Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/d853d7-7785-4e6d-993c-7c6e4809df59/1/mXrZ9c2mbZYdG87vxGPmKe6Bmlw.mft
File: mXrZ9c2mbZYdG87vxGPmKe6Bmlw.mft (raw, json)
Hash identifier: zcMUS6VYTkILR4/mbfXZBEe7RiVxgxBsaLJOPtBQ3MQ=
Subject key identifier: 2E:C5:13:04:FE:C9:23:88:07:E3:D5:B4:DD:0D:3F:23:7B:98:EA:52
Authority key identifier: 99:7A:D9:F5:CD:A6:6D:96:1D:1B:CE:EF:C4:63:E6:29:EE:81:9A:5C
Certificate issuer: /CN=997ad9f5cda66d961d1bceefc463e629ee819a5c
Certificate serial: 019D37894385AC22CBC3FCA0DC7E38671571
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXrZ9c2mbZYdG87vxGPmKe6Bmlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/d853d7-7785-4e6d-993c-7c6e4809df59/1/mXrZ9c2mbZYdG87vxGPmKe6Bmlw.mft
Manifest number: 014F
Signing time: Sun 29 Mar 2026 03:00:35 +0000
Manifest this update: Sun 29 Mar 2026 03:00:35 +0000
Manifest next update: Mon 30 Mar 2026 03:00:35 +0000
Files and hashes: 1: gjKNGRgKjW8aFZnJfD5jET9I6jU.roa (hash: KM5oAerppM84vSrPibDX6lgrxjDAWru509Ev4ZnBEag=)
2: mXrZ9c2mbZYdG87vxGPmKe6Bmlw.crl (hash: Zdx4/4q5bkpxR1JqUf/gYTQ81/YDdQtO6pJN2l6DZyw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/d853d7-7785-4e6d-993c-7c6e4809df59/1/mXrZ9c2mbZYdG87vxGPmKe6Bmlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/d853d7-7785-4e6d-993c-7c6e4809df59/1/mXrZ9c2mbZYdG87vxGPmKe6Bmlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXrZ9c2mbZYdG87vxGPmKe6Bmlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:43:85:ac:22:cb:c3:fc:a0:dc:7e:38:67:15:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997ad9f5cda66d961d1bceefc463e629ee819a5c
Validity
Not Before: Mar 29 03:00:35 2026 GMT
Not After : Mar 30 03:00:35 2026 GMT
Subject: CN=2ec51304fec9238807e3d5b4dd0d3f237b98ea52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:cc:1a:35:01:81:d6:e5:12:a4:77:d9:fc:5e:
f7:4b:80:5e:eb:bc:53:d3:c8:d2:26:9f:bf:78:4f:
46:27:e8:e7:6c:d2:97:4f:f0:46:23:a4:50:5a:9f:
e4:96:46:99:15:cd:a7:7c:53:ca:8a:1e:e4:db:99:
20:0f:1b:90:01:a9:c7:0e:3d:6d:f0:2a:62:4a:71:
65:a1:26:a4:84:df:c3:f6:8d:60:9b:65:a6:ec:16:
7b:fa:cd:50:b8:7f:64:db:aa:88:8a:67:75:ba:18:
79:67:9f:1e:95:f2:9e:5b:ff:91:b0:b3:e9:ac:72:
9b:08:dd:c5:cc:37:83:1f:82:72:6a:71:84:78:2e:
5e:49:96:c1:51:43:2a:e6:bd:77:3e:28:d2:10:c0:
37:0d:c7:fb:b0:52:27:d0:8b:82:e0:97:d2:76:e4:
ed:97:df:5b:ce:2c:5c:0e:02:c8:4c:95:55:3d:72:
22:e3:15:3b:a0:32:90:7b:c5:d8:af:07:82:5f:c2:
50:bd:74:f1:bc:e6:83:da:d0:0a:b3:9d:cb:81:95:
4c:2e:9e:21:b9:79:ed:26:b4:9e:16:40:70:42:0d:
ec:b8:29:8a:c2:7c:92:fc:9e:40:35:a6:e3:3b:3c:
5d:1a:b2:58:a3:ae:6c:f2:e1:5a:3d:63:98:51:26:
b8:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C5:13:04:FE:C9:23:88:07:E3:D5:B4:DD:0D:3F:23:7B:98:EA:52
X509v3 Authority Key Identifier:
keyid:99:7A:D9:F5:CD:A6:6D:96:1D:1B:CE:EF:C4:63:E6:29:EE:81:9A:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXrZ9c2mbZYdG87vxGPmKe6Bmlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/d853d7-7785-4e6d-993c-7c6e4809df59/1/mXrZ9c2mbZYdG87vxGPmKe6Bmlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/d853d7-7785-4e6d-993c-7c6e4809df59/1/mXrZ9c2mbZYdG87vxGPmKe6Bmlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:cf:5b:3f:99:6e:e3:2d:c6:91:e3:2a:38:e3:95:9a:0c:f6:
2e:28:c2:63:37:1a:92:69:b5:25:80:f7:26:e0:f6:c7:15:83:
6f:b1:08:ff:25:df:dd:80:7d:bd:b8:34:38:bb:a8:db:fd:41:
6a:aa:ac:d8:b9:16:be:7b:b5:a2:f6:43:53:02:37:c7:52:b2:
54:6b:c9:97:01:65:60:91:4d:df:5e:58:bc:8a:43:6c:08:a3:
81:43:d8:1b:1b:76:c6:97:bd:d5:46:5a:54:93:50:2e:e6:6b:
d9:e6:c3:f5:8b:20:52:37:6e:88:67:ed:8e:7b:12:1b:13:6d:
a0:1f:c9:f3:72:99:1b:a2:1b:4e:fe:da:a5:d7:4a:4a:e1:0c:
ea:26:3b:e1:be:07:3d:ae:e3:17:5a:2a:35:1d:bc:d6:b2:6b:
a1:fd:15:29:22:e4:ea:f3:e3:02:60:14:ed:df:c5:54:0c:c7:
31:7d:b1:5b:3a:8b:03:7f:a2:3d:88:4f:c8:91:1a:3c:a6:0b:
bf:23:e4:9e:c4:fd:ef:8c:d7:cf:93:46:cb:d2:98:b2:6f:bd:
10:03:45:33:06:4b:e9:e5:26:9e:e9:3c:c2:44:03:00:bb:4b:
64:7e:17:8e:19:bf:0c:0a:b0:b1:71:6a:dd:22:80:83:91:0d:
ea:b6:07:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:58 2026 by rpki-client