Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
File: v99XKOyr1W70Y3NWlVhmylRoaRo.mft (raw, json)
Hash identifier: JfpzjspFcncPhbnYIHUrjiPC8+fh8sEygonD6ZIAjjE=
Subject key identifier: B3:B6:37:CD:4F:97:ED:38:EB:FB:4B:7D:22:C9:E8:17:D3:31:84:82
Authority key identifier: BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
Certificate issuer: /CN=bfdf5728ecabd56ef4637356955866ca5468691a
Certificate serial: 019CE55A5B55026EEDDC922487F6999260C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
Manifest number: 0487
Signing time: Fri 13 Mar 2026 04:00:29 +0000
Manifest this update: Fri 13 Mar 2026 04:00:29 +0000
Manifest next update: Sat 14 Mar 2026 04:00:29 +0000
Files and hashes: 1: 3BcGBZCHDgJs9gSoEvIJqO6Wdng.roa (hash: QqrBTNsjue3924ijEFZUnNRSzA8ZRhSOavKbIrZOqys=)
2: v99XKOyr1W70Y3NWlVhmylRoaRo.crl (hash: a2Th2Xwr6apdebtoCboskw+5nQP/qbGtgph8mxRyd9k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:5a:5b:55:02:6e:ed:dc:92:24:87:f6:99:92:60:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfdf5728ecabd56ef4637356955866ca5468691a
Validity
Not Before: Mar 13 04:00:29 2026 GMT
Not After : Mar 14 04:00:29 2026 GMT
Subject: CN=b3b637cd4f97ed38ebfb4b7d22c9e817d3318482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:17:b8:75:d9:85:64:61:2e:63:97:30:0f:5d:
13:85:1f:e4:fa:96:fb:92:5a:0f:2e:66:10:19:3e:
c7:9d:32:2f:96:e5:87:c7:47:e8:b4:a6:2b:84:b2:
89:bc:37:01:9d:cb:55:8a:0d:6f:75:33:31:6b:5a:
01:8e:23:36:e0:3d:7f:ca:45:f4:1f:d2:aa:ba:c6:
15:49:20:8b:50:79:86:4b:cb:e5:0c:a0:6a:2b:3b:
59:a8:96:70:53:98:a9:93:4f:62:50:a4:49:0d:bd:
8e:bb:f0:12:03:1b:f5:99:75:ea:a3:c8:53:53:db:
b6:69:db:10:98:4e:34:51:8a:da:53:f8:43:a8:fc:
ee:ba:1c:44:35:ca:b2:4b:49:cf:24:ef:90:c3:d7:
9f:bf:02:91:56:43:ff:47:7b:51:6a:da:b3:30:e6:
30:fa:58:8c:54:13:b9:85:d6:dc:4d:bd:5d:4b:9d:
e7:b0:1e:6f:1a:5a:a8:fa:e8:18:0b:9a:9f:62:2f:
79:68:0d:45:a2:2a:93:d3:63:e2:60:ec:5d:d1:14:
07:a9:d0:16:f8:e8:4f:f5:67:1e:c3:1b:93:88:18:
6c:dd:0c:db:8f:88:73:64:5d:a7:e8:88:3e:f1:22:
24:be:79:d6:19:10:31:1a:ac:23:83:3b:bc:0b:45:
10:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B6:37:CD:4F:97:ED:38:EB:FB:4B:7D:22:C9:E8:17:D3:31:84:82
X509v3 Authority Key Identifier:
keyid:BF:DF:57:28:EC:AB:D5:6E:F4:63:73:56:95:58:66:CA:54:68:69:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v99XKOyr1W70Y3NWlVhmylRoaRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/fcf322-17c1-4f40-a618-bd14d344bbf2/1/v99XKOyr1W70Y3NWlVhmylRoaRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:65:19:f8:2a:36:92:a3:24:80:e7:66:a3:3b:9f:d1:dd:0b:
15:0b:0e:c1:b1:87:a3:71:c3:38:a4:3e:5a:8d:59:18:17:48:
17:c4:b4:dc:4d:0e:4a:78:0f:2d:e0:4a:f2:c7:89:17:c9:86:
fb:2c:8c:47:e8:6f:12:41:b6:cd:b5:36:28:57:44:45:86:16:
87:93:f1:bc:e1:2c:79:91:6a:de:a6:a4:02:17:13:e2:cc:c8:
9c:63:2d:a8:ad:cb:c0:57:5b:c3:cf:af:5e:8b:d0:76:19:ae:
c7:64:1f:ac:1b:ef:fb:11:ba:94:55:ba:ae:9a:ee:02:c2:89:
23:67:9b:69:b1:b5:82:5f:48:a6:86:de:60:a2:3d:ff:12:a7:
ca:1c:93:3a:ee:e1:05:51:c0:e5:1a:c5:5c:b0:c8:a3:60:5e:
a6:7d:4e:73:27:af:f8:22:38:27:a7:4c:c6:fc:bb:13:da:20:
75:5d:62:b7:d0:6b:34:cd:d4:74:46:50:28:d0:20:d7:42:02:
d2:dd:d9:bc:d7:f5:69:ff:b3:f6:93:61:09:a6:60:39:e8:a7:
e7:51:46:28:79:b5:79:89:06:1e:48:aa:63:07:ca:aa:a8:2e:
d7:c0:70:cf:d1:0a:aa:6e:81:65:c4:88:b7:6d:ff:3b:d2:e6:
ed:8f:e7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 08:41:51 2026 by rpki-client