Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
File: toF3Ytn8jxGwHPUjS25DHPvsG80.mft (raw, json)
Hash identifier: 4C/Nbb8glWmtb/+55vzQSBjnA8hx/wv80xwYOwC6Ag0=
Subject key identifier: 89:81:F9:D3:65:4F:B7:44:A4:C0:9A:55:40:33:F3:CA:4E:E0:C4:03
Authority key identifier: B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
Certificate issuer: /CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Certificate serial: 019D284D920BB4A741F111DFF266EAAF0517
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
Manifest number: 0BE7
Signing time: Thu 26 Mar 2026 04:01:05 +0000
Manifest this update: Thu 26 Mar 2026 04:01:05 +0000
Manifest next update: Fri 27 Mar 2026 04:01:05 +0000
Files and hashes: 1: TCoBlMxDiguWCq2X4av9S4gQXEQ.roa (hash: 6msXgBjxx6Yi7xW5PUuzbdt4jO41s2SyXCfLVxtofm0=)
2: toF3Ytn8jxGwHPUjS25DHPvsG80.crl (hash: NJSkNU07vw9qPQSU4hsFKtPbQntNbt+wMmXQl2ncDkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:92:0b:b4:a7:41:f1:11:df:f2:66:ea:af:05:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Validity
Not Before: Mar 26 04:01:05 2026 GMT
Not After : Mar 27 04:01:05 2026 GMT
Subject: CN=8981f9d3654fb744a4c09a554033f3ca4ee0c403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:25:f1:c0:9f:c8:fa:13:9b:7e:c2:04:52:7e:
54:a5:55:82:87:6f:8e:bf:f4:26:22:2c:cd:99:18:
4e:06:fc:77:6d:d0:c7:71:e1:21:25:39:32:e7:84:
04:a0:18:bc:85:06:bc:9a:6a:0a:fd:bc:61:7e:f7:
9f:f5:08:e1:4d:7f:d1:12:64:17:46:3c:4f:6b:ae:
6e:23:f5:8e:e8:e6:2a:1f:a8:ce:22:84:57:50:43:
95:ca:31:53:f3:96:2b:00:59:e8:e6:50:7e:74:12:
e9:a2:52:db:77:23:da:7a:c8:78:5e:9a:59:88:89:
e7:f9:9a:0a:ff:9b:89:c9:ea:08:cf:17:23:00:ed:
d6:fb:03:8e:cc:64:84:05:29:b8:78:85:c8:fe:8a:
7f:5a:30:f7:97:4e:4f:d2:3f:bf:49:08:ff:39:4f:
29:4a:9f:50:f5:4b:0c:0e:c5:ae:95:af:74:f2:35:
65:48:c9:5b:af:28:62:83:73:02:87:43:37:b6:08:
d4:a4:c8:a9:8a:7d:6d:7e:6a:6c:f9:5f:ba:0d:2a:
58:73:b5:07:0b:5c:e0:20:1f:56:0a:5e:ec:62:90:
54:ef:d6:8c:6c:41:7f:a6:2d:8e:5e:b1:5e:1a:97:
97:7c:ae:66:56:02:42:ac:44:24:f8:6e:45:d3:a3:
5f:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:81:F9:D3:65:4F:B7:44:A4:C0:9A:55:40:33:F3:CA:4E:E0:C4:03
X509v3 Authority Key Identifier:
keyid:B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:d1:48:d5:d5:eb:5d:b3:be:b0:48:d4:08:76:37:5d:cb:ab:
30:66:9d:37:ed:3c:12:17:13:4c:66:83:b5:ae:4e:3e:7f:2a:
db:bf:8c:b2:5c:0b:27:88:6b:6c:6d:6d:2e:d1:0a:e1:e0:1b:
09:33:6a:84:04:1d:12:56:8c:7d:65:13:e7:9b:7f:d0:0f:79:
36:ae:71:63:84:27:7b:ba:70:0f:eb:1e:c6:d6:39:ab:1f:4b:
d4:0c:a0:30:78:85:10:9b:4d:53:b8:57:b5:17:d4:25:36:e5:
01:75:0c:50:84:b6:9c:66:2e:2b:3d:22:97:84:85:32:38:bc:
f5:02:fe:0f:47:08:dc:cc:fd:16:9b:c0:18:aa:c8:67:13:05:
52:cf:cf:e5:d4:34:9f:95:98:83:d2:80:c6:0d:ee:fc:a2:ce:
3b:8c:4c:c1:df:44:1a:3e:82:61:44:83:14:ea:35:4c:9f:66:
34:0a:2b:fc:6f:3b:ec:8e:df:a7:f8:05:12:12:f3:4e:b2:70:
ef:03:e4:ed:fc:9e:e2:c0:bc:db:dd:ce:98:f0:9d:91:d6:f1:
6e:2d:48:bd:0b:aa:1f:10:2a:68:bc:42:50:07:e1:b3:a8:c0:
4a:47:7d:ae:59:da:f2:bb:c5:85:60:55:4a:99:b9:b8:12:c6:
2d:ec:0e:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:02:09 2026 by rpki-client