Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
File: do0jVpP2hnxbOBPaHzb-EHvR14I.mft (raw, json)
Hash identifier: +vJuLqDB0u0blvlC3RD60WkN+eWKNDrsUEOTB+Abazs=
Subject key identifier: F4:E0:30:33:58:0F:4C:B3:19:14:E7:96:CF:74:58:CA:E2:F9:F6:78
Authority key identifier: 76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
Certificate issuer: /CN=768d235693f6867c5b3813da1f36fe107bd1d782
Certificate serial: 019D2997A908F3F7D8AB614CAC38CD58E665
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
Manifest number: 0F5F
Signing time: Thu 26 Mar 2026 10:01:38 +0000
Manifest this update: Thu 26 Mar 2026 10:01:38 +0000
Manifest next update: Fri 27 Mar 2026 10:01:38 +0000
Files and hashes: 1: KuefoOzdZ9vrXjVoaWqLBNOd8Fc.roa (hash: Tr2+OxM2L2vZYYtrtzp3JmsEgxHYlAlF0KBqV8P0L1o=)
2: do0jVpP2hnxbOBPaHzb-EHvR14I.crl (hash: uu/GcwAAz8XTve9iMp9a9V2Bn3qO1CqT3y6Sy2elmro=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:a9:08:f3:f7:d8:ab:61:4c:ac:38:cd:58:e6:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=768d235693f6867c5b3813da1f36fe107bd1d782
Validity
Not Before: Mar 26 10:01:38 2026 GMT
Not After : Mar 27 10:01:38 2026 GMT
Subject: CN=f4e03033580f4cb31914e796cf7458cae2f9f678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:07:83:bb:53:02:a6:5b:f2:11:d2:ff:e8:2d:
44:40:74:57:40:38:ff:7e:4f:40:93:2b:ed:4f:5b:
6e:04:d1:df:d3:bb:7d:e3:6c:79:10:29:47:e4:bf:
89:90:77:36:b7:75:73:17:f8:37:65:95:96:e2:ab:
b5:ae:9c:67:28:a1:2f:15:06:e5:08:85:51:71:95:
e1:25:e1:76:a3:03:61:7a:58:4d:a7:a3:85:d5:0c:
cb:66:fa:e4:f4:2a:a3:f3:d2:12:d8:93:12:70:39:
24:3e:f9:66:00:a8:f9:d0:aa:e3:02:be:55:3d:4f:
c7:57:0f:a7:a2:92:f4:7e:d8:ea:cb:f4:3f:eb:0f:
6d:72:7d:7a:20:0a:6b:72:75:f8:87:69:d9:3b:4c:
8b:32:0a:cd:40:3f:50:d9:b0:b2:b8:c5:71:9e:8e:
51:4f:0e:6d:46:04:fd:59:56:bb:bf:f8:f0:f7:fb:
44:1d:6b:14:91:93:19:1e:7f:aa:30:2c:83:89:a7:
ac:78:a4:69:89:44:96:7a:ca:e0:81:94:e4:20:5f:
74:ce:31:3a:64:ba:99:94:e1:89:8d:62:31:12:54:
5a:56:ef:83:d3:0f:8a:bf:bf:30:25:7b:bc:d3:d5:
a1:12:25:11:be:b0:3d:01:a2:53:d1:29:d6:8f:cc:
d9:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:E0:30:33:58:0F:4C:B3:19:14:E7:96:CF:74:58:CA:E2:F9:F6:78
X509v3 Authority Key Identifier:
keyid:76:8D:23:56:93:F6:86:7C:5B:38:13:DA:1F:36:FE:10:7B:D1:D7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/do0jVpP2hnxbOBPaHzb-EHvR14I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/e120ef-1430-45ea-b77f-e376b9242ea7/1/do0jVpP2hnxbOBPaHzb-EHvR14I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:4f:3f:d1:a5:69:3b:fd:59:8c:00:e3:f3:4b:6c:a2:0e:27:
6a:39:af:20:60:ad:5e:06:2a:46:3f:9c:c8:81:5b:a5:5a:85:
b1:f7:22:38:9b:a5:8c:db:d7:92:ca:da:0a:e6:38:3b:10:f7:
f8:0a:b1:bb:9f:f6:de:d1:fa:e7:17:35:38:e4:20:4b:d7:33:
fa:94:00:79:c7:4d:83:63:f2:74:35:1a:0b:77:15:4f:1d:a7:
97:01:6c:0d:23:50:0a:5c:32:51:74:ec:a8:b1:85:67:3e:39:
74:ed:10:a8:82:2c:3e:8b:70:ef:1b:88:8a:1f:0d:6f:94:ac:
ae:f9:bc:8a:62:3e:ef:c3:08:3c:0a:1d:ad:95:10:b8:90:ac:
2a:05:0f:42:7e:a3:5b:7f:93:39:3e:2f:f0:1e:be:00:d1:d3:
59:3f:20:c4:c1:1c:cd:55:ba:56:14:16:5e:f9:e3:f3:f4:37:
86:8c:74:c2:26:a0:96:a6:20:22:b1:bc:d2:01:26:df:49:90:
71:3d:49:76:78:8b:c0:1f:15:89:51:64:39:d1:33:3c:2c:a7:
06:ff:92:43:04:f1:83:94:b6:a5:68:66:fb:fe:61:14:8f:50:
c9:b2:ae:d2:79:2d:a7:3e:da:d9:6b:17:5e:b0:48:64:ae:e3:
68:30:04:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:08:33 2026 by rpki-client