Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
File: REIuqj2u32uQIVnu2-lMqbfSKE8.mft (raw, json)
Hash identifier: or/N/RhXRklRJffyYjFUQe5N4QGCzptnnw/NKhGiIP4=
Subject key identifier: 2A:67:C2:91:48:3A:41:3D:39:E4:8D:F4:3B:69:D7:C3:04:69:B9:54
Authority key identifier: 44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
Certificate issuer: /CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Certificate serial: 019D371B5093E562D3BB0BB041DCBC3C9BA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
Manifest number: 0EC2
Signing time: Sun 29 Mar 2026 01:00:30 +0000
Manifest this update: Sun 29 Mar 2026 01:00:30 +0000
Manifest next update: Mon 30 Mar 2026 01:00:30 +0000
Files and hashes: 1: REIuqj2u32uQIVnu2-lMqbfSKE8.crl (hash: ZDOCwYRP2O5dXrlOtlR+XS25GFS3OD8IzH9HLMjJkVo=)
2: gCwdPZm7-2mkCNs_6h-_knpGMgA.roa (hash: zOOdjbIrjBtj8zo7gLNAmynH9YT4viYiJaXTAoE0p/w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:50:93:e5:62:d3:bb:0b:b0:41:dc:bc:3c:9b:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Validity
Not Before: Mar 29 01:00:30 2026 GMT
Not After : Mar 30 01:00:30 2026 GMT
Subject: CN=2a67c291483a413d39e48df43b69d7c30469b954
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:5d:6a:f1:b4:43:86:12:94:b2:4f:d6:71:69:
c6:bc:d3:39:6f:26:4b:05:f7:1d:ed:c0:af:d3:75:
08:b8:be:27:0f:80:e4:0c:39:bd:5b:9f:a5:0a:bc:
b6:93:3f:f4:04:cf:e5:cb:ab:90:25:5b:8f:98:51:
63:85:a5:6a:a9:5f:3f:67:d6:eb:cc:d8:e9:26:ab:
78:e8:12:a6:36:b1:71:e1:ea:02:68:1c:3f:bd:fa:
35:e2:34:3c:c1:94:f0:95:65:de:c3:95:16:18:9e:
5b:54:56:01:2e:c7:9a:d5:0e:b4:b6:af:7b:27:e7:
9e:6b:3f:ae:16:c0:85:98:4a:84:05:b5:2e:ca:5a:
68:d2:75:1f:da:a9:f3:c5:9c:c6:ee:87:5e:10:b3:
fa:9e:0d:78:b0:7b:f7:2c:0b:14:4f:1a:f2:3b:d3:
c0:3d:26:ef:a9:0a:05:ea:bf:e1:f7:1b:a4:ca:54:
d2:cd:e0:bb:0b:a6:3b:0f:31:cf:06:09:46:1a:f0:
f9:81:a5:d8:0e:7f:1c:96:60:a0:07:ad:0c:8c:28:
e0:fa:55:79:06:3a:52:64:c0:49:4d:ef:dd:cc:4d:
f9:dc:35:cc:5e:1c:1c:a7:2c:24:8b:d6:b3:5e:80:
6d:ac:6b:ee:59:32:99:77:c3:03:30:09:b8:33:36:
e3:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:67:C2:91:48:3A:41:3D:39:E4:8D:F4:3B:69:D7:C3:04:69:B9:54
X509v3 Authority Key Identifier:
keyid:44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:a6:4a:bd:22:bf:da:00:7d:37:88:8a:34:7f:0d:b4:fd:73:
df:f7:b2:09:d0:bf:9a:47:3a:53:dc:90:92:5a:bd:cc:e4:3b:
bc:83:ea:3e:b7:cf:4e:6f:41:7e:29:47:ef:63:7d:90:f1:39:
37:31:ef:9b:6d:34:77:43:50:ad:0b:e6:f2:70:d8:10:3b:a8:
d4:0b:e7:4a:5c:67:e2:af:f6:6c:c0:86:f1:74:4d:39:59:4b:
02:cc:75:ae:bc:19:fd:d7:38:d3:cf:eb:e8:0a:09:14:09:0a:
e7:36:c7:08:e0:b0:ff:27:5d:e5:09:64:60:17:ce:d1:5f:93:
e3:fa:9e:15:4a:ea:45:3c:49:32:1e:23:df:97:8e:d4:48:3b:
9f:c5:11:fb:e6:dc:8b:f7:e2:05:77:dc:70:0d:54:99:29:27:
52:d6:1a:54:bf:4b:45:f2:55:23:cc:3f:ec:a4:21:e0:34:72:
d1:dd:43:ca:ea:66:0f:83:0d:cc:8e:19:1d:66:3d:46:85:82:
ea:cf:8f:38:19:a5:e7:d2:26:ef:1e:7c:27:bd:3f:d2:eb:f2:
2b:e7:e4:28:f8:03:82:bd:1a:1b:47:b9:ae:ee:1d:07:67:53:
00:4a:09:0d:8d:15:21:81:e2:cd:b2:49:a9:de:9e:ca:92:35:
6b:65:fc:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:33 2026 by rpki-client