Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
File: 6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft (raw, json)
Hash identifier: NPsF2RYMplK+/3L05rESRWJDvNzrOt4psduuYaEpSXk=
Subject key identifier: 87:6F:93:72:D7:75:E2:4A:66:52:B6:6B:C6:BB:5A:35:0B:EF:F8:AE
Authority key identifier: EA:1E:CF:AD:FA:FD:4F:E1:4C:BD:C2:21:B9:15:9E:E9:61:8E:FE:89
Certificate issuer: /CN=ea1ecfadfafd4fe14cbdc221b9159ee9618efe89
Certificate serial: 019D38D370B36CD4A481BEB138A132DFAB5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6h7Prfr9T-FMvcIhuRWe6WGO_ok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
Manifest number: 0218
Signing time: Sun 29 Mar 2026 09:01:14 +0000
Manifest this update: Sun 29 Mar 2026 09:01:14 +0000
Manifest next update: Mon 30 Mar 2026 09:01:14 +0000
Files and hashes: 1: 6h7Prfr9T-FMvcIhuRWe6WGO_ok.crl (hash: 8fMSgHV4XTQtfTGI0JinsRNTDyLHzmiJ59LhQcRruSQ=)
2: vwkWycVdom3nvYeKOf0XRuXuyg8.roa (hash: GQTFaeIhIDJqGTNfp3g118208VXOEiHmD7gFsTFKtRc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
rsync://rpki.ripe.net/repository/DEFAULT/6h7Prfr9T-FMvcIhuRWe6WGO_ok.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:70:b3:6c:d4:a4:81:be:b1:38:a1:32:df:ab:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ea1ecfadfafd4fe14cbdc221b9159ee9618efe89
Validity
Not Before: Mar 29 09:01:14 2026 GMT
Not After : Mar 30 09:01:14 2026 GMT
Subject: CN=876f9372d775e24a6652b66bc6bb5a350beff8ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9e:47:ac:2c:14:04:a6:eb:c5:ca:53:5f:69:
07:57:dc:33:0f:4d:f3:91:b0:6d:39:5d:cc:f3:b6:
1e:f7:1d:9b:53:e9:e5:f9:76:9b:03:88:1a:52:47:
d7:24:31:c5:ca:85:5b:7f:d8:b9:b7:ac:82:41:74:
8e:4c:fa:f9:8b:17:94:84:b3:38:02:99:62:c9:3e:
35:15:e0:1e:2d:60:54:13:44:eb:b0:44:ed:dd:f1:
ec:59:30:90:96:93:6a:93:4b:ac:e4:22:ee:72:79:
f5:a2:35:de:4b:a9:c9:fe:50:53:c2:a7:bf:ea:9a:
d8:16:87:46:af:a6:c3:4e:86:bc:a3:38:10:23:84:
c9:a0:64:6f:bd:cd:0c:b7:d0:a1:95:d3:68:27:ff:
8e:f3:71:51:f8:f4:43:b6:98:02:60:a5:28:fa:6b:
b9:f7:b3:57:8b:91:93:96:a7:f2:d4:6b:2f:9f:86:
bc:27:6c:66:75:ce:80:2d:50:7d:08:33:1d:42:74:
07:e8:7b:d8:16:e7:b2:1a:45:86:bf:12:f2:ae:01:
30:e4:1c:e1:67:71:c1:1c:1b:47:b9:ba:61:14:14:
e0:b2:dd:69:87:13:ae:12:bc:c7:9f:b4:c5:29:61:
1c:f3:5b:76:28:63:94:eb:8d:bc:15:8c:d0:2a:03:
0f:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:6F:93:72:D7:75:E2:4A:66:52:B6:6B:C6:BB:5A:35:0B:EF:F8:AE
X509v3 Authority Key Identifier:
keyid:EA:1E:CF:AD:FA:FD:4F:E1:4C:BD:C2:21:B9:15:9E:E9:61:8E:FE:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6h7Prfr9T-FMvcIhuRWe6WGO_ok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/021eaa-1cf0-41cb-b95b-162a82729f73/1/6h7Prfr9T-FMvcIhuRWe6WGO_ok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:a5:6d:ff:e9:99:5b:20:c9:3c:38:5e:ca:6c:18:1f:23:eb:
56:6a:31:15:57:6d:4d:98:f6:de:1d:43:dc:18:b5:db:1d:15:
c4:ac:2f:ac:f7:66:1d:16:24:41:b4:eb:6a:b5:44:53:15:42:
38:86:34:4c:04:a1:b4:a3:4f:73:56:33:d9:45:a0:9a:ae:5f:
a8:69:4f:dc:98:41:b6:0f:af:ca:58:75:46:1b:1b:ba:5d:64:
0c:f4:fc:30:05:8e:d4:46:be:5e:29:27:dd:b2:dd:20:74:32:
ba:fa:25:60:75:32:ff:f0:a9:e8:6a:fa:db:bd:36:5a:35:70:
bc:36:b7:59:b2:54:70:1f:ef:46:92:91:f5:85:ba:22:62:bc:
0a:e8:d2:87:d4:e7:14:81:84:b3:78:43:dd:3e:a5:cd:90:43:
3f:80:04:dc:01:e4:7c:1b:a8:4f:34:ad:9a:76:da:90:3c:dd:
3a:28:a9:52:a3:a6:b6:71:87:dd:77:6a:8c:f6:bc:6a:f5:85:
a8:75:93:21:51:5f:1e:7c:50:18:33:e9:61:ef:03:92:ae:42:
78:ea:a6:13:ca:a3:12:40:9e:bd:76:2c:4b:c7:1d:4a:12:cf:
5c:1b:e1:62:7b:2c:5f:ee:a7:f9:d4:be:42:10:bd:41:03:85:
4d:92:f8:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:51 2026 by rpki-client