Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
File: 0fbkNwERz7-WhASFQie4CShRRQ0.mft (raw, json)
Hash identifier: jZEfUKmE/jl+c2S7WMzZ6waXtG8jE3oi4jls6y9OhRs=
Subject key identifier: 3A:71:62:D5:EF:2D:5E:AB:96:53:F2:DB:74:90:1B:8A:D9:67:6B:E1
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: 019D382E1D65C405C329B3A69E99A8C3A185
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
Manifest number: 10F1
Signing time: Sun 29 Mar 2026 06:00:39 +0000
Manifest this update: Sun 29 Mar 2026 06:00:39 +0000
Manifest next update: Mon 30 Mar 2026 06:00:39 +0000
Files and hashes: 1: 0fbkNwERz7-WhASFQie4CShRRQ0.crl (hash: irn8MEGKBRFyMn6i9p2c8W3fHekP5ROm4CU66Sn3cRc=)
2: b6CRhvSRccrFASwHzAqv1fJ2-PM.roa (hash: /4u/ccQkL47poEfRTb46UuOnLyPJ5g8IGlvoOu1fxd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:1d:65:c4:05:c3:29:b3:a6:9e:99:a8:c3:a1:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: Mar 29 06:00:39 2026 GMT
Not After : Mar 30 06:00:39 2026 GMT
Subject: CN=3a7162d5ef2d5eab9653f2db74901b8ad9676be1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:aa:be:8a:e1:5c:41:9b:97:ec:4f:6f:4a:d5:
a8:f2:5b:d0:57:3b:32:fb:d5:2d:ad:ec:39:80:ef:
fb:06:6b:4e:3b:c5:26:9d:38:9e:fc:72:4d:05:97:
07:c6:8b:c7:c9:e3:47:60:35:2d:d4:11:8b:ca:b6:
b0:0e:18:cc:b7:10:b5:a1:9e:ff:01:57:9c:fd:3d:
f1:d5:96:5e:91:4d:b2:26:1a:18:de:90:09:29:4f:
95:6e:b3:ad:70:fd:61:67:3b:a4:94:44:77:91:a2:
1b:7e:85:e5:7c:db:d8:35:fd:12:0e:89:83:72:43:
3a:f7:05:6e:7c:92:3d:e5:eb:aa:37:39:4d:3d:ad:
3d:d6:3d:e2:73:e9:6e:77:f8:8f:f6:ad:41:c6:0b:
1f:3a:b6:e7:74:43:17:5d:b7:80:33:4e:6e:29:ca:
aa:fc:39:be:b8:0c:67:1d:57:41:a6:05:89:41:c5:
63:2a:51:3f:6b:17:15:10:05:b7:8f:bb:4b:13:b8:
4d:5f:7c:18:bc:d5:fc:9f:8f:25:bb:46:17:c3:d1:
8c:54:93:f3:29:8e:11:06:cf:07:2e:e0:46:54:8a:
2c:f2:df:7e:e6:40:10:8d:aa:a7:bd:5c:e7:47:6c:
c7:41:d9:9e:50:8a:a3:9e:5b:5c:63:5a:61:52:d3:
32:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:71:62:D5:EF:2D:5E:AB:96:53:F2:DB:74:90:1B:8A:D9:67:6B:E1
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:db:d7:e1:f6:e9:d4:59:83:db:1b:dd:84:29:93:ef:b4:14:
5e:68:0e:a3:80:37:60:12:b9:2f:4b:fd:45:1b:50:82:8c:a3:
1a:25:a2:19:ea:b5:ad:a6:28:bd:08:bf:1f:6d:8c:6a:4c:e7:
2d:34:88:f4:6c:a9:17:01:a7:71:4c:a2:aa:a6:79:77:cc:e6:
3f:51:fc:cf:a9:39:19:ce:15:07:16:0f:e5:c3:68:60:3e:46:
bd:f8:0c:49:56:20:55:18:ca:cf:1f:ca:fc:70:f1:4f:bd:b9:
41:32:00:72:b1:27:cd:f9:6f:86:ba:06:08:eb:b5:32:3c:f7:
94:8f:04:f4:63:87:17:7c:47:0d:9d:2b:cd:98:29:32:fb:80:
0b:5b:19:9f:04:16:c7:24:3c:45:6f:18:d6:dd:93:12:6d:2a:
0e:f6:1e:47:72:d2:f6:10:cd:f4:11:0b:d7:15:61:65:09:e6:
30:03:65:d7:55:ac:b9:76:26:ed:c6:e5:57:44:4d:16:35:75:
7d:74:d8:29:72:08:47:4b:de:9b:b5:d1:f6:9b:75:1b:bd:bc:
29:eb:99:8f:02:a4:ac:2d:9e:a0:28:78:57:a9:71:05:1f:03:
1a:a8:95:81:5f:f0:58:a3:81:13:dc:16:f7:ef:78:2d:d4:1d:
6a:c5:5b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:37 2026 by rpki-client