Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
File: RdGncWAlFxEzoyAslGKg6r1mBoI.mft (raw, json)
Hash identifier: 3lXmzSDMNY3/2puSWV5BbuRr5fJvKqJDGsdzUfPnqUQ=
Subject key identifier: E2:0C:D8:18:74:CE:50:2E:19:9D:BE:9D:06:79:79:AB:15:63:F6:F6
Authority key identifier: 45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
Certificate issuer: /CN=45d1a7716025171133a3202c9462a0eabd660682
Certificate serial: 019D389BD0165F4D53F57ECA94343008ACC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
Manifest number: 0824
Signing time: Sun 29 Mar 2026 08:00:28 +0000
Manifest this update: Sun 29 Mar 2026 08:00:28 +0000
Manifest next update: Mon 30 Mar 2026 08:00:28 +0000
Files and hashes: 1: RdGncWAlFxEzoyAslGKg6r1mBoI.crl (hash: uBnTNLRFHIx5kdAGN8JIeBPDFiw8lSiIz4NH8DbQ5CI=)
2: yS7JOrLZP4AOFmgm3gsxJRJWJXE.roa (hash: IrIgEVW7MNtRvbALuTRFogWK6/R+xoKvrCBDKRLo8XA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:d0:16:5f:4d:53:f5:7e:ca:94:34:30:08:ac:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45d1a7716025171133a3202c9462a0eabd660682
Validity
Not Before: Mar 29 08:00:28 2026 GMT
Not After : Mar 30 08:00:28 2026 GMT
Subject: CN=e20cd81874ce502e199dbe9d067979ab1563f6f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bb:22:7d:ef:49:c5:42:42:5c:7d:f7:59:5a:
7f:73:14:97:a5:12:30:ac:d4:fa:0f:5a:9a:57:93:
f5:94:ae:56:f5:64:70:97:95:65:bc:03:83:ea:a1:
8a:1c:fb:0c:03:18:a5:a6:c6:0d:6b:3f:5d:29:f9:
53:73:31:8d:34:25:e5:a4:31:f2:13:0b:b5:a0:31:
96:1a:f8:cd:f3:aa:c9:d7:95:57:a1:78:26:00:38:
70:a1:e0:ae:63:6f:bb:d3:f1:dc:c3:53:79:69:e0:
7d:66:ab:ab:2a:8f:4b:96:6b:19:d4:58:f0:82:81:
7b:67:35:ec:47:28:2d:ea:ef:14:f4:09:c1:cb:83:
85:54:c6:2e:88:2e:46:03:62:68:c7:c9:ce:be:e7:
06:48:fc:d8:c3:af:cf:3d:d1:fa:ba:b8:af:85:33:
1b:71:a2:1b:e0:1a:e1:ed:fe:82:04:04:40:d6:94:
51:58:41:8d:98:e0:8d:9c:d4:2a:c7:6c:63:9b:bf:
db:f5:d9:70:27:2d:8c:11:43:8a:12:87:c3:d4:ab:
64:6f:29:8c:02:84:25:df:f5:50:20:79:98:97:82:
d3:84:3c:78:c9:ea:d5:23:83:f7:c7:2f:af:7b:b7:
f0:80:68:b1:32:8a:5b:0d:27:55:54:eb:6e:d3:d0:
cd:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:0C:D8:18:74:CE:50:2E:19:9D:BE:9D:06:79:79:AB:15:63:F6:F6
X509v3 Authority Key Identifier:
keyid:45:D1:A7:71:60:25:17:11:33:A3:20:2C:94:62:A0:EA:BD:66:06:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RdGncWAlFxEzoyAslGKg6r1mBoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/15c47c-2c7c-481c-bf89-807246ca7a24/1/RdGncWAlFxEzoyAslGKg6r1mBoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:da:eb:8b:e2:88:71:a2:1e:d2:2c:68:e9:2f:a1:6a:f1:d9:
53:d0:fd:76:9b:2a:75:eb:2c:0a:b8:cb:51:07:69:c4:81:1f:
5c:64:a7:5f:ec:78:e7:f7:4a:ae:ad:0b:35:65:22:5c:02:e5:
81:42:6e:91:95:8a:74:b7:93:29:d5:ca:e6:0a:37:17:db:dc:
43:b6:51:2c:7c:c9:75:75:76:b6:bc:30:83:1a:e0:8d:d9:b1:
62:86:00:4c:bc:ce:01:2c:f2:70:af:6f:37:43:a4:5f:81:1a:
8e:30:15:6e:f7:3e:49:30:a3:16:2c:f7:a3:1a:5a:c8:38:c0:
a7:46:3f:a6:9c:8b:8b:55:ac:54:be:2b:56:c4:ea:cf:dd:c3:
33:86:e0:a3:e3:e8:02:5e:18:76:5a:a9:bb:65:ab:ee:b9:6c:
1d:41:05:cd:75:9e:3c:5d:04:90:8b:08:85:69:d5:76:06:8d:
a1:78:9f:b2:67:00:45:df:2e:c6:f1:da:c8:f1:7b:ca:05:e8:
3e:ab:de:27:69:99:58:86:ec:55:e4:19:d6:1c:ab:bc:5e:48:
ff:a2:08:58:b9:c3:c6:68:35:d5:f7:be:93:d2:3e:57:f2:f8:
19:03:8d:89:6d:f2:a7:85:bf:3c:46:3b:3a:db:4f:ae:6f:bf:
5d:76:e1:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:24 2026 by rpki-client