Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
File: rFxTEhWE19himH8m_3vtWuE4FqE.mft (raw, json)
Hash identifier: skLQBCdaQvGp7bJWyWSE0F7RvQBtUYu6Oc4w22zr0fI=
Subject key identifier: 28:99:A6:39:22:31:5C:3D:88:9F:F2:BD:34:AE:D2:51:4A:7B:78:FC
Authority key identifier: AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
Certificate issuer: /CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Certificate serial: 019D25BACA180FCAFF6185442C7FE6119F36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
Manifest number: 024B
Signing time: Wed 25 Mar 2026 16:01:31 +0000
Manifest this update: Wed 25 Mar 2026 16:01:31 +0000
Manifest next update: Thu 26 Mar 2026 16:01:31 +0000
Files and hashes: 1: Ln3OJ6zDWx7Blw5HCll4po4CH-M.roa (hash: BZd7Kwg87H/bospWBtm/c29GcUHDV3xSrqHEL2bm8Hg=)
2: rFxTEhWE19himH8m_3vtWuE4FqE.crl (hash: ILCS3JxdicJCm1KPX+vXo4LBJqozXGKp+5ISzrfi/dU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:ca:18:0f:ca:ff:61:85:44:2c:7f:e6:11:9f:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac5c53121584d7d862987f26ff7bed5ae13816a1
Validity
Not Before: Mar 25 16:01:31 2026 GMT
Not After : Mar 26 16:01:31 2026 GMT
Subject: CN=2899a63922315c3d889ff2bd34aed2514a7b78fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:79:a2:3d:08:e6:56:79:3d:2b:90:0d:b8:a9:
08:f7:3d:be:ee:0d:cd:7e:e2:a1:ba:a4:fb:66:81:
2b:5e:10:bf:91:a3:af:b3:82:a0:06:96:b3:a9:1c:
d6:2e:d8:e3:d4:9d:bd:6b:4d:7b:a0:a4:66:ce:bd:
bb:81:b0:88:ec:5b:3a:0a:2d:6a:68:05:ea:56:10:
01:53:ee:75:c5:e3:d6:b7:42:a2:15:8c:35:8f:3d:
0e:69:f9:25:e8:07:2f:a2:f9:8f:70:42:e4:c9:c8:
f9:9c:ef:60:5a:6a:20:e9:8a:dc:cd:0b:96:48:69:
ae:cd:f1:aa:23:91:62:18:29:e1:a4:21:dc:f6:be:
e9:af:2c:cb:70:ab:77:d5:62:f4:36:cc:d8:19:87:
59:3a:e1:0f:5b:06:1e:fb:1e:b9:f3:89:b9:b3:b3:
1c:d0:8c:5b:09:58:f0:46:10:16:bd:00:a7:99:e3:
ca:63:8b:59:2c:f8:76:12:29:b5:37:e9:b1:82:90:
90:81:11:c7:eb:47:f1:11:0b:3f:9a:6d:5a:53:8f:
df:23:27:96:c2:2a:d8:dc:9c:11:28:21:42:af:a2:
49:3e:fe:a5:de:e6:40:0d:7c:6b:5b:e3:64:b4:a6:
91:a0:bd:f5:0b:c5:de:5c:ad:bd:da:15:d1:24:db:
95:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:99:A6:39:22:31:5C:3D:88:9F:F2:BD:34:AE:D2:51:4A:7B:78:FC
X509v3 Authority Key Identifier:
keyid:AC:5C:53:12:15:84:D7:D8:62:98:7F:26:FF:7B:ED:5A:E1:38:16:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFxTEhWE19himH8m_3vtWuE4FqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/107fdd-d2a5-450c-b031-25bf25018489/1/rFxTEhWE19himH8m_3vtWuE4FqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:66:02:ac:9a:14:f0:bf:81:68:21:f9:6e:ed:67:b8:a2:45:
cc:5a:0b:41:db:c3:5a:aa:45:b0:11:58:b5:40:73:a8:f6:37:
7e:90:3c:35:8c:1b:08:a4:d8:56:b4:a9:4a:38:29:6b:a8:a2:
b1:c9:7a:13:8a:6d:91:8b:f4:a1:85:67:9b:f9:a7:24:0e:a9:
7b:9f:2e:97:b2:e1:b4:b2:43:0b:cf:50:00:9e:74:b6:de:1d:
2d:6f:0d:fc:90:83:5c:5d:71:d9:4b:66:6c:c0:e9:72:db:85:
5e:6a:e0:a4:a9:f1:8f:b1:dc:94:64:7e:4e:0f:fd:42:81:39:
99:2f:42:13:e8:63:4a:42:a8:1d:e4:87:17:21:7b:17:77:c7:
08:c7:d6:ed:25:91:e6:2b:4b:88:09:6c:7d:ae:6e:49:b3:bb:
9c:45:02:6a:6c:a8:ae:92:43:49:a9:f5:e9:fd:2a:f9:d7:2c:
98:e0:03:c4:36:c2:93:d6:47:d9:fc:10:7f:51:6d:87:90:d4:
98:67:9d:4e:a3:87:2d:ff:81:a6:f6:8c:1f:38:ce:af:ac:a9:
72:9f:d2:37:af:a7:28:75:77:09:62:0c:1a:ef:ac:7b:24:f2:
01:96:44:9c:e0:60:5c:79:45:60:14:2f:11:e2:8f:b6:08:44:
91:bd:f9:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:55:36 2026 by rpki-client