Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
File: K5didVR7dd8rBMT5spHAcQxQd0A.mft (raw, json)
Hash identifier: uVBiuvGvtiLgl+LKq7ULQ4tiZdDLHYv37lTKvIYDQTw=
Subject key identifier: 46:99:63:44:BC:2C:0B:2A:0D:A4:97:92:3A:13:8E:33:39:AC:59:5C
Authority key identifier: 2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
Certificate issuer: /CN=2b976275547b75df2b04c4f9b291c0710c507740
Certificate serial: 019CE591B7CB44649D043B53A7F050204957
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
Manifest number: 1867
Signing time: Fri 13 Mar 2026 05:00:57 +0000
Manifest this update: Fri 13 Mar 2026 05:00:57 +0000
Manifest next update: Sat 14 Mar 2026 05:00:57 +0000
Files and hashes: 1: 267NH16MzH47Zyj0K4t3Pr0uSro.roa (hash: mBBDPMXvF9insE4ynTzv2acZX93bp3bRK4WTLefzCSs=)
2: K5didVR7dd8rBMT5spHAcQxQd0A.crl (hash: SXUZxkBBlb0dnhtJQnmSpjE/7GAMPns3eLtNoqNUmto=)
3: u8GJzQSAm-GKtJeGy5swVGHnmuw.roa (hash: XBITkt7W+EBNbhhroLYYPKNKyDfk5alZ3rm7ik7fTf4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 05:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:91:b7:cb:44:64:9d:04:3b:53:a7:f0:50:20:49:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b976275547b75df2b04c4f9b291c0710c507740
Validity
Not Before: Mar 13 05:00:57 2026 GMT
Not After : Mar 14 05:00:57 2026 GMT
Subject: CN=46996344bc2c0b2a0da497923a138e3339ac595c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f5:06:a7:00:90:2a:46:0c:99:8e:2e:e7:62:
f4:5c:00:de:96:46:c5:76:27:d9:3d:d2:e3:30:d9:
d8:90:4f:d6:77:5e:69:3b:9e:c8:41:19:5f:37:30:
18:a3:2c:4f:d8:17:f5:a9:95:13:77:b5:d5:9c:b4:
02:ff:0d:29:2e:1b:6e:49:9c:8e:c9:87:0e:05:78:
92:6d:f7:91:50:d6:c3:91:d9:8c:36:e0:cb:32:68:
46:82:95:1e:6a:a3:aa:6c:1c:76:26:9c:04:cb:be:
2b:15:a5:11:8d:b4:ae:0a:c6:78:0b:b8:a2:d9:2f:
65:cf:0e:10:6e:b6:78:38:f2:d5:cb:0b:54:28:4f:
d8:a7:c1:38:5e:c4:a5:92:e6:b0:4c:69:25:7d:a4:
22:bc:17:d2:28:a6:20:c6:1c:a7:24:fb:ea:ae:5e:
d5:30:c5:ba:50:4a:8e:a3:82:ea:38:21:2f:51:52:
75:32:94:57:7d:e1:34:c1:4a:3a:91:36:0e:0f:06:
b8:2c:f0:88:0d:fa:52:a0:56:f0:48:c7:1d:3c:b4:
21:10:3c:b1:dd:85:42:55:2a:6f:03:d4:8c:93:e6:
b3:6e:66:10:40:16:2d:9c:6a:9f:92:9f:9b:71:7d:
65:6e:3f:f6:94:42:1e:73:9b:c9:12:17:d2:ba:e4:
8b:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:99:63:44:BC:2C:0B:2A:0D:A4:97:92:3A:13:8E:33:39:AC:59:5C
X509v3 Authority Key Identifier:
keyid:2B:97:62:75:54:7B:75:DF:2B:04:C4:F9:B2:91:C0:71:0C:50:77:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K5didVR7dd8rBMT5spHAcQxQd0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/58f45f-8b07-4e6a-9548-d5b0f91d97c2/1/K5didVR7dd8rBMT5spHAcQxQd0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:77:a5:06:20:0b:b5:91:1d:01:46:ad:b6:46:28:19:7c:3d:
3a:70:65:70:07:5b:a1:f1:94:7d:47:95:e4:07:61:09:62:20:
cb:3b:8f:58:85:91:d4:2f:45:b2:1e:f6:63:43:ae:aa:76:2b:
fe:bc:a7:21:89:62:d1:2b:1c:63:d2:2b:06:4f:2a:06:e9:fc:
34:de:ca:eb:da:5c:bf:cb:80:7a:a2:1d:b8:2f:50:b6:25:dd:
29:0a:d3:19:4e:a8:f8:aa:29:23:0f:b0:b3:eb:f4:c5:b8:ad:
58:6a:df:7a:1e:a2:ec:a6:b8:75:9d:5c:94:04:ce:31:d1:c9:
3a:67:0b:0c:fb:31:84:3e:4c:3b:c6:3e:4b:55:ba:9f:20:e7:
da:24:af:37:c2:f9:31:34:d8:06:34:fe:28:9a:11:1a:36:02:
1a:b2:b3:87:fd:d3:fe:de:b2:db:96:4b:f4:83:10:e3:54:b0:
92:2a:d9:42:06:c1:8f:2d:98:70:b3:44:a0:61:c0:27:43:e8:
e5:c2:20:3a:6a:5a:1b:ac:48:f1:c4:b9:04:2a:1c:18:7d:32:
6a:1a:60:3b:c5:a4:8d:c4:b7:0c:45:97:c4:a4:e4:3f:64:bf:
97:7c:61:3c:51:17:82:db:af:02:5c:bf:b5:69:74:31:81:09:
60:2e:0f:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 14:33:45 2026 by rpki-client