Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
File: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft (raw, json)
Hash identifier: sbcLiZ2UXMKZenMDL/dhMHeyGiXv/G0M6KiVIP5r+x0=
Subject key identifier: 44:41:88:AE:25:74:80:FD:97:80:03:74:A2:F5:90:7D:3A:1B:DF:9B
Authority key identifier: 77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
Certificate issuer: /CN=779fbaaac6541ab318529eb025613c6520e47646
Certificate serial: 019DD12CE95A656F8F7C10701666BB5D1FCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
Manifest number: 0791
Signing time: Mon 27 Apr 2026 23:01:14 +0000
Manifest this update: Mon 27 Apr 2026 23:01:14 +0000
Manifest next update: Tue 28 Apr 2026 23:01:14 +0000
Files and hashes: 1: 1ULsjrhU_Mgs_8Mvd-oE1b7ANaE.roa (hash: BPqaZcuEdD+lQrMI+iPU/GW6APEbwg38yW1mZjGwXr8=)
2: d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl (hash: yRQGmzEpoYq84B8tUr1q4XCX+NoqO79LCD7ZCRzMTts=)
3: pXo0ZUaV-y6EDCcUoSCUhqpPURU.roa (hash: EuVKLvC6yGpoLeqj+M0pu9788Rfc943eOWrQgVLBCHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 23:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d1:2c:e9:5a:65:6f:8f:7c:10:70:16:66:bb:5d:1f:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779fbaaac6541ab318529eb025613c6520e47646
Validity
Not Before: Apr 27 23:01:14 2026 GMT
Not After : Apr 28 23:01:14 2026 GMT
Subject: CN=444188ae257480fd97800374a2f5907d3a1bdf9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:eb:40:76:0c:c6:95:7e:bd:8d:3d:03:d2:99:
c7:3d:4b:53:6f:bc:d9:08:63:90:ab:49:53:88:7c:
f1:81:0d:61:f5:53:ef:2a:e2:23:11:04:07:75:02:
b6:5a:7c:fb:20:9f:9b:82:59:58:ff:25:34:b4:b5:
29:29:9f:c1:fa:9c:e5:84:5c:87:ed:1a:60:2a:7b:
93:c7:7f:e1:e1:19:1a:7d:aa:78:9b:6d:54:4c:c4:
17:3b:89:c8:53:ca:0c:82:96:0e:07:e5:36:c3:7a:
d0:a9:0b:4d:ca:be:2d:cc:16:d5:f3:99:89:36:b5:
bc:d3:fa:ec:63:75:b8:45:04:bf:4d:40:1f:c3:48:
f0:21:79:a6:4e:79:90:19:90:89:8e:0c:72:21:ae:
1f:32:32:99:b8:f6:6b:6e:ee:a2:23:b9:a1:4f:12:
c6:dc:82:86:06:58:67:e0:ac:c1:0d:ac:0f:f7:00:
fc:05:96:87:61:b6:27:42:ab:a9:e1:c2:e1:bb:50:
4e:26:7b:40:67:15:96:d0:0d:b8:23:c1:95:6a:64:
1d:98:1a:71:ad:55:58:97:71:9d:e6:ed:48:7d:6a:
eb:9c:16:2f:3f:3c:c7:a6:8f:c2:1b:d3:45:63:9c:
94:29:2d:e2:a4:bc:24:89:1d:c0:e0:84:1f:b1:48:
3d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:41:88:AE:25:74:80:FD:97:80:03:74:A2:F5:90:7D:3A:1B:DF:9B
X509v3 Authority Key Identifier:
keyid:77:9F:BA:AA:C6:54:1A:B3:18:52:9E:B0:25:61:3C:65:20:E4:76:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/983b47-47a9-4251-a129-20024918ee66/1/d5-6qsZUGrMYUp6wJWE8ZSDkdkY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:cb:7b:88:49:48:89:f9:73:b9:90:90:9d:9f:96:ea:ec:37:
31:b4:54:6a:be:39:b2:51:8a:06:e2:c2:dd:1a:44:b7:07:73:
0a:72:d5:bd:de:4f:96:3b:38:33:f4:22:51:41:1c:d1:83:73:
9b:05:63:3e:a4:23:84:bb:27:54:03:e7:ef:1a:d8:85:4d:81:
50:32:5b:ad:e5:8c:8a:3f:08:1c:6e:8b:bf:1b:91:22:9d:ae:
f7:a5:c5:a0:a5:bd:ff:66:8a:a1:bb:ff:7f:3f:c6:0e:7c:72:
b7:56:d3:52:45:a2:f6:f7:e4:a5:a9:15:0c:1a:6c:20:db:97:
ab:6d:28:d0:4f:8e:2e:69:a8:9f:7c:3c:0e:f3:ad:08:1c:4e:
53:a8:f0:64:4d:f8:75:53:ba:d9:39:3e:9b:47:1e:e8:b5:d1:
94:bf:9c:ae:24:4b:6b:30:84:d0:67:b4:36:44:1c:22:06:95:
db:40:c9:21:e5:d6:d7:42:3f:f9:3f:11:1d:fb:38:0c:6f:cc:
b8:97:a3:fd:22:b4:46:36:5f:98:d6:4e:49:3d:66:94:d9:33:
50:59:e3:1e:82:83:cb:8b:31:71:8c:28:aa:a7:33:ba:9f:cc:
22:38:1c:94:da:d0:70:e1:21:51:7c:51:6a:c5:0f:5b:33:1f:
ce:bf:8a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 05:10:02 2026 by rpki-client