Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
File: MFxE6MlhoUUNCqshLw3scX0d77Y.mft (raw, json)
Hash identifier: i+qAC9ZhXLWvEEPPUKEzJT2azLSjLLhQ0Cw/HFs2Ogw=
Subject key identifier: 54:B8:52:0D:AF:72:21:41:13:31:D2:B3:80:6D:15:45:2B:9F:16:F8
Authority key identifier: 30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
Certificate issuer: /CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Certificate serial: 019D389BE144A2445DD639D63CD60BDDA2D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 08:00:32 +0000
Manifest this update: Sun 29 Mar 2026 08:00:32 +0000
Manifest next update: Mon 30 Mar 2026 08:00:32 +0000
Files and hashes: 1: 4s2LfJgezExAwyLPh90eBZdMtsA.roa (hash: QROHTNbuhK/OLqAPPL7ZK974ElG4KehFHzzkBDXusl4=)
2: MFxE6MlhoUUNCqshLw3scX0d77Y.crl (hash: jtRt3TKonRm+FcSuG27gVZMYx7SiBf+ulcwOTFUSug4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:e1:44:a2:44:5d:d6:39:d6:3c:d6:0b:dd:a2:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=305c44e8c961a1450d0aab212f0dec717d1defb6
Validity
Not Before: Mar 29 08:00:32 2026 GMT
Not After : Mar 30 08:00:32 2026 GMT
Subject: CN=54b8520daf7221411331d2b3806d15452b9f16f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:6b:01:97:0f:ce:3e:78:6b:79:f8:3e:1e:af:
b3:2d:ec:60:d8:0f:a3:cb:f5:6f:2c:52:21:af:09:
07:1c:ef:cf:0d:b6:74:50:82:4e:d1:d4:e3:d2:a0:
78:c8:a9:ad:1e:cd:81:8f:31:d7:a1:9b:ca:22:19:
cd:7b:e2:53:7a:17:5c:fb:eb:00:34:33:67:5e:62:
92:d3:2e:94:f5:e0:e3:43:5b:f2:3c:f3:98:18:a1:
e0:a4:2c:0c:0f:3e:69:0e:f0:54:fe:08:d8:90:2a:
c8:0a:93:0c:97:5a:80:ee:39:46:c1:0f:f8:33:a4:
06:ba:81:b8:c3:08:60:15:07:d6:fb:19:1e:a9:62:
8a:43:d1:68:8f:0b:38:3a:5c:b3:de:ae:e0:8a:42:
b7:03:13:3c:e9:2d:c2:75:5e:df:75:0b:6c:b8:91:
11:65:c0:83:54:35:df:94:de:1b:19:b2:e3:4a:9c:
0d:57:cb:44:9f:a0:f6:7d:eb:7a:a6:aa:11:20:81:
3f:4f:ff:de:60:92:7f:6e:1d:7a:44:79:0e:6c:14:
71:ee:40:a4:3f:e6:0a:1e:f7:90:58:21:05:ac:f0:
89:fc:ef:07:b2:00:1a:cc:41:c3:03:9a:2c:f1:9d:
40:3b:f5:b5:01:09:a1:47:a6:65:76:38:cd:77:e4:
54:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:B8:52:0D:AF:72:21:41:13:31:D2:B3:80:6D:15:45:2B:9F:16:F8
X509v3 Authority Key Identifier:
keyid:30:5C:44:E8:C9:61:A1:45:0D:0A:AB:21:2F:0D:EC:71:7D:1D:EF:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MFxE6MlhoUUNCqshLw3scX0d77Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/2820d1-fd20-4889-834f-d527ce0d9930/1/MFxE6MlhoUUNCqshLw3scX0d77Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:13:00:14:87:d2:f3:1e:18:8d:be:de:e6:e4:87:a7:1e:a3:
6a:49:8f:dc:51:97:15:4d:05:45:90:d7:bf:95:cd:56:3d:42:
71:4c:ff:f7:6c:01:fd:dd:f0:78:66:7b:70:e9:14:21:74:97:
7b:98:08:48:47:6c:d8:08:7e:d4:e7:22:fc:a6:0f:88:07:66:
db:15:8c:19:84:93:cd:6d:6f:3f:4d:64:9f:45:f1:5b:8a:84:
1e:fb:e2:b3:67:1e:3c:c7:d1:7b:2a:fd:db:ef:14:12:38:9a:
2d:f2:a5:e2:2a:c1:c3:01:04:3e:5e:a6:00:09:9c:6e:35:5e:
37:27:39:c0:76:8a:ac:67:fa:b7:3e:1a:fe:ec:0d:47:97:93:
d0:24:4d:96:47:84:23:cb:e0:61:f5:ed:fd:b0:78:8d:2b:af:
a6:76:16:af:e9:b5:1e:c3:8d:c8:b0:19:32:f3:1d:8d:0a:fd:
45:d6:b2:61:d7:7f:6e:df:ae:1f:d1:93:4f:44:92:df:30:91:
7b:7d:11:aa:59:79:94:63:47:e0:09:d7:de:ed:7a:d8:05:3f:
02:07:cf:fd:c5:12:e6:77:e1:29:41:3c:68:88:74:b7:e1:90:
35:6a:58:8a:04:48:fa:c7:10:ab:a5:26:e9:94:54:5c:be:8d:
22:07:ac:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:28 2026 by rpki-client