Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
File: d_u84sIID4H1oPmPJ5Ipgm3khQs.mft (raw, json)
Hash identifier: tuMokuqlkCQn1ZZ7x5bHU+E00Jpu7hVaZzLCNXkyrO8=
Subject key identifier: 16:F0:05:36:D8:6B:90:1D:47:CE:8B:72:44:C3:2E:76:F0:00:A0:31
Authority key identifier: 77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
Certificate issuer: /CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Certificate serial: 019D26283C53D39DD4016A2288A6B93F05A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
Manifest number: 0FAB
Signing time: Wed 25 Mar 2026 18:01:04 +0000
Manifest this update: Wed 25 Mar 2026 18:01:04 +0000
Manifest next update: Thu 26 Mar 2026 18:01:04 +0000
Files and hashes: 1: 3lFiJAi9xcyPhHbde0XIskVsgIs.roa (hash: qs21NuisUl0QxWCvF+rTCWm7FC1OO83XG3sDyW4a0mM=)
2: d_u84sIID4H1oPmPJ5Ipgm3khQs.crl (hash: xrzJNTN0xenBh/MbIXNkwe6RghP7C1vMfuOGOT/vf3E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:28:3c:53:d3:9d:d4:01:6a:22:88:a6:b9:3f:05:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77fbbce2c2080f81f5a0f98f279229826de4850b
Validity
Not Before: Mar 25 18:01:04 2026 GMT
Not After : Mar 26 18:01:04 2026 GMT
Subject: CN=16f00536d86b901d47ce8b7244c32e76f000a031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1e:10:05:27:7c:b7:9d:04:55:22:d7:3f:fb:
6b:88:b6:63:8d:70:a4:ce:40:2a:8b:3b:db:a7:9d:
d9:e3:6e:7d:34:62:77:ba:df:c3:c9:87:fc:42:56:
17:d3:e7:4c:8d:47:27:bd:01:92:c0:93:e8:9d:1a:
94:8b:12:a4:5a:2e:5e:2b:2c:02:97:01:0f:91:f2:
58:c8:b7:19:be:fc:b8:72:f6:71:f7:fd:9e:f6:27:
93:6c:e8:11:b5:d7:04:e3:59:15:a0:68:ef:8f:15:
1f:e5:ef:af:f5:3f:04:b6:42:81:d3:07:08:b3:a0:
d1:88:26:3a:91:d4:8c:b0:44:47:0c:8d:b6:63:f7:
44:b5:a7:f9:d1:15:ee:f1:3a:d7:88:36:14:3a:58:
b3:21:d2:c6:df:a3:b6:09:da:66:be:24:05:61:a4:
dd:b2:1e:ae:39:12:a7:95:9f:cb:29:fb:7f:0d:8d:
b4:61:b9:1d:d4:1d:04:1f:19:e0:c3:cc:c4:a9:7f:
c2:24:7d:35:26:79:e4:68:61:9d:42:c2:66:78:ec:
74:c3:dc:88:b5:29:91:0e:63:9c:4a:66:49:e9:88:
d1:45:b2:54:85:e7:db:55:fe:03:37:e4:73:5c:2d:
c6:25:52:c9:5f:d8:8f:0a:35:95:07:55:01:18:38:
be:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:F0:05:36:D8:6B:90:1D:47:CE:8B:72:44:C3:2E:76:F0:00:A0:31
X509v3 Authority Key Identifier:
keyid:77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:07:46:bd:6d:77:11:ad:a2:7c:63:91:b5:70:51:8b:18:74:
d7:18:f5:60:34:ee:d6:a0:f8:ef:ea:ff:7a:e1:60:be:74:2c:
bb:b3:26:dc:48:42:28:db:d7:ce:85:80:d5:36:05:7e:63:89:
74:ee:f0:87:88:9d:07:e1:03:c2:1e:ad:87:64:5d:a1:54:1e:
67:38:b6:77:57:0b:92:20:52:0f:b8:5c:d4:56:a9:f8:50:81:
73:49:ae:0a:d0:e9:b8:48:4d:e3:2d:29:23:08:a4:55:44:30:
bc:ed:34:c0:61:6b:e1:8b:e7:de:52:a2:a0:bf:56:2c:43:23:
45:cc:9e:b8:12:30:b1:e0:78:37:c8:a2:81:1c:be:6b:36:cc:
80:c9:e8:3d:10:7b:23:b3:75:0c:2d:64:45:35:c7:db:b2:32:
b1:68:91:02:2e:1f:39:1b:11:38:ae:75:6d:74:f5:54:62:e2:
a1:99:c7:35:00:7b:19:e2:8c:cf:4d:ee:3e:91:82:f3:bd:e8:
6e:1b:61:25:e3:8d:f3:f6:1e:ad:35:f0:5c:fb:4e:53:47:1b:
34:46:26:06:b1:5c:90:ad:35:d4:42:fb:c7:5c:6b:a1:f4:68:
3e:22:94:9f:9e:df:9e:23:72:ca:c1:ea:f8:23:d2:6f:6d:99:
ad:cc:5a:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:06:20 2026 by rpki-client