Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
File: 70AaUuP95plIbplnjb9Ih1Mpwz0.mft (raw, json)
Hash identifier: qpli1GFiOfNjjoVRZ9Mj0YidyO3GaLcsWhOwEECdnmk=
Subject key identifier: 8E:16:9E:02:90:F7:F4:6E:A4:3F:F1:F6:A8:C2:DB:13:A7:3C:2E:80
Authority key identifier: EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
Certificate issuer: /CN=ef401a52e3fde699486e99678dbf48875329c33d
Certificate serial: 019D38D3BB74DF87045A2658EAD7CA6F860A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
Manifest number: 0FFB
Signing time: Sun 29 Mar 2026 09:01:33 +0000
Manifest this update: Sun 29 Mar 2026 09:01:33 +0000
Manifest next update: Mon 30 Mar 2026 09:01:33 +0000
Files and hashes: 1: 1-SL9hlivQGt-mLTuChMVipJ552A.roa (hash: M4LxMEo5XBi46ojcg/gR85XlQ9Z1KIxYuUCF1vDeIuI=)
2: 70AaUuP95plIbplnjb9Ih1Mpwz0.crl (hash: GKoHYhiE95IFUti99gdLWpCs2VNTJ0W0g8xH33Kg9zI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:bb:74:df:87:04:5a:26:58:ea:d7:ca:6f:86:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ef401a52e3fde699486e99678dbf48875329c33d
Validity
Not Before: Mar 29 09:01:33 2026 GMT
Not After : Mar 30 09:01:33 2026 GMT
Subject: CN=8e169e0290f7f46ea43ff1f6a8c2db13a73c2e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:5c:2f:f5:45:2d:bc:e3:7c:d7:b2:7f:6e:83:
52:f1:51:fe:60:34:03:98:94:12:c9:39:0f:12:e0:
af:9a:05:29:1d:fd:c9:6f:8c:16:83:0b:d2:01:f0:
13:91:02:d5:97:b9:a7:e4:98:f0:e0:09:0e:3d:16:
45:2a:5d:89:5a:19:81:37:49:d7:3f:95:18:97:0c:
c4:f4:df:02:cd:4c:14:59:a1:97:91:90:b8:03:04:
cb:d8:f7:f8:bc:9f:14:6f:67:06:6a:07:bb:7c:83:
c7:ab:c9:2a:9a:2e:ed:2e:57:30:12:3d:51:6a:d6:
3e:96:2a:44:94:57:94:5f:d1:64:a2:a7:be:7f:53:
7c:b7:9c:d3:0b:04:56:1d:f2:b4:29:88:fd:68:6b:
6e:b0:2d:d6:b3:57:4a:15:db:71:a2:1e:8f:f8:b8:
81:5b:c4:ee:b4:e5:55:bd:b5:73:0f:f0:e6:af:c1:
a1:27:df:c8:89:c5:00:c3:14:11:4d:d6:3d:0a:b0:
50:ef:0c:f7:3f:b5:51:bf:e2:82:a5:8d:6a:b4:09:
a9:82:e2:b7:ff:a7:e8:30:fd:f7:84:b2:6d:b5:c4:
d3:67:84:c7:2d:b5:b2:57:19:c1:e2:b3:9e:90:e9:
39:35:63:38:55:ca:04:21:72:d7:37:f2:46:5c:31:
58:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:16:9E:02:90:F7:F4:6E:A4:3F:F1:F6:A8:C2:DB:13:A7:3C:2E:80
X509v3 Authority Key Identifier:
keyid:EF:40:1A:52:E3:FD:E6:99:48:6E:99:67:8D:BF:48:87:53:29:C3:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/70AaUuP95plIbplnjb9Ih1Mpwz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/25238c-8eee-4403-9104-9ca947aa665a/1/70AaUuP95plIbplnjb9Ih1Mpwz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:38:67:c9:11:da:0f:7d:e3:13:0f:cb:bd:15:2a:92:aa:80:
d4:b7:16:73:39:16:dc:12:fc:13:8a:79:e8:02:76:e3:6d:61:
03:91:00:54:17:f4:fc:2d:31:e2:24:d4:03:e6:4d:fa:94:df:
0f:a0:f6:9e:fb:32:f9:7e:d1:43:cc:3a:e8:b8:c2:5c:62:f9:
12:1c:07:d2:c3:b0:1c:16:9f:c3:61:81:35:be:0a:8d:7e:c5:
74:e8:ba:54:fd:be:aa:c1:92:5f:52:b6:32:6a:7a:59:79:81:
aa:30:67:ac:58:93:44:82:11:ba:8a:bc:8d:6a:2e:70:c7:0e:
47:1a:c2:eb:49:fd:f9:01:cd:bb:ce:0d:46:6b:24:62:2d:84:
8b:43:0e:31:06:f2:3a:45:db:90:50:4f:61:4d:d3:8d:b5:62:
00:f0:0e:51:a8:5f:ed:64:68:6c:ae:15:3f:ba:71:a3:56:26:
46:c4:86:34:b2:bd:20:87:ef:1c:8e:12:b7:1a:6a:2b:f6:a1:
fb:cb:93:c9:dc:fd:10:cb:bb:cd:1b:07:23:2d:9b:27:a5:3b:
e1:7e:b7:ea:4c:2a:34:50:04:90:9b:c2:35:b5:92:2d:26:45:
86:ec:be:e4:02:d5:19:42:37:02:36:94:a8:e8:be:70:2f:c4:
26:0a:2a:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:28:22 2026 by rpki-client