Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
File: mXyCWBNDX7ARVDjuP2B2N869jo4.mft (raw, json)
Hash identifier: BQ+dIP5rG9maXbmP4MXtLoqF4VZ202K3GNn3Aa9Gr5E=
Subject key identifier: 14:B6:01:90:9C:F9:DC:F4:4B:18:63:44:3E:52:4F:C5:8A:C6:5A:70
Authority key identifier: 99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
Certificate issuer: /CN=997c825813435fb0115438ee3f607637cebd8e8e
Certificate serial: 019CBB4BCDD6A6BE802106767E79CA21800E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
Manifest number: 012E
Signing time: Thu 05 Mar 2026 00:00:33 +0000
Manifest this update: Thu 05 Mar 2026 00:00:33 +0000
Manifest next update: Fri 06 Mar 2026 00:00:33 +0000
Files and hashes: 1: IqAZ7XQz7BlbCx4e-ofeDvMJfNU.roa (hash: Kp2XtcxtOkZThbBMLc4hB6JTrGLoaZOP4GbgJkvTA/A=)
2: mXyCWBNDX7ARVDjuP2B2N869jo4.crl (hash: BG+4ESrxaY8hQkJXpGrSCP2SuF3RLGTC05Xs4iY1DHw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 05 Mar 2026 19:55:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:bb:4b:cd:d6:a6:be:80:21:06:76:7e:79:ca:21:80:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=997c825813435fb0115438ee3f607637cebd8e8e
Validity
Not Before: Mar 5 00:00:33 2026 GMT
Not After : Mar 6 00:00:33 2026 GMT
Subject: CN=14b601909cf9dcf44b1863443e524fc58ac65a70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9b:2d:b5:39:6f:1c:29:0c:c4:a4:52:4e:72:
a3:da:80:53:71:75:fc:5f:ab:a6:09:21:ed:13:6a:
3a:ad:6c:41:12:7c:95:64:bd:c0:c2:30:e8:11:c6:
29:db:79:5c:2f:83:85:c5:d1:34:73:22:9f:4a:11:
2f:12:42:f6:d0:82:9b:91:ae:f8:3e:c3:4f:eb:01:
2d:87:62:d7:50:d0:dc:01:d9:2c:6a:ef:19:4d:f1:
92:30:80:aa:3d:62:23:af:57:4b:c4:d9:a0:5d:c1:
87:cb:7c:dc:07:de:cf:8f:e6:77:f8:fe:5e:ff:45:
9b:b4:c2:76:48:c2:25:ae:68:95:be:0b:3d:8d:40:
95:1a:27:d0:e4:b8:cc:1c:1b:b8:94:94:8d:de:3e:
bc:90:16:fa:3f:8a:2e:0e:20:2f:af:be:0a:a6:1f:
fe:c8:22:7d:9c:65:19:5d:b8:b0:3b:42:ca:81:30:
0e:eb:18:cc:d7:12:96:49:be:78:c3:da:f3:ec:3d:
34:1d:64:c8:eb:fa:5f:16:a5:66:14:a5:69:d9:9c:
c8:cf:26:1d:79:5b:a3:7c:8b:f3:f9:a8:a2:2a:12:
a2:98:8f:86:e3:9e:d1:a2:59:8e:70:3c:8e:e7:72:
50:a7:3b:c8:d5:c7:a9:89:28:fb:24:d8:23:c6:8e:
19:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:B6:01:90:9C:F9:DC:F4:4B:18:63:44:3E:52:4F:C5:8A:C6:5A:70
X509v3 Authority Key Identifier:
keyid:99:7C:82:58:13:43:5F:B0:11:54:38:EE:3F:60:76:37:CE:BD:8E:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mXyCWBNDX7ARVDjuP2B2N869jo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/2f5502-007a-4683-9872-28f71abba03a/1/mXyCWBNDX7ARVDjuP2B2N869jo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:59:2c:a3:cb:26:b0:79:35:29:74:96:23:af:c2:c1:ef:1a:
67:28:0c:1e:6c:23:16:50:a2:b0:22:89:7f:c4:fe:76:c7:5e:
3e:f0:b5:fe:f6:53:3e:ab:a2:fd:38:8d:26:9c:6f:96:fa:46:
69:9e:70:af:3b:46:f1:01:8e:59:a2:43:01:5b:ed:80:c1:9a:
8c:12:10:d0:89:d7:3e:64:ff:c1:3f:95:4e:a1:b8:a2:be:cf:
f3:b0:aa:6f:5e:cb:14:ce:8f:56:68:af:50:b7:38:0e:4f:90:
1c:8b:54:e8:18:e2:d4:5d:e2:42:e7:c2:08:59:d0:24:f1:31:
ee:c8:a8:3d:69:5b:92:12:3b:a2:2e:2a:6a:c4:19:cd:1f:ff:
a3:72:69:fb:1f:2f:59:47:4f:e6:f3:19:47:cf:9c:97:6d:e8:
ec:71:b8:eb:01:5f:79:f2:a0:19:54:d1:cf:60:83:3c:72:15:
f6:48:0a:a0:6b:cd:29:b8:b8:4a:89:f8:34:d5:01:ec:12:85:
dd:b8:47:53:61:2a:6d:a3:f8:f8:1b:ca:0f:2b:ad:a4:95:c1:
4f:5d:aa:5e:f0:7d:77:a4:bd:d0:fa:4d:ab:37:68:c5:86:92:
5c:6a:75:10:6b:b9:b7:0f:2f:07:2c:da:e7:86:32:57:c4:27:
b0:f3:24:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 5 04:51:57 2026 by rpki-client