Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
File: rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft (raw, json)
Hash identifier: bIduwZHkO3q2bdZ5bk1vexO0tY+IaJDjlVIQAh+In4o=
Subject key identifier: 43:33:88:83:11:70:A6:16:2E:06:D9:F6:4F:91:2D:BE:9A:D7:C0:6E
Authority key identifier: AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
Certificate issuer: /CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Certificate serial: 019D27043A632D4CD6B89DC6046722C32E19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
Manifest number: 18A1
Signing time: Wed 25 Mar 2026 22:01:21 +0000
Manifest this update: Wed 25 Mar 2026 22:01:21 +0000
Manifest next update: Thu 26 Mar 2026 22:01:21 +0000
Files and hashes: 1: Bq58wAV24LxCZfTqHikKpc1Pf90.roa (hash: Z38fRBPUaqDEJWZAtaIhWDjBuRq5J5FcYiFjJcjIdC4=)
2: g2mfEORB4KTxQPtrqS9KmJwGt60.roa (hash: ckCX/PTaFOHfPb57/FfMCnl07XdvXwOjflYamRZ+ttU=)
3: im5Fb-9w5mmPjp20JVfM6UTi9ZI.roa (hash: Lno5hcnACQyBSV8jBaTu79StES2mMHGRUyHa5ifNUXg=)
4: kEa8o2UnqelmH_ygtilQKIay4-U.roa (hash: wdOm+SKzMVc+6qYyPwtZWi4vySs728OYrMlkH8naows=)
5: o2zKTEKdkma_CEqLLr3-nWa-bTg.roa (hash: K00xY1oGfH9hHVRaGcI7b3OeCoea9X65r82JQ/DAkQ4=)
6: rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl (hash: zh31o3xQguwlxgd1qhy3QJqD7db0VHdjv8sBR19MTYQ=)
7: yl_8RQWT42NWgczzOlDn0gK7u0w.roa (hash: AZgf7E7lVvGrL5j+ea4NwUOdqabLA6/5isp7lMtBrHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:3a:63:2d:4c:d6:b8:9d:c6:04:67:22:c3:2e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f747df5f24353154dc4d4bf70d2ddcb53e900
Validity
Not Before: Mar 25 22:01:21 2026 GMT
Not After : Mar 26 22:01:21 2026 GMT
Subject: CN=433388831170a6162e06d9f64f912dbe9ad7c06e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:80:05:4f:33:a8:de:85:c1:46:85:e3:b2:b8:
db:63:29:85:c5:f0:24:44:65:e5:80:d6:de:f7:fd:
8a:a2:d9:9d:73:83:25:c3:43:00:ab:04:e1:d1:3f:
d6:3d:d3:c7:d2:05:ac:c0:ec:f6:12:52:32:10:65:
72:98:82:4d:08:88:b0:9b:6c:a6:91:4a:fa:9b:4c:
19:6d:eb:2b:7d:97:b5:7a:a0:d8:44:1a:48:10:42:
5c:0c:cb:1e:8f:fb:25:80:2b:f0:79:3e:2e:8e:6c:
f1:3b:f3:35:c7:30:32:a8:d7:01:eb:5d:77:1d:ad:
d7:48:c5:6e:9e:70:3d:39:9c:52:28:d8:be:da:83:
b9:b1:53:d8:61:94:58:80:14:2a:18:59:fc:ab:d3:
b2:2f:59:0c:30:69:4c:8d:56:44:4a:76:bb:14:6f:
e3:4e:32:2e:2d:dd:b7:7f:81:09:e0:d9:32:76:ea:
eb:ff:e4:9d:7e:1e:f7:f9:68:5b:0a:f9:4e:90:bd:
4a:ec:b2:4e:1e:96:05:c4:87:df:96:a5:f4:86:85:
57:c9:4d:d2:e5:41:3c:0a:22:87:ac:e4:66:9e:5f:
6e:3e:f6:1b:c0:5f:f1:cc:46:e0:07:2d:5e:83:06:
06:92:fa:ff:ea:db:93:ad:70:bf:d4:a4:dd:f5:6e:
34:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:33:88:83:11:70:A6:16:2E:06:D9:F6:4F:91:2D:BE:9A:D7:C0:6E
X509v3 Authority Key Identifier:
keyid:AE:7F:74:7D:F5:F2:43:53:15:4D:C4:D4:BF:70:D2:DD:CB:53:E9:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn90ffXyQ1MVTcTUv3DS3ctT6QA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/58af24-c454-44b0-a7ca-c6f1e6ac9ba9/1/rn90ffXyQ1MVTcTUv3DS3ctT6QA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:74:d8:6a:15:ad:79:9c:bd:24:98:ca:1f:88:1c:62:ec:c3:
ab:c8:f2:fb:ec:c1:4a:24:00:b1:cd:f9:f4:cb:08:81:3a:f0:
04:de:8e:5a:c5:36:d2:aa:ac:7c:06:15:d7:71:91:52:d5:bb:
6a:c1:ab:74:32:22:13:79:d9:76:3e:e6:2b:6d:bb:17:83:ad:
79:49:6f:0a:c3:8f:2c:2a:76:7d:7c:b0:74:62:65:56:3e:fe:
6b:1f:ca:54:a7:63:2b:04:4a:1a:34:cb:15:b2:62:84:f4:a0:
d0:ac:98:f5:73:03:97:e0:29:bd:d7:ef:c8:cb:3d:81:1e:80:
56:f3:1f:e6:96:04:e5:b4:b7:d7:45:90:71:b7:bf:8b:12:dd:
56:27:9d:05:d7:88:46:ed:ef:4c:b8:9b:9c:64:ed:70:d8:81:
99:b4:e5:39:45:4f:4a:39:58:27:88:fc:07:82:e0:36:ca:3b:
07:52:a1:59:64:54:85:4a:99:9e:f4:0c:9c:a1:86:59:2c:3f:
72:4d:fa:92:66:13:99:08:19:98:41:06:b4:1d:b9:17:77:67:
f0:53:17:d2:ed:fb:92:2f:31:16:59:75:4a:ee:e9:00:ce:5a:
85:fc:4e:33:63:2e:dc:85:58:43:fb:dd:5a:b8:bc:81:bf:26:
a3:b4:d0:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:45:31 2026 by rpki-client