Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
File: 45R9MIiPTYgtNYTtyKcPt2YV5fo.mft (raw, json)
Hash identifier: GlVU4MahExGdQU7kKQxTU/FOTcFwW+0O4ibeuZDjHw0=
Subject key identifier: 0E:3C:07:B7:9F:42:EC:75:07:B9:04:E2:8D:17:FD:63:89:A7:7F:B8
Authority key identifier: E3:94:7D:30:88:8F:4D:88:2D:35:84:ED:C8:A7:0F:B7:66:15:E5:FA
Certificate issuer: /CN=e3947d30888f4d882d3584edc8a70fb76615e5fa
Certificate serial: 019D3865C0116610558D763BFD13CF0E648F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
Manifest number: D4
Signing time: Sun 29 Mar 2026 07:01:25 +0000
Manifest this update: Sun 29 Mar 2026 07:01:25 +0000
Manifest next update: Mon 30 Mar 2026 07:01:25 +0000
Files and hashes: 1: 45R9MIiPTYgtNYTtyKcPt2YV5fo.crl (hash: Gbv7hByy1CEXfk22as2W7cFJWOb0h9pt+JSaYT1JC+U=)
2: GTC6u_8Z9gd4xadpdKdM5XAZSl8.roa (hash: 0yWQwDQexpIwRL0OkehWTxguFnP2RgOpylnrHqYuR9w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.crl
rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:c0:11:66:10:55:8d:76:3b:fd:13:cf:0e:64:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3947d30888f4d882d3584edc8a70fb76615e5fa
Validity
Not Before: Mar 29 07:01:25 2026 GMT
Not After : Mar 30 07:01:25 2026 GMT
Subject: CN=0e3c07b79f42ec7507b904e28d17fd6389a77fb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:a0:12:bc:32:0a:27:04:28:f1:70:61:dd:05:
92:6a:a9:80:b6:be:4e:db:47:b7:4f:72:9d:c9:44:
73:d7:e5:55:a4:9c:5c:61:80:f8:7b:6b:09:df:fd:
a3:7c:e7:f5:d7:25:ab:b2:c8:05:71:30:ad:ec:1d:
fe:d8:61:82:4e:ff:53:9a:ff:30:ad:fc:cf:89:b0:
d9:fc:7f:fc:7e:40:c9:22:56:03:9f:fc:b3:f7:e3:
2a:a8:d8:a9:90:63:2c:8b:5b:9b:53:79:9c:1e:dc:
82:79:88:87:2d:96:6c:5a:4b:e7:6f:66:97:e6:44:
30:95:62:30:93:5e:3b:38:7b:b2:e0:48:db:55:3d:
a3:77:58:25:9a:39:d7:02:b8:15:c9:aa:f4:de:82:
b8:a3:2c:05:76:e3:e4:24:48:7f:21:3a:52:97:4b:
61:52:d5:23:53:d1:6d:97:15:64:50:2c:84:bf:74:
a1:93:33:9d:28:1c:32:f1:bc:e6:31:ef:8b:df:01:
e1:f2:61:01:7f:4a:a2:66:b4:3c:f4:17:eb:6f:77:
32:19:9f:51:3f:d6:8d:07:2a:10:21:85:cf:4d:e6:
43:56:24:44:bf:ab:4d:60:7a:56:89:7f:e9:84:53:
f5:d4:07:42:7e:0b:3d:5e:e5:4a:2c:d8:1d:68:24:
7b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:3C:07:B7:9F:42:EC:75:07:B9:04:E2:8D:17:FD:63:89:A7:7F:B8
X509v3 Authority Key Identifier:
keyid:E3:94:7D:30:88:8F:4D:88:2D:35:84:ED:C8:A7:0F:B7:66:15:E5:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45R9MIiPTYgtNYTtyKcPt2YV5fo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/aafe7a-e179-4d6d-9d62-9da36e9173a3/1/45R9MIiPTYgtNYTtyKcPt2YV5fo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:75:f9:d6:bd:83:05:03:5f:22:5e:61:5c:14:82:cd:b6:e3:
88:56:e2:fb:03:1c:21:95:83:b8:4f:80:34:03:7e:7c:9b:69:
86:f5:64:ba:b3:4a:1d:18:9a:19:f3:d3:69:b4:fc:9f:02:06:
ef:75:3d:db:ab:38:9f:2a:ea:f1:4a:b9:35:63:4c:37:6a:e8:
db:36:5b:a1:7f:8d:30:26:53:26:8e:cd:ba:dc:51:f9:e2:69:
00:ba:de:8e:55:67:72:a0:82:7a:05:ab:f0:7d:ef:25:0a:75:
29:db:2f:a4:30:3f:3d:21:70:61:7b:32:ee:41:e1:d4:dd:38:
20:71:c5:1f:73:49:38:b2:ef:27:7a:c8:0f:f4:e9:27:1a:c9:
bc:6c:61:5c:99:e4:39:ce:01:1d:67:c6:51:01:03:07:e7:75:
a4:bc:a5:4d:2f:c4:0a:a1:0d:20:34:36:95:cd:35:b1:12:1b:
31:05:66:0d:fe:b4:3a:f1:12:5e:78:c2:97:58:be:ab:36:02:
14:a4:8a:bc:2c:54:b5:47:e5:67:55:1c:d4:b8:ee:3d:c8:27:
13:9a:b8:c1:2b:fe:1f:01:ad:2d:83:dd:89:d1:46:0a:c1:9d:
07:db:83:99:d1:3f:5f:66:b9:e1:c7:0c:38:27:8d:4e:4c:2b:
2f:10:d7:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:37 2026 by rpki-client