Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
File: MjFs1IgVYto785JbSRi24R12UUw.mft (raw, json)
Hash identifier: 6xpqIhS+AvVpoYWeK6BNf2z0MBpczexJFKZnXYItWFU=
Subject key identifier: E6:08:9C:B6:31:BA:E0:AF:8A:88:4B:14:E1:A4:41:F0:B8:76:4C:C8
Authority key identifier: 32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
Certificate issuer: /CN=32316cd4881562da3bf3925b4918b6e11d76514c
Certificate serial: 019D2884971754DA2EA95F010B09983EA70C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
Manifest number: 0FE3
Signing time: Thu 26 Mar 2026 05:01:11 +0000
Manifest this update: Thu 26 Mar 2026 05:01:11 +0000
Manifest next update: Fri 27 Mar 2026 05:01:11 +0000
Files and hashes: 1: 3xT874NnwQkkgc4z33baWzJf_xw.roa (hash: 0vrpkogPMBnepeiXnpaSIgsSChUa1yFutMzhwiTjs/0=)
2: MjFs1IgVYto785JbSRi24R12UUw.crl (hash: 3rFtvF397/41tqJ2RJkdG6Y2ynBOROzK/NophvS93K8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:97:17:54:da:2e:a9:5f:01:0b:09:98:3e:a7:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32316cd4881562da3bf3925b4918b6e11d76514c
Validity
Not Before: Mar 26 05:01:11 2026 GMT
Not After : Mar 27 05:01:11 2026 GMT
Subject: CN=e6089cb631bae0af8a884b14e1a441f0b8764cc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0f:ce:fa:e9:86:f7:41:90:36:67:9c:5c:38:
55:22:3d:a3:ab:82:4c:7e:af:3f:e8:29:5b:6b:7e:
35:55:32:84:68:23:0b:75:57:80:67:80:f4:5a:09:
e2:6b:59:d7:7a:5c:5f:b7:46:0c:c0:64:cb:45:2c:
59:16:d3:88:5c:06:67:00:a1:c5:82:ee:99:1b:3d:
b2:49:fb:9f:4c:70:9c:aa:04:cc:7f:0b:45:97:48:
43:98:9e:80:13:a7:3a:bc:a7:d7:11:e3:0d:34:b1:
13:69:6c:73:71:27:5f:e7:36:ba:29:ce:b7:c8:53:
61:9d:b6:7f:08:1c:b9:52:b0:a3:43:2e:6c:d7:19:
f7:75:22:b9:c7:36:3a:d3:d8:7d:d1:8d:56:ce:9f:
78:ef:77:8f:97:8d:79:06:6c:cc:36:94:ea:c1:e8:
98:02:f8:bf:ba:e2:e7:86:a4:72:c9:db:37:c1:59:
49:e2:3f:9d:26:8d:31:d0:c3:8f:07:1d:37:44:47:
8b:03:62:4f:bd:e8:7d:c1:b9:ed:98:ef:06:61:89:
aa:a1:c8:1e:5f:91:d0:f4:05:6f:6a:9c:5a:a3:32:
74:87:39:5a:e8:dc:c6:5b:db:d5:95:13:0e:b3:41:
3d:a1:17:a8:be:cd:c9:c4:58:43:c6:fe:23:4a:22:
73:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:08:9C:B6:31:BA:E0:AF:8A:88:4B:14:E1:A4:41:F0:B8:76:4C:C8
X509v3 Authority Key Identifier:
keyid:32:31:6C:D4:88:15:62:DA:3B:F3:92:5B:49:18:B6:E1:1D:76:51:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MjFs1IgVYto785JbSRi24R12UUw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/f0358f-0d50-4704-85cf-262da883c8e2/1/MjFs1IgVYto785JbSRi24R12UUw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:b4:6f:10:18:de:59:8f:75:4e:68:17:7a:7f:01:19:6a:d1:
d5:00:71:9d:ab:a9:f4:7d:00:b0:bf:97:f1:5c:d6:b1:71:13:
5c:23:1b:db:ea:b9:09:f6:b5:c8:1b:cb:ef:99:ba:1f:10:18:
95:9c:c3:59:36:b6:50:ae:f7:89:12:c3:6c:72:69:e3:1f:c9:
32:a0:1c:b8:85:c6:5a:96:a1:97:7e:c4:63:90:65:74:c9:a5:
63:b5:da:c0:a0:c5:49:06:69:e4:83:e2:5d:a9:59:de:22:c4:
34:c6:e8:5b:6d:bf:df:aa:37:70:1a:45:cc:02:0f:8f:7c:b3:
c3:c6:cc:fc:bf:b5:2f:77:c4:53:db:36:93:1d:24:ab:74:2c:
59:0f:40:88:19:db:ec:39:02:1d:43:4d:98:8b:a2:50:77:c0:
f5:6a:f9:db:27:6e:07:d8:57:b3:4f:50:a3:98:cd:1d:b1:c7:
62:f8:68:54:32:b7:82:f9:72:15:62:33:44:de:34:e4:20:2d:
a9:60:ba:cb:b7:26:0d:4f:35:fb:be:40:df:a9:67:94:36:9b:
82:db:49:1a:d5:28:da:6c:07:04:12:57:17:54:44:de:db:87:
b6:da:63:c5:ef:5c:51:ec:2f:59:82:13:76:62:4a:77:96:75:
82:2b:ab:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:59:50 2026 by rpki-client