c8:e5:47:06:66:49:b9:da:06:93:
10:a9:ff:4b:ba:17:14:b8:dd:29:2e:98:01:70:f8:
16:e9:28:c7:da:3b:40:da:9d:ff:5a:f0:c4:1e:51:
24:1c:c4:16:da:04:0b:c5:13:d2:cd:3f:94:eb:f1:
b0:9a:57:fd:46:46:ae:22:23:e4:7f:58:0a:fb:66:
24:2f:15:21:cf:93:00:c4:68:83:b3:b5:92:52:bd:
b8:5f:d1:5b:c6:ae:c6:1b:cb:64:86:42:6a:c8:62:
06:37:e7:2c:62:85:b4:d5:5c:2a:c9:ef:ee:ce:b8:
88:dc:50:37:b5:c9:12:49:21:75:ca:28:f9:b9:65:
3b:f1:d2:56:44:e3:b3:1c:bf:bb:ed:8d:80:b9:e6:
8b:b3:6b:a3:d6:d5:2b:5e:af:8d:0a:28:95:2d:a6:
ff:3f:03:7f:3b:df:fd:ee:e4:ee:9a:cd:4e:6c:5d:
b4:06:9f:89:b9:9d:fd:d8:4e:ac:cd:c1:2e:c9:b3:
0b:e9:26:78:9d:75:27:5a:22:a2:c4:b1:35:ee:5f:
d4:4e:aa:24:e5:9d:e2:f1:bb:cb:2b:df:49:07:6b:
14:fa:21:05:e7:c9:1a:28:37:8f:99:bd:62:52:3b:
fe:aa:7b:a8:3a:aa:d2:bb:95:5f:b2:c3:3a:aa:dd:
cf:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7A:96:D4:46:EE:F9:8E:14:90:27:59:7A:F7:B2:77:89:72:C2:B0
X509v3 Authority Key Identifier:
keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:52:53:eb:71:15:7e:bb:19:f9:0d:70:e8:25:9e:6e:ae:d8:
cc:14:b4:29:e0:e0:72:8a:6d:a8:67:03:fd:3c:70:fc:76:c4:
27:42:90:59:77:e4:26:40:71:f1:69:1d:48:e1:3d:23:aa:17:
26:8f:23:27:13:72:8f:d1:af:9a:66:7d:0a:fe:3b:d7:b1:f2:
f5:90:22:d2:bd:1e:54:b3:84:96:f1:ec:2a:51:f3:c6:ed:61:
84:8f:f6:3d:25:20:88:86:b8:1e:16:21:b1:f1:12:b9:4b:d9:
be:a1:2b:37:b7:70:62:7e:d2:25:81:69:1a:c2:c3:1d:20:2d:
30:fe:96:4d:a6:39:21:68:8a:0c:cc:fa:f2:00:9a:2a:1c:ca:
b8:cf:82:c3:55:7a:f4:2b:2a:57:d6:5b:22:78:ca:d0:a4:59:
6c:21:38:e9:67:0f:11:13:2f:cd:3c:8b:0d:ee:83:cc:7f:93:
5b:4d:29:f2:9f:5e:4a:d1:b5:b7:7e:8a:5d:fa:ae:07:6e:ba:
f7:9f:39:fe:54:84:c3:67:1c:5a:4d:7e:4b:f1:79:c1:67:85:
21:60:7e:37:aa:7c:aa:70:0b:2e:ea:6e:71:1b:5c:6b:30:5d:
1e:70:32:20:f9:e2:62:48:c5:ac:a3:e0:38:2c:50:23:cd:c9:
25:48:84:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:57:13 2026 by rpki-client