Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
File: MhbvzNFel4pwQKXUt5xBf7lmvyg.mft (raw, json)
Hash identifier: bhN2axkyZvqwZs0mtQaDyiOSkDPrEb8Ti9/rqo29Uh4=
Subject key identifier: 3F:62:41:1C:60:8C:D3:01:88:58:13:17:AA:55:33:BE:B7:DD:90:82
Authority key identifier: 32:16:EF:CC:D1:5E:97:8A:70:40:A5:D4:B7:9C:41:7F:B9:66:BF:28
Certificate issuer: /CN=3216efccd15e978a7040a5d4b79c417fb966bf28
Certificate serial: 019D3940D8A1AED90A49ADC9E003459423E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
Manifest number: 02FC
Signing time: Sun 29 Mar 2026 11:00:44 +0000
Manifest this update: Sun 29 Mar 2026 11:00:44 +0000
Manifest next update: Mon 30 Mar 2026 11:00:44 +0000
Files and hashes: 1: HK3a_MSoCFsWxP7dXHlGkzJCrow.roa (hash: 9PqcF0/wOP05Xf/mJxyWiie3iSsWOLdkJsmMvxWY/NI=)
2: MhbvzNFel4pwQKXUt5xBf7lmvyg.crl (hash: b4VWj9gCpY4ic2kt3DkdnMtLwxrM5Ni/thK7W9zzl20=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:d8:a1:ae:d9:0a:49:ad:c9:e0:03:45:94:23:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3216efccd15e978a7040a5d4b79c417fb966bf28
Validity
Not Before: Mar 29 11:00:44 2026 GMT
Not After : Mar 30 11:00:44 2026 GMT
Subject: CN=3f62411c608cd30188581317aa5533beb7dd9082
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:65:2b:d5:48:0b:48:42:dd:14:79:fa:cb:e2:
22:2e:91:5d:00:0d:a9:34:0e:6a:b3:7f:e2:21:86:
ce:12:79:db:98:88:13:a6:53:26:5d:30:96:dc:7e:
cd:5e:25:dd:e5:e0:3f:98:d4:c4:e2:94:13:08:f1:
4b:5f:e3:74:2f:71:9d:9a:33:b1:d2:ae:53:0f:3f:
6d:2e:1a:b6:b8:92:19:94:c8:62:8a:66:4d:8f:93:
d5:00:98:dd:01:41:a4:25:7f:c2:99:37:20:d7:c3:
b7:18:1d:13:89:f2:cd:73:27:59:2e:f0:e3:31:0a:
1e:1f:79:7c:0e:ec:7f:8a:fb:56:26:80:c1:61:f4:
89:53:7d:07:c1:36:0a:2a:a1:79:46:e7:46:40:21:
33:27:eb:b0:e4:63:76:17:bd:bf:7b:22:c9:42:90:
04:92:39:85:cc:e1:8f:2a:53:99:8b:3a:12:81:8b:
4f:de:35:d3:2c:88:17:db:c4:03:4c:b9:9e:91:1a:
18:9a:da:cd:c6:b6:bb:39:5b:23:58:0e:79:d8:71:
08:cf:8c:d9:76:ba:4c:54:7d:50:3e:42:fe:e7:78:
40:78:9f:70:74:f5:fd:9c:04:d9:eb:d3:bf:5b:53:
a0:05:5e:69:3a:83:2d:68:1b:53:a6:ef:4e:c2:2c:
08:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:62:41:1C:60:8C:D3:01:88:58:13:17:AA:55:33:BE:B7:DD:90:82
X509v3 Authority Key Identifier:
keyid:32:16:EF:CC:D1:5E:97:8A:70:40:A5:D4:B7:9C:41:7F:B9:66:BF:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MhbvzNFel4pwQKXUt5xBf7lmvyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/3a9dbf-01d2-4f10-813d-eab61ddb898a/1/MhbvzNFel4pwQKXUt5xBf7lmvyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:f3:4a:b3:d2:40:85:7d:89:d7:65:79:44:61:20:92:2d:83:
15:65:b5:46:3d:ac:43:b8:56:a1:18:3f:f4:3e:7e:41:7d:0e:
8e:39:6e:58:94:93:2d:4d:2a:b4:fa:30:85:c4:5e:06:63:78:
f3:53:35:08:6b:51:11:d5:e0:48:34:fb:c4:d9:d0:73:04:08:
d7:40:ec:4a:57:80:2e:bb:09:0c:9a:d8:26:c7:c4:4e:32:fa:
bd:72:d4:d6:7b:5a:9b:13:30:b0:96:30:77:40:e5:34:3c:d9:
19:05:86:0e:83:91:26:0b:80:b1:d6:d0:93:80:b7:e2:a9:0d:
ca:d1:78:03:d4:27:61:14:c6:c1:3c:90:e5:4c:3d:99:de:62:
5b:f5:9f:a4:72:c2:72:81:5c:26:28:58:1f:1f:00:c9:a4:fe:
be:1a:94:94:94:61:12:85:3b:94:19:91:df:31:07:7c:b1:53:
3d:0d:f3:fe:24:85:fc:f5:9d:98:ae:68:42:52:9e:75:3d:7c:
cb:ae:41:ae:57:fd:3a:ac:05:bb:11:df:45:6b:bb:80:b9:80:
b5:2a:c7:6d:c3:d0:55:0f:a6:fa:47:96:9d:b8:8d:6e:11:99:
b8:40:4b:43:49:1a:43:85:4f:45:6d:95:96:dc:0f:ec:43:fe:
8e:00:51:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:41:25 2026 by rpki-client