Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
File: rONjRGSGG9S_jFvH48m_09JGpN0.mft (raw, json)
Hash identifier: KzKEW41AOfgsuuZAuBth5B2CYJJzzzHnnGzVbY+Koq4=
Subject key identifier: 6C:17:CE:97:A0:DF:E2:AC:6F:22:40:E2:89:9E:06:65:D3:91:18:CD
Authority key identifier: AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
Certificate issuer: /CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Certificate serial: 019CE5C90418FFACE8DCEC867732AAA192EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
Manifest number: 1865
Signing time: Fri 13 Mar 2026 06:01:22 +0000
Manifest this update: Fri 13 Mar 2026 06:01:22 +0000
Manifest next update: Sat 14 Mar 2026 06:01:22 +0000
Files and hashes: 1: PtYo6MwEWy1vpndhzACUN02erEo.roa (hash: 3/Pp/u1BR3pOxJGz3l7tc76JM7PepsEG/RPZ3ABSNvU=)
2: rONjRGSGG9S_jFvH48m_09JGpN0.crl (hash: mXzxopMShHwBcTjBG3lg0GC4Izgdm8KZXcdKwfHI6E8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:c9:04:18:ff:ac:e8:dc:ec:86:77:32:aa:a1:92:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ace3634464861bd4bf8c5bc7e3c9bfd3d246a4dd
Validity
Not Before: Mar 13 06:01:22 2026 GMT
Not After : Mar 14 06:01:22 2026 GMT
Subject: CN=6c17ce97a0dfe2ac6f2240e2899e0665d39118cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2e:29:e3:53:66:b0:e9:02:58:ff:7d:8a:54:
ba:7e:15:2c:14:21:7a:70:89:90:2f:cb:41:7b:84:
3c:5f:7a:a5:4e:59:29:67:d1:a1:6d:08:20:b0:c6:
4a:87:63:5c:d4:19:c3:ed:96:47:17:e2:20:25:ad:
db:3b:73:0b:f2:ab:b8:b9:96:8b:fa:07:cf:48:59:
af:24:46:dd:64:d0:2a:c3:c6:2f:70:95:e7:0b:ef:
f7:65:8c:8c:a3:6d:74:9c:41:0e:e2:ce:47:c0:c8:
c4:70:d3:5e:7b:4a:a9:38:84:02:c6:9e:c3:cb:99:
09:7b:c0:9b:ab:58:28:6e:1f:c8:50:dd:57:e0:84:
1e:f2:e3:61:66:69:db:e7:82:e6:48:87:3d:92:59:
0a:65:38:46:46:9b:f6:38:2d:2c:e0:8c:f2:54:f2:
1c:62:49:70:cd:fc:02:48:7f:32:5b:88:9e:21:15:
94:64:04:45:32:a0:4a:43:23:12:4a:e0:fc:2f:1a:
94:56:8b:da:cc:a3:bd:42:2f:17:fa:a9:08:68:36:
81:79:6a:24:24:fe:78:69:7e:e0:6f:b9:c9:c9:3f:
00:3f:05:68:1f:dd:cb:5f:e9:97:88:4d:43:79:67:
c1:fe:d3:67:fc:c9:20:4c:a6:80:5e:bf:00:c4:df:
1a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:17:CE:97:A0:DF:E2:AC:6F:22:40:E2:89:9E:06:65:D3:91:18:CD
X509v3 Authority Key Identifier:
keyid:AC:E3:63:44:64:86:1B:D4:BF:8C:5B:C7:E3:C9:BF:D3:D2:46:A4:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rONjRGSGG9S_jFvH48m_09JGpN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/b0ef59-1842-4ca3-9865-067cc4426c28/1/rONjRGSGG9S_jFvH48m_09JGpN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:a3:ac:0f:7b:16:a7:12:f9:7c:8b:31:0d:d6:2b:25:0d:38:
70:14:4c:46:97:e7:99:8f:8e:c9:aa:7a:8c:cd:14:fe:98:40:
4c:78:22:f5:01:27:ca:00:7d:0f:6e:3f:98:72:3d:a1:6c:1e:
1f:37:bb:f2:c6:02:fd:12:dc:a7:95:dd:2c:e6:71:d8:28:bb:
11:70:d1:c1:45:d5:2c:95:1b:e8:3f:e3:4c:f1:e2:fa:e5:b3:
7e:fc:21:fe:c6:7a:1d:bd:10:68:05:b4:1f:c4:cd:7e:f9:e6:
d3:43:a8:26:f6:af:ea:53:dd:32:13:8c:07:27:3c:5a:74:5e:
c2:6e:c9:6b:44:dc:cf:22:b0:7e:5a:8f:77:5f:30:72:09:ea:
d4:68:6a:36:f0:49:af:0d:ba:19:bf:8c:7f:7b:73:d9:5b:08:
33:79:61:34:74:d2:48:7a:dd:cb:9c:23:d2:70:e5:76:10:25:
5e:4d:df:0e:55:b8:06:13:6f:30:87:a1:1d:b3:99:b7:79:86:
fa:8c:ec:c8:4a:b1:a5:82:71:48:94:e2:44:ad:27:1f:5b:06:
bf:d5:cf:85:7a:c1:b7:37:7d:dd:fc:e2:6a:7e:38:6d:fa:2e:
04:74:2b:fe:0d:0f:65:8b:f3:45:33:46:5c:5a:23:27:20:48:
61:9c:f1:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 09:20:23 2026 by rpki-client