Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
File: f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft (raw, json)
Hash identifier: kOGxQO6nWekRgpdkMQYmOSaLqreUbY6TbMJrT5Pidw4=
Subject key identifier: 3C:09:66:1C:3F:BD:5B:FE:D1:10:E2:D1:2B:F7:B0:88:61:4D:87:27
Authority key identifier: 7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46
Certificate issuer: /CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
Certificate serial: 019D3A53F12DB01F53FB9F807DC16E3EDBA9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
Manifest number: 07E0
Signing time: Sun 29 Mar 2026 16:01:12 +0000
Manifest this update: Sun 29 Mar 2026 16:01:12 +0000
Manifest next update: Mon 30 Mar 2026 16:01:12 +0000
Files and hashes: 1: f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl (hash: DviQj4q2KVt1lQXAXDcjmbSUX0bVHKlvgKpvLU/Z+3o=)
2: mRB5Hkvcj1hKYhRgNGxK5sq7CD0.asa (hash: OW2a5vSieuRwC1YjVzbLfoP6BZPPRx+bPmnYVgXy6P4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:53:f1:2d:b0:1f:53:fb:9f:80:7d:c1:6e:3e:db:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
Validity
Not Before: Mar 29 16:01:12 2026 GMT
Not After : Mar 30 16:01:12 2026 GMT
Subject: CN=3c09661c3fbd5bfed110e2d12bf7b088614d8727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:3b:2a:0c:af:27:d1:0b:48:5d:5a:24:c6:a7:
17:2f:98:5e:32:57:60:b2:96:0b:61:1c:ce:a3:80:
1f:5f:26:05:84:0a:02:a9:33:ab:35:e1:1c:1a:01:
78:31:ed:33:37:55:2c:0a:14:ee:00:4b:26:19:2b:
02:c4:e9:80:06:ec:a9:b9:7c:5f:5f:dc:61:0e:00:
bf:4c:32:39:05:37:34:de:a2:d8:8b:75:37:a8:3b:
f7:99:6a:2c:cf:c2:b0:f8:34:bd:14:2b:6f:10:85:
93:3e:2c:2e:aa:3d:cc:e6:37:3e:64:21:e5:d8:64:
8f:7c:51:23:bd:1e:33:06:f9:5f:ca:0a:06:52:93:
97:30:4d:78:a3:23:5d:59:09:90:7f:42:87:90:94:
11:da:f7:c3:8d:84:0a:1b:89:65:67:4a:a8:29:bd:
ad:74:29:cc:6c:df:6e:c8:6b:53:e1:63:b4:04:b3:
e2:50:4b:df:92:cd:ae:18:74:f7:5a:81:37:f9:04:
3c:06:31:9a:37:79:fd:06:f1:ab:bc:e4:13:05:2d:
99:0a:d1:1e:7b:4e:36:a7:8c:fd:29:30:bc:41:ff:
2f:f2:23:48:79:23:e0:1c:76:23:7a:f2:35:ed:58:
50:a7:98:d8:d0:ac:46:dc:ec:0e:b6:35:97:c7:a7:
4e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:09:66:1C:3F:BD:5B:FE:D1:10:E2:D1:2B:F7:B0:88:61:4D:87:27
X509v3 Authority Key Identifier:
keyid:7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:3b:39:94:7b:de:c7:a4:84:80:65:dc:9b:8d:3d:86:16:83:
8d:6a:24:b4:7d:29:36:01:0e:b4:e3:b7:21:97:59:34:41:bf:
af:7a:f2:84:63:b3:ad:66:82:59:5a:04:3d:43:d1:07:4f:83:
fd:be:f7:62:bb:b9:da:25:0c:36:e4:65:f5:08:31:38:2a:7b:
41:f5:f0:07:34:4b:5e:77:89:fb:62:46:f7:21:68:de:08:71:
d5:14:a3:ba:8a:fe:af:40:91:e4:89:c8:fb:15:46:8a:13:85:
d5:51:b0:66:56:93:40:00:0c:88:a1:34:0d:4b:0c:db:b3:76:
c0:3c:cd:b5:bc:2d:d9:85:0c:68:10:89:70:92:c3:6b:fb:db:
42:d8:03:c3:8e:02:96:e6:e8:89:b1:02:f7:b5:b0:7a:97:26:
4e:08:9d:5a:2c:47:29:8d:f8:2d:86:8d:89:2e:28:50:33:74:
22:8c:96:d6:45:e7:7f:e8:51:68:4a:60:5f:80:95:af:6d:fe:
df:58:e2:89:2c:d6:a1:b3:57:11:4b:ff:cf:08:ef:51:4f:68:
48:9c:4c:15:bc:60:b6:02:7f:fe:c4:ee:8f:40:6d:9f:86:a7:
13:1f:47:7d:ae:3b:28:02:6a:68:f5:68:14:2a:c5:07:c3:ea:
b7:ea:84:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:00:56 2026 by rpki-client