Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft
File: m0FaAwWfspWkuWyc5erbWP6Y-oY.mft (raw, json)
Hash identifier: kX7sLUm93YKPzd4wZ6RduWcucwXgaJ4abAfgP77R4N8=
Subject key identifier: EB:67:A9:94:AD:16:DA:82:A8:EF:AE:A5:EA:1D:AE:52:B1:71:35:A6
Authority key identifier: 9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86
Certificate issuer: /CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86
Certificate serial: 019D25BA22A86974BB2BB7DD219A021522DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft
Manifest number: 0AC9
Signing time: Wed 25 Mar 2026 16:00:48 +0000
Manifest this update: Wed 25 Mar 2026 16:00:48 +0000
Manifest next update: Thu 26 Mar 2026 16:00:48 +0000
Files and hashes: 1: PyWCYQsc-RXqOD6ZcPJVeLZsTb0.roa (hash: So755h/YppAq4z9zJnxXyj3ozNgia1MYJ3MvAVJ9wDU=)
2: m0FaAwWfspWkuWyc5erbWP6Y-oY.crl (hash: SG7tIEgnasXGFFgXgVeDRfeoiNVDaIhMChaVrbbyl6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft
rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:22:a8:69:74:bb:2b:b7:dd:21:9a:02:15:22:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b415a03059fb295a4b96c9ce5eadb58fe98fa86
Validity
Not Before: Mar 25 16:00:48 2026 GMT
Not After : Mar 26 16:00:48 2026 GMT
Subject: CN=eb67a994ad16da82a8efaea5ea1dae52b17135a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3a:33:bb:d5:6b:38:f5:32:f6:18:f9:16:d5:
f6:6f:26:2e:5e:73:5c:26:b2:8d:99:47:a9:bc:3e:
89:02:da:b0:d8:f8:ac:98:6f:4e:69:b7:b0:6c:95:
1e:61:f7:eb:b9:92:50:5c:0e:2b:54:13:b8:53:5d:
ca:14:c5:a8:bb:cc:26:de:4a:25:44:a1:a7:46:97:
c1:47:d9:1c:fe:a9:80:ce:40:c9:15:d4:f0:2f:fe:
da:8c:d7:31:30:ad:be:f1:46:5b:a5:8e:28:f3:a9:
a4:3f:4e:d5:f6:81:73:62:00:62:66:47:d7:27:27:
f1:3a:47:f8:53:bd:de:c7:d3:1d:df:12:ea:6b:45:
d8:5c:fd:22:2b:ad:5c:45:ed:3f:a8:79:9c:58:d3:
b3:fb:79:d8:01:24:2a:e3:dd:df:91:65:77:98:b4:
0e:d6:71:d0:da:f2:f0:0a:60:b6:f4:70:35:3b:12:
95:1f:b0:ac:87:04:dc:e7:cc:c0:f7:d4:cb:2b:37:
08:7d:7a:a9:38:70:8a:be:e2:06:9c:20:f5:0c:84:
74:86:9e:82:14:2c:a4:27:10:7f:8a:9f:99:80:2f:
56:e2:92:94:91:ae:9a:da:af:5b:33:da:28:16:a8:
df:16:71:bf:8b:89:0c:34:78:23:05:46:49:49:d6:
63:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:67:A9:94:AD:16:DA:82:A8:EF:AE:A5:EA:1D:AE:52:B1:71:35:A6
X509v3 Authority Key Identifier:
keyid:9B:41:5A:03:05:9F:B2:95:A4:B9:6C:9C:E5:EA:DB:58:FE:98:FA:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m0FaAwWfspWkuWyc5erbWP6Y-oY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/85612a-de33-434b-8471-1801b544b9fe/1/m0FaAwWfspWkuWyc5erbWP6Y-oY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:19:7a:3c:b4:be:6d:b6:c3:36:17:d5:ee:ba:44:9b:32:d7:
c3:20:b1:59:cf:d4:73:94:f0:5a:60:bd:01:54:ac:c3:12:21:
35:36:6f:41:d7:2a:24:26:c1:6d:dd:80:30:1d:77:f1:01:a5:
13:37:ab:32:57:b3:94:9e:56:e9:3c:cc:b8:d4:87:3d:26:9a:
74:3d:ff:7d:05:1c:1e:59:6b:c2:4f:e2:af:a9:54:9f:b7:d5:
f5:52:80:40:b7:4b:9d:6f:a1:c7:2c:b1:b0:a8:b8:89:cd:7a:
41:d3:f8:2e:98:76:f5:1d:db:38:0b:5c:30:cf:a0:09:49:fd:
95:99:f6:e6:a5:f1:92:fd:48:8c:73:9c:3a:3d:d8:ea:1a:bd:
16:53:70:90:9d:c2:9b:7d:69:be:43:c5:09:a9:c3:b8:52:b5:
f6:fe:6a:6c:cd:f0:8c:7f:f9:51:9b:e7:05:44:d2:d0:77:d3:
63:9d:f9:f6:57:d8:01:21:06:78:bf:e8:fe:2a:59:25:00:e3:
7a:18:5f:ff:11:1d:bf:fe:47:1a:1c:8c:9e:df:63:ff:4e:20:
20:8c:45:8d:03:87:6a:13:30:b9:21:12:dc:d1:4f:3e:3c:95:
29:2a:7d:63:74:1c:e4:12:ca:6d:93:62:1a:3e:7b:57:ff:ce:
04:93:03:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:17:42 2026 by rpki-client