Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
File: Ma-3caS5EQsRSqgHr7cIaxplN54.mft (raw, json)
Hash identifier: EwKyfDW8YltBVZF1qIFzWLshTtZNsDApKDx9pggXxmE=
Subject key identifier: 9A:8B:DB:7C:EA:0A:6E:B9:84:E8:1D:DE:BE:E4:75:8F:8E:71:53:76
Authority key identifier: 31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
Certificate issuer: /CN=31afb771a4b9110b114aa807afb7086b1a65379e
Certificate serial: 019D3865AF0D732830E0AAD4B22ED59703BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
Manifest number: 064B
Signing time: Sun 29 Mar 2026 07:01:20 +0000
Manifest this update: Sun 29 Mar 2026 07:01:20 +0000
Manifest next update: Mon 30 Mar 2026 07:01:20 +0000
Files and hashes: 1: Ma-3caS5EQsRSqgHr7cIaxplN54.crl (hash: 3dRy0aFLkxojB2AcEE3RPDAeONf8P4h2qACxQU4JfZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:af:0d:73:28:30:e0:aa:d4:b2:2e:d5:97:03:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31afb771a4b9110b114aa807afb7086b1a65379e
Validity
Not Before: Mar 29 07:01:20 2026 GMT
Not After : Mar 30 07:01:20 2026 GMT
Subject: CN=9a8bdb7cea0a6eb984e81ddebee4758f8e715376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:be:9c:18:b8:56:5c:78:4c:8e:06:2d:ae:d2:
cc:78:b1:9b:a3:ea:c9:8a:49:94:e4:68:7b:5a:da:
88:04:b9:ed:85:df:0b:f1:5a:ab:5f:3a:59:a2:78:
00:c2:e0:78:71:92:0c:66:c5:e1:a3:99:b0:f5:f3:
66:dd:49:10:bc:de:b3:96:8a:96:76:4e:3c:a4:02:
eb:f8:35:bf:1e:f0:25:49:26:62:bb:52:8b:d7:fe:
ab:fc:41:84:13:f4:06:57:e5:82:5a:cc:a5:9d:d0:
bb:a4:8a:cf:1b:91:4a:bf:78:35:93:d9:dc:e6:7a:
d7:b7:a4:ff:b6:67:fb:5e:08:ed:a6:9c:1c:26:52:
0a:cc:c0:f5:60:aa:8d:e0:80:c7:bf:9d:5b:4e:ca:
ae:4d:62:15:e8:22:1d:b0:9a:f1:6d:38:25:ab:d3:
e7:bc:81:1a:b1:f8:e1:ae:ed:67:be:ce:b0:d3:0d:
6a:eb:28:37:f4:00:11:4d:99:80:d9:34:34:a9:6d:
90:6a:96:2b:c9:b2:13:5f:16:57:5c:5f:a3:06:bd:
7f:dc:01:25:5f:30:4b:4f:22:e2:ca:6a:92:f3:3d:
2d:c8:da:ce:3c:01:22:78:fc:2d:91:c9:43:69:f8:
84:8e:71:20:de:87:cc:9d:3d:12:38:cb:f9:0b:f0:
13:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:8B:DB:7C:EA:0A:6E:B9:84:E8:1D:DE:BE:E4:75:8F:8E:71:53:76
X509v3 Authority Key Identifier:
keyid:31:AF:B7:71:A4:B9:11:0B:11:4A:A8:07:AF:B7:08:6B:1A:65:37:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ma-3caS5EQsRSqgHr7cIaxplN54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/13d48a-d0ee-4d55-a33b-b0eb4c06a1e7/1/Ma-3caS5EQsRSqgHr7cIaxplN54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:9e:c9:83:13:74:3c:73:7c:67:19:05:15:99:f0:fd:18:79:
20:41:0a:71:08:24:78:d4:84:04:56:84:50:c7:8b:37:63:ca:
db:45:c1:67:a2:b6:4a:3a:72:78:3b:6c:fe:48:fc:77:0d:a1:
d2:97:cf:b9:59:54:c3:b5:a3:f7:72:67:ba:ae:79:af:5c:8c:
cf:5f:27:73:59:15:0a:74:5b:70:2f:90:e1:d0:60:5e:9a:71:
86:2b:16:dc:f5:60:1d:ef:0c:1a:16:23:ba:8b:0a:de:fd:a7:
2c:96:e9:22:97:e8:1b:24:ed:4f:29:2f:97:cf:2c:70:8b:27:
8a:63:b1:6d:8c:a5:01:4e:28:22:2a:ae:4d:7b:7b:73:1f:cc:
e5:bf:89:91:2c:af:53:1f:ba:55:1e:fb:d3:46:8c:2d:13:e2:
6d:f5:b9:41:1e:89:df:d1:9e:6e:42:b6:c5:20:9a:fe:34:29:
27:5e:61:5b:08:09:e6:34:ce:82:3d:85:97:34:c8:1f:bd:b8:
b3:f4:ce:70:f2:cb:a3:6b:42:38:48:aa:60:d4:a3:79:67:92:
d3:1d:7f:03:d8:70:d7:fb:89:02:6e:3a:e9:b2:33:72:46:67:
bd:d5:18:60:70:51:ce:05:67:a4:a4:85:7b:49:d5:b1:a4:42:
13:27:38:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:01 2026 by rpki-client