Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
File: Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft (raw, json)
Hash identifier: MlOtME4af0x6L5zAafp+0Gx7B878iCkNq0CXCyVGYoU=
Subject key identifier: 4F:19:4C:69:FD:52:92:30:BD:BA:F0:93:00:DF:18:0B:94:A9:25:B3
Authority key identifier: 46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
Certificate issuer: /CN=468ecba10e7599a030aa613088688a6c26d62d75
Certificate serial: 019D37C0A56C05A07EC9D191CBBFEFB483BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
Manifest number: 151F
Signing time: Sun 29 Mar 2026 04:01:05 +0000
Manifest this update: Sun 29 Mar 2026 04:01:05 +0000
Manifest next update: Mon 30 Mar 2026 04:01:05 +0000
Files and hashes: 1: Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl (hash: YAsj5XcMtABGblBInnsEPo+8CEf2CM7b0r+8GgaWFF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:a5:6c:05:a0:7e:c9:d1:91:cb:bf:ef:b4:83:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=468ecba10e7599a030aa613088688a6c26d62d75
Validity
Not Before: Mar 29 04:01:05 2026 GMT
Not After : Mar 30 04:01:05 2026 GMT
Subject: CN=4f194c69fd529230bdbaf09300df180b94a925b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:bf:37:52:76:00:5b:b1:7c:e2:97:44:d8:b2:
e0:ab:e9:75:24:8c:06:b6:dd:ce:f5:91:ce:5e:b9:
43:6f:9e:05:3a:ed:72:64:da:a6:e3:9d:a9:08:f1:
ae:8b:f9:73:56:4a:0a:7a:fe:66:59:00:c5:e9:32:
08:bf:ef:ee:93:9a:20:ec:53:c6:95:f3:7c:5f:f8:
87:33:a5:2e:bd:aa:bf:2d:38:d4:e5:fd:b4:98:77:
c4:f9:7e:44:6b:62:b2:28:b1:2f:ac:e2:e9:f8:29:
a1:69:11:60:45:82:1f:2f:63:d6:42:98:6f:2b:1a:
6a:02:9b:77:18:1b:6b:67:07:a6:49:6f:b5:67:a0:
eb:3d:36:4e:83:03:ab:c4:bc:fd:19:09:d6:9c:31:
d8:f4:4c:1f:95:c5:23:8f:33:ec:36:9e:2f:99:6a:
10:71:d9:cf:49:0a:53:ed:b0:74:fd:72:5e:f3:97:
a2:e1:df:e9:69:fe:73:3d:fd:bd:24:a9:e0:da:f6:
b2:d8:4a:86:41:06:4c:02:d8:71:0b:79:99:88:22:
ce:cc:ca:27:c0:de:24:be:66:5d:ed:1e:a1:e4:3b:
f1:ca:cd:eb:ab:05:55:c3:06:97:c8:fa:4d:ad:56:
49:e6:90:74:46:72:5e:cd:87:57:88:91:f1:97:f4:
0d:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:19:4C:69:FD:52:92:30:BD:BA:F0:93:00:DF:18:0B:94:A9:25:B3
X509v3 Authority Key Identifier:
keyid:46:8E:CB:A1:0E:75:99:A0:30:AA:61:30:88:68:8A:6C:26:D6:2D:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ro7LoQ51maAwqmEwiGiKbCbWLXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/f1ea50-4e05-4abd-8927-df7e0bd6f816/1/Ro7LoQ51maAwqmEwiGiKbCbWLXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:80:1f:e5:aa:de:fe:ea:59:de:41:0c:ca:be:5d:c0:12:18:
85:2b:cd:8e:60:da:97:20:62:1e:f8:9b:e7:77:58:9a:3c:8f:
2c:c6:d3:90:56:0f:f7:c9:d1:10:93:0b:b0:36:5b:1a:32:13:
88:7c:6c:93:27:fa:ec:86:46:6f:70:91:95:9f:96:bf:ae:72:
a4:e2:9d:cc:41:ff:08:2b:04:23:d0:90:18:54:3b:9d:d6:8e:
d4:bf:10:ae:2c:3d:ea:df:98:7e:05:ca:b6:8c:b6:ed:43:dd:
3d:86:98:65:52:7f:4e:25:f7:71:91:0d:a0:10:f5:d7:90:35:
b5:bf:b0:e8:05:f5:ed:6c:22:f8:64:d8:93:fe:f4:c5:70:3f:
73:d1:b3:c1:53:dc:91:af:90:3b:fa:9d:04:d1:22:9d:d4:69:
0c:c7:98:f2:02:ec:60:ff:93:11:7b:49:ee:17:a2:16:1a:6e:
82:37:56:6f:19:40:ee:6c:a3:ff:d6:b2:23:fe:c4:8b:20:f7:
2b:81:c0:3b:95:12:33:aa:cc:dc:84:f5:9c:15:3a:01:6b:62:
e9:e1:00:57:8b:17:3b:99:a3:27:0c:47:f4:72:df:bc:21:fd:
9e:8c:5e:5f:e7:29:88:9e:e7:df:cc:93:71:1a:df:d4:23:14:
3f:6b:cf:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:38 2026 by rpki-client