Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
File: md6y4fhaF9okDPyBbZcsheQR5iQ.mft (raw, json)
Hash identifier: VgJJ3NVp7tsz1S9iO8b+CaC928LQj2p3/TQQcC1vFiM=
Subject key identifier: 4F:7E:ED:5B:8F:B1:77:4C:D5:6D:BA:E5:90:28:19:B9:6C:F1:44:3A
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 019D39098BD34DC85940C5DA35BB6C822509
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 10:00:20 +0000
Manifest this update: Sun 29 Mar 2026 10:00:20 +0000
Manifest next update: Mon 30 Mar 2026 10:00:20 +0000
Files and hashes: 1: j5iTBfQexadasqTPZf3BdqF-LoM.roa (hash: cKixD027h0pGrgVj07zhaZHgaHhvJuIsf5swfvNOu00=)
2: md6y4fhaF9okDPyBbZcsheQR5iQ.crl (hash: NeejWSH4RnTSzx4DMp8yeZ14Ix4BNa+sJScCrij4ECs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:8b:d3:4d:c8:59:40:c5:da:35:bb:6c:82:25:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: Mar 29 10:00:20 2026 GMT
Not After : Mar 30 10:00:20 2026 GMT
Subject: CN=4f7eed5b8fb1774cd56dbae5902819b96cf1443a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:71:43:36:4f:9a:89:5a:03:99:a6:8d:a1:85:
b4:b1:2d:5a:8d:76:cf:e5:4f:38:f1:ce:83:c3:51:
7b:b3:cd:82:a0:e7:2e:7a:d9:22:26:9e:1c:fe:97:
6a:a5:e6:fd:5b:ca:b4:4e:76:be:3f:6d:c0:62:db:
e3:f0:f2:44:9e:e2:2d:42:15:0c:c9:8e:4b:97:f4:
b1:92:93:75:74:e0:3c:13:3e:1a:0c:5d:4f:23:b8:
25:80:b2:cc:68:5d:f1:a3:6d:09:0b:ac:50:f6:22:
9e:02:95:42:1c:c8:ad:38:58:04:c0:bc:d4:44:36:
76:9c:5e:31:21:2f:7b:e9:de:a1:d1:c9:dc:0a:80:
1a:84:69:c9:80:17:e8:5f:d6:bd:3d:7d:ea:0e:1c:
66:77:8f:56:41:28:cf:d9:35:b0:3a:b6:db:ec:18:
28:4f:1c:a2:0d:23:7d:27:10:4b:f6:68:45:6e:74:
03:9e:c5:ee:3f:cf:8b:07:58:1f:6c:e9:ef:0b:7f:
3f:97:f2:61:ad:2f:2a:aa:92:fc:43:8a:70:35:f2:
c3:5d:79:e7:2d:db:6a:96:2b:39:71:04:54:22:98:
93:18:c0:3e:a5:63:d6:d2:9a:65:76:72:13:a9:3d:
97:7f:40:7d:b5:b8:06:66:9d:00:90:ba:fb:b4:05:
a6:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:7E:ED:5B:8F:B1:77:4C:D5:6D:BA:E5:90:28:19:B9:6C:F1:44:3A
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:7e:f7:4b:ec:20:09:6d:67:53:9f:46:39:3e:56:b8:f0:fb:
41:b0:ad:4c:2b:59:b8:c7:55:d0:c9:9c:87:6a:0d:4d:1c:f1:
6e:3f:8e:00:5e:5a:a9:ef:7b:da:cc:c7:2e:1d:b5:2f:4e:9d:
2b:0b:cf:8d:92:a1:82:18:16:53:56:c9:ee:e0:76:96:e6:67:
09:fe:e2:b0:0f:27:a3:9a:3e:fc:c1:9c:56:c1:62:da:31:6c:
a6:07:4d:f3:9e:70:4b:bf:b5:cb:75:23:b2:16:e2:e2:d8:37:
fd:7c:67:6f:37:62:31:08:8e:f3:bf:b9:fe:7b:f1:10:6e:26:
a6:f9:b6:dc:b9:cc:ed:c6:e8:ad:70:5e:f5:63:53:76:0e:4c:
d0:c3:56:94:72:29:07:8c:82:8c:a4:5e:e3:ce:f0:09:e7:fc:
04:bd:6e:28:eb:88:69:ec:ac:e0:7f:f6:be:5f:af:4d:fb:2f:
6b:db:b9:3d:88:4e:5d:82:ad:8d:d7:c1:63:66:c3:f2:78:50:
26:dd:9f:d0:1e:a4:73:33:1d:7f:f1:24:df:8b:dd:45:0c:db:
e2:f2:26:48:71:e8:a1:7f:b9:e8:23:31:ce:c8:6b:54:eb:c3:
9a:44:85:f8:7c:9f:ce:c8:04:12:3e:ce:05:12:dc:0d:02:3a:
53:98:70:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:43:54 2026 by rpki-client