Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
File: du6ffY5dGMUIhPgzeK5Iui_NpuI.mft (raw, json)
Hash identifier: z3XwKdg4UaEoOoYWAYoSivKbD7NM8PLInRk8deL4q20=
Subject key identifier: 12:13:F4:99:D2:25:27:BD:CB:20:82:F9:38:5B:49:71:EC:1C:BA:B8
Authority key identifier: 76:EE:9F:7D:8E:5D:18:C5:08:84:F8:33:78:AE:48:BA:2F:CD:A6:E2
Certificate issuer: /CN=76ee9f7d8e5d18c50884f83378ae48ba2fcda6e2
Certificate serial: 019D37C0F70036287BCE62DB4772ABA7286B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/du6ffY5dGMUIhPgzeK5Iui_NpuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
Manifest number: 13E7
Signing time: Sun 29 Mar 2026 04:01:26 +0000
Manifest this update: Sun 29 Mar 2026 04:01:26 +0000
Manifest next update: Mon 30 Mar 2026 04:01:26 +0000
Files and hashes: 1: _d8Zo_g7rmhKukVc2_yC6OHo_f8.roa (hash: W4kBrQ5vSikj88DUpuXxRFyq1wVLUOltrf0M4pqOt50=)
2: du6ffY5dGMUIhPgzeK5Iui_NpuI.crl (hash: Hwr6IRxBGSwTSDhkhsEerPWhq/vzPiagh/cwEoNtUDU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
rsync://rpki.ripe.net/repository/DEFAULT/du6ffY5dGMUIhPgzeK5Iui_NpuI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:f7:00:36:28:7b:ce:62:db:47:72:ab:a7:28:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76ee9f7d8e5d18c50884f83378ae48ba2fcda6e2
Validity
Not Before: Mar 29 04:01:26 2026 GMT
Not After : Mar 30 04:01:26 2026 GMT
Subject: CN=1213f499d22527bdcb2082f9385b4971ec1cbab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:07:2a:78:25:e8:d2:e2:88:9b:96:e7:c3:a9:
4d:b9:89:9e:76:3b:37:f2:9a:0e:35:97:7b:d7:6a:
02:7b:18:a9:38:27:bb:84:2c:28:50:c2:b7:0d:d3:
c8:a4:10:2f:47:c3:11:69:1c:60:aa:5c:cb:97:84:
82:77:47:7e:cf:ae:b5:1c:75:6f:a1:06:83:a3:ad:
03:bf:cf:6e:4d:e7:1a:eb:18:50:c2:96:e1:89:8f:
af:ce:9b:03:9f:c5:27:71:6a:97:47:19:1b:62:2d:
30:87:af:d6:50:0f:d8:72:91:b7:b9:19:85:23:81:
44:9b:53:97:82:59:95:0c:63:3d:26:ab:b9:ad:76:
b2:ec:4f:a2:38:22:b4:1c:95:b7:74:3e:0a:90:c8:
df:b4:0c:f2:72:ea:31:f9:10:b8:bf:55:20:ed:42:
0b:9e:27:d7:98:cb:e2:2b:bb:63:b0:c8:da:5c:19:
23:16:f9:c7:4a:4b:48:cb:6f:5c:f3:25:e3:6c:6f:
7a:e7:8d:a8:58:a3:b4:88:92:4b:11:ee:64:13:03:
1a:99:35:f6:3b:d1:c6:de:1a:1c:87:11:96:bb:b1:
bd:72:c9:61:1e:ae:fd:ce:54:b2:73:ee:57:14:31:
8b:c8:98:ec:f5:2b:bf:fa:6d:5d:06:a4:02:67:da:
a5:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:13:F4:99:D2:25:27:BD:CB:20:82:F9:38:5B:49:71:EC:1C:BA:B8
X509v3 Authority Key Identifier:
keyid:76:EE:9F:7D:8E:5D:18:C5:08:84:F8:33:78:AE:48:BA:2F:CD:A6:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/du6ffY5dGMUIhPgzeK5Iui_NpuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/aa3b42-b601-40b4-b299-bf8e960fe0ad/1/du6ffY5dGMUIhPgzeK5Iui_NpuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:a1:fc:4f:50:fa:49:19:7d:3e:cf:c6:6b:cc:5c:7e:70:ae:
1f:42:35:8b:2b:6b:f4:62:75:08:90:d3:95:0f:08:26:e6:2b:
1b:92:23:cc:28:4b:6d:4e:2e:5a:8e:6b:d2:8d:38:66:c5:b1:
48:1c:61:46:12:3f:8d:34:05:13:f4:bb:71:9f:1a:17:34:02:
a2:ac:50:01:5a:e8:dc:80:b5:6c:4a:91:a3:2f:c7:15:a0:5b:
c8:1d:d7:6e:df:d6:c4:36:95:f5:98:58:95:0e:89:63:6d:23:
31:ce:10:ad:ed:f4:6f:12:ab:8f:0a:54:b1:3b:79:1c:f6:00:
da:9d:84:7f:4b:7d:29:e0:92:cf:8c:c6:c8:04:18:d8:62:8e:
cd:cb:d0:f8:a6:29:9c:70:05:ce:fd:6a:84:e9:03:0a:f6:18:
ab:23:58:ff:47:11:61:1a:ad:67:ac:57:d6:90:fb:4d:d0:01:
54:8d:1e:ef:9a:cd:1c:b8:ec:bd:17:bc:4e:2f:58:e4:63:ee:
97:f7:41:13:ed:6b:b5:be:74:68:a1:2c:19:5b:99:ea:e6:65:
6c:3c:7b:6f:27:35:67:90:6a:0f:ba:d7:53:82:d4:32:e9:ab:
37:5d:21:f1:df:6a:11:83:41:f4:e7:89:e3:c7:b0:2f:68:d9:
61:70:67:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:03 2026 by rpki-client