Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
File: u_mPikT9YO72t0nSFOVsgRiXZgw.mft (raw, json)
Hash identifier: JRCtFVWdF3B5v1yiy6nLo++Y7aZDXQyeQP4O2y7sl8Y=
Subject key identifier: 1E:50:27:EE:DA:EF:0C:39:53:EA:79:B3:DC:FA:CE:50:78:F6:2C:95
Authority key identifier: BB:F9:8F:8A:44:FD:60:EE:F6:B7:49:D2:14:E5:6C:81:18:97:66:0C
Certificate issuer: /CN=bbf98f8a44fd60eef6b749d214e56c811897660c
Certificate serial: 019D37F74F1B7D0317434E8CF3D7D49C54B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
Manifest number: 037B
Signing time: Sun 29 Mar 2026 05:00:47 +0000
Manifest this update: Sun 29 Mar 2026 05:00:47 +0000
Manifest next update: Mon 30 Mar 2026 05:00:47 +0000
Files and hashes: 1: og-DO9CncoCadS5HOAJ0BfOSnew.roa (hash: sKXs67ay0NB66Jdkd/yiUU/rBcBdOHYEFZ52pYLtyEc=)
2: u_mPikT9YO72t0nSFOVsgRiXZgw.crl (hash: kleLquXRmOcLz79eyLgW1abZXWeOv7qpLjf3aSCNRdE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:4f:1b:7d:03:17:43:4e:8c:f3:d7:d4:9c:54:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bbf98f8a44fd60eef6b749d214e56c811897660c
Validity
Not Before: Mar 29 05:00:47 2026 GMT
Not After : Mar 30 05:00:47 2026 GMT
Subject: CN=1e5027eedaef0c3953ea79b3dcface5078f62c95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:18:f1:a7:ac:3b:e8:38:ba:31:82:59:64:c1:
ba:e2:24:77:c7:98:36:19:ca:36:3e:6d:be:62:60:
70:a1:32:bd:5b:67:2d:46:e1:09:cf:38:b0:52:78:
9b:03:0b:0e:be:b0:61:02:b8:fc:19:26:78:05:d9:
56:6c:45:f6:66:fc:29:c5:64:c0:27:56:85:34:db:
64:cd:28:25:58:66:ab:c3:4d:c9:37:f0:a4:78:65:
02:44:9d:a5:56:a0:a6:d6:a3:f8:27:8a:ab:6d:55:
06:81:29:77:4e:da:db:bb:d4:83:3a:93:15:b1:a5:
a3:cd:84:0b:3e:8d:de:f9:7a:a4:5a:7f:b5:f8:e3:
81:55:c2:a9:ba:78:f5:b1:81:b2:04:41:7d:d8:3d:
60:b2:89:f1:a8:8a:93:4c:19:2d:20:8d:26:00:e7:
92:e9:da:1c:69:5d:04:cf:10:e2:af:ea:2b:14:03:
6d:32:ef:7e:94:a3:56:fc:f9:04:b1:87:ab:34:90:
fc:b1:64:43:18:52:ee:9e:07:9a:17:02:25:44:49:
06:08:8d:de:5e:d3:13:24:a2:0a:3f:c2:ea:0e:c2:
e4:57:e9:07:51:27:33:cc:52:8c:e5:63:19:d7:91:
2c:41:53:07:c6:21:ab:24:5a:89:93:ca:8d:87:ef:
31:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:50:27:EE:DA:EF:0C:39:53:EA:79:B3:DC:FA:CE:50:78:F6:2C:95
X509v3 Authority Key Identifier:
keyid:BB:F9:8F:8A:44:FD:60:EE:F6:B7:49:D2:14:E5:6C:81:18:97:66:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u_mPikT9YO72t0nSFOVsgRiXZgw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/0b4b70-6d61-43c6-8986-41933955b73f/1/u_mPikT9YO72t0nSFOVsgRiXZgw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:18:6f:94:de:b6:5f:3e:b5:ed:a8:6e:9f:57:37:7e:a2:6a:
1b:e5:f2:c8:b6:f2:ef:40:95:66:cd:8e:4a:de:cb:0d:17:56:
ff:a7:51:40:26:5e:03:44:47:80:42:f6:d0:45:4e:ae:33:32:
52:6a:a0:3b:eb:a9:a2:62:45:29:cc:80:3e:92:2e:3b:b8:0f:
11:e6:b8:d2:74:01:2f:95:99:c0:4e:2f:6d:c6:52:c0:7a:7c:
87:b0:5d:02:8f:07:94:bf:db:48:19:c3:53:e2:00:2b:0d:96:
5d:a0:ad:a4:ae:3e:50:0f:0e:80:23:2a:8f:3e:0b:c9:3c:12:
b7:40:34:af:44:44:d6:6d:65:dd:73:aa:09:6a:0f:9a:64:c6:
bd:04:44:07:96:20:d5:a5:52:4d:3a:36:8a:85:53:65:c9:5e:
ab:23:21:74:b5:de:44:6f:0b:c7:5b:3b:45:0d:31:f6:97:5b:
a9:99:d4:f4:43:f2:85:81:c5:93:3f:84:da:95:bc:54:b2:69:
14:4f:16:b2:20:87:77:3a:d3:7f:d6:2a:a6:5c:b1:94:7b:38:
3a:b3:25:95:1d:10:d7:1d:6f:e4:2d:4c:30:54:b8:e6:07:5d:
37:8a:63:cf:9d:df:d0:07:0e:27:73:6b:ea:ea:46:34:73:89:
3b:bc:b4:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:55:11 2026 by rpki-client