Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
File: dK6PGUm6f0vCM-bCF6hBjKThEys.mft (raw, json)
Hash identifier: KjpOqsC3tgdNxx+McYZ3drPskShHlCkGclS04mqWw6g=
Subject key identifier: 2B:6D:07:A9:A3:6B:17:E2:10:86:98:84:6D:78:87:52:51:07:FC:35
Authority key identifier: 74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B
Certificate issuer: /CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b
Certificate serial: 019D3A1CAA48BF7280FCB5101E8E9EF14F5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
Manifest number: 01BB
Signing time: Sun 29 Mar 2026 15:00:50 +0000
Manifest this update: Sun 29 Mar 2026 15:00:50 +0000
Manifest next update: Mon 30 Mar 2026 15:00:50 +0000
Files and hashes: 1: 8EOlbJXLvuv7BSeNnd2ICGJWLZo.roa (hash: CsWLwhPzZNOdijrEAjbyM64wLJ4YacynY1WeU/f0DKI=)
2: dK6PGUm6f0vCM-bCF6hBjKThEys.crl (hash: 8xhKdKKTlkRMgNsFb4c8O7exS9Nm0GjQ0F59OjAXPN8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:aa:48:bf:72:80:fc:b5:10:1e:8e:9e:f1:4f:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae8f1949ba7f4bc233e6c217a8418ca4e1132b
Validity
Not Before: Mar 29 15:00:50 2026 GMT
Not After : Mar 30 15:00:50 2026 GMT
Subject: CN=2b6d07a9a36b17e2108698846d7887525107fc35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ff:ff:74:1c:c8:0c:a8:4d:65:86:55:be:65:
c9:6f:c6:d7:71:5c:af:91:41:be:8e:ff:6e:6b:d6:
0b:b7:a0:c2:c9:90:fd:16:66:85:f1:15:bc:0f:12:
c3:3a:bf:74:f7:95:da:52:92:00:a7:6d:00:16:f2:
22:58:65:34:16:8e:cf:a9:4c:1d:65:17:4b:2e:8a:
b4:5c:b9:79:4e:da:41:34:3f:e8:18:43:ff:fb:85:
ce:e9:53:9f:35:be:5e:57:f2:72:f2:ff:30:38:23:
09:52:b5:a8:79:f1:5c:85:27:15:e4:db:7b:f9:4e:
57:6c:0f:fe:01:17:56:c5:15:d6:c1:e2:95:07:a7:
4a:33:8e:c7:06:01:16:98:ad:94:a0:b1:61:55:6c:
ae:6a:f9:85:3a:77:b6:b7:de:f0:8e:b6:fc:e2:17:
01:4d:60:a3:a8:30:ba:56:0a:34:5b:00:c1:d4:b0:
78:f9:a6:21:ce:dd:00:8b:34:00:f6:c9:05:de:3e:
4e:1b:b8:50:ae:8d:97:df:75:ac:d2:22:ef:95:a2:
89:7d:7e:f8:16:ee:ae:e5:8a:45:e8:d6:77:71:71:
ef:a1:c1:42:f6:2a:b8:ff:16:29:fa:0f:b6:e9:c5:
76:17:0e:bc:78:6f:7d:fe:44:21:bf:2b:8b:f2:00:
13:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:6D:07:A9:A3:6B:17:E2:10:86:98:84:6D:78:87:52:51:07:FC:35
X509v3 Authority Key Identifier:
keyid:74:AE:8F:19:49:BA:7F:4B:C2:33:E6:C2:17:A8:41:8C:A4:E1:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6PGUm6f0vCM-bCF6hBjKThEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/8507be-e8d4-45e2-9ea9-1514fae15107/1/dK6PGUm6f0vCM-bCF6hBjKThEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:f1:22:25:d9:e4:c3:cf:ad:65:da:79:37:1d:7a:b6:de:03:
78:21:dc:f7:00:8e:9d:02:46:14:96:19:aa:18:a5:9a:9f:c5:
5f:4f:60:f2:fb:7f:44:d8:1b:31:a3:74:12:f6:f2:c9:d8:bd:
1f:bf:90:aa:0e:5c:95:5c:67:d6:fd:a3:f3:68:56:cb:a8:d9:
3a:dc:f6:e2:28:e3:45:0f:13:55:52:84:d8:bd:88:d9:6b:85:
6a:84:f8:2a:2b:6c:60:c9:ad:4e:58:6a:f4:03:37:b3:8a:1a:
a7:2b:33:51:c3:7a:46:cf:f1:91:11:9d:0c:2a:14:a2:9d:34:
13:c8:45:37:ca:cf:5c:7c:d9:e6:40:96:9a:2e:1d:49:01:03:
44:e3:ca:77:c9:67:91:cf:2c:68:ba:fc:53:23:20:4b:24:1b:
8c:f5:9d:ad:cc:f5:5f:d6:06:8f:a7:e6:25:98:75:e4:89:85:
44:66:c3:42:cc:22:81:cd:ee:59:f1:d5:98:28:b6:ce:d1:16:
29:ce:10:77:a9:16:4f:e9:73:7d:b2:8b:0a:7f:73:9b:6a:d8:
9c:98:26:f6:a5:80:69:ee:01:7a:55:32:a8:a8:19:79:14:7f:
e6:db:69:0d:8a:4a:ed:e2:fa:df:b9:fd:cc:8a:3b:06:9f:79:
bc:b6:77:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:11:55 2026 by rpki-client