Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
File: 39D7xN6B7icnq6PpEK_NKlOmZAw.mft (raw, json)
Hash identifier: NnW4TdrtqfRyas6SvxkA5JMIAc9HrU4NHOXiAnYFDyI=
Subject key identifier: D6:3D:31:CB:42:16:0B:36:9F:70:68:4F:17:5D:D6:0E:D9:48:43:0B
Authority key identifier: DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C
Certificate issuer: /CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c
Certificate serial: 019D39407C289F3845A000667A0E071F1E07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
Manifest number: 018F
Signing time: Sun 29 Mar 2026 11:00:20 +0000
Manifest this update: Sun 29 Mar 2026 11:00:20 +0000
Manifest next update: Mon 30 Mar 2026 11:00:20 +0000
Files and hashes: 1: 39D7xN6B7icnq6PpEK_NKlOmZAw.crl (hash: v/J5A4i4Jbzl09fWd8cIh8PnyReOfXLKqBtqBJE7tx0=)
2: G1iJHYXZZbAs4A1MhgUftxUGaws.roa (hash: 7QifEDFoU7RkmJKkZqgcMn81wo0EKV/iY/tFPszpQk0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:7c:28:9f:38:45:a0:00:66:7a:0e:07:1f:1e:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c
Validity
Not Before: Mar 29 11:00:20 2026 GMT
Not After : Mar 30 11:00:20 2026 GMT
Subject: CN=d63d31cb42160b369f70684f175dd60ed948430b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d9:bf:3c:56:26:96:3a:e6:b2:30:98:34:5b:
7c:d6:c4:f4:80:61:e5:86:9a:7c:68:c9:8d:b1:b2:
0b:a2:f6:04:ea:ea:72:80:90:df:bf:25:c3:46:d4:
02:ab:19:8f:da:f2:24:f8:a9:c4:cc:e3:d8:c9:20:
58:cb:ea:8f:ba:20:dd:ee:e2:1d:a1:33:5c:34:a8:
18:a0:a8:b4:51:ae:22:cc:40:1d:2b:13:56:91:65:
82:31:fc:e0:f9:c9:67:9a:98:d8:8a:f2:7f:83:3c:
9c:e3:22:16:06:6d:7a:3e:db:8d:d3:7b:50:27:51:
3c:d0:8e:d8:7e:8f:52:6c:49:c0:e7:4b:0c:4e:7c:
5c:64:35:45:3e:95:33:00:cf:29:3a:e8:cb:31:87:
74:f2:b1:5c:fe:a9:ec:4c:e8:d4:7c:92:dd:1b:ff:
5e:d0:aa:0f:de:13:24:1f:56:00:35:84:d7:dc:47:
0b:21:4b:d8:a9:aa:1f:85:23:2a:e5:53:c4:6f:cc:
54:3d:31:4a:84:58:b2:9c:4d:bf:1d:f8:fa:a5:9d:
fa:93:26:15:ff:53:7a:6a:ce:e7:d4:9a:47:89:8c:
83:67:a2:0f:c0:b0:d9:7c:6e:2e:ca:6c:1b:f1:c6:
8c:57:9a:75:60:c1:cf:bd:a6:86:b7:91:6a:7e:86:
15:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:3D:31:CB:42:16:0B:36:9F:70:68:4F:17:5D:D6:0E:D9:48:43:0B
X509v3 Authority Key Identifier:
keyid:DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:a7:b0:32:65:17:85:e6:bd:3e:98:a4:c8:c9:b7:bb:ca:a5:
37:69:21:79:94:91:48:a9:16:6b:34:d7:26:24:96:bc:2e:c3:
f1:ba:24:9f:f8:f7:9f:1f:7c:e0:fb:ec:00:92:96:ec:d3:b1:
4a:d5:5f:00:4a:93:bd:a3:02:c5:7a:2b:b9:19:c4:01:9c:b3:
d6:0b:22:1e:49:ac:92:1a:29:33:7a:4b:2e:48:04:17:7d:40:
6f:5b:fa:52:b5:5a:ee:8b:db:bc:ff:a1:54:67:9e:4b:ac:a8:
24:32:e9:03:db:56:eb:b7:33:fb:23:4a:ba:63:15:51:28:cd:
5a:64:de:95:40:4b:af:b6:0b:f2:79:9d:06:32:a4:3d:02:c5:
e1:a2:ac:f9:2d:41:76:6a:15:de:a6:7f:fa:19:2a:e1:e9:a6:
98:60:60:6c:a2:68:db:f2:5e:01:b7:34:42:db:68:10:6c:a9:
7f:0b:41:ef:01:7c:c0:b3:68:69:22:e5:d8:1d:e1:de:89:b9:
b5:cd:74:78:d5:d2:cb:f5:6a:9b:4b:b9:f5:63:07:ed:20:7d:
95:4d:4c:c5:21:62:b8:0b:ef:33:b4:63:a5:7d:37:b3:5a:f0:
84:4e:ca:8a:0f:31:f0:5c:76:30:d3:79:cc:a0:8c:ad:bb:d8:
a5:b3:c1:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:49 2026 by rpki-client