Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
File: J0PbfuNKwtTtV49JXgCWy5iv9xw.mft (raw, json)
Hash identifier: r+8DhsI7Ngu1gxy3hcqCnIAHQIKktzh9Fnk0UnQ1uuM=
Subject key identifier: 4E:E5:30:6C:0D:CE:BF:DF:7B:40:8C:7C:5D:E6:58:4C:A1:D0:00:75
Authority key identifier: 27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C
Certificate issuer: /CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c
Certificate serial: 019D37F77820C41A4313A453DC65288E1182
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
Manifest number: 03DA
Signing time: Sun 29 Mar 2026 05:00:58 +0000
Manifest this update: Sun 29 Mar 2026 05:00:58 +0000
Manifest next update: Mon 30 Mar 2026 05:00:58 +0000
Files and hashes: 1: FSCr9rK0vEudDS9_bQ3O-hGkqrk.roa (hash: ddVmg0mXECaptmy2zncQhSGmVK6AKxm9h3sGTc6VHOM=)
2: J0PbfuNKwtTtV49JXgCWy5iv9xw.crl (hash: ItkWbMiPQMM73ksiwiGNdPsBu/hzMwW7MIklI5nEV5o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:78:20:c4:1a:43:13:a4:53:dc:65:28:8e:11:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c
Validity
Not Before: Mar 29 05:00:58 2026 GMT
Not After : Mar 30 05:00:58 2026 GMT
Subject: CN=4ee5306c0dcebfdf7b408c7c5de6584ca1d00075
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3f:9e:e6:b5:1e:0b:9e:36:b8:cd:f7:89:29:
85:ad:8f:6c:12:24:25:2e:87:bd:96:c5:93:2a:2e:
4e:ac:6e:8a:72:f9:ba:72:b2:65:22:1a:df:7b:08:
71:ef:7d:a4:b6:53:15:59:f7:95:12:b4:64:00:ca:
fb:ae:35:ef:57:14:7f:69:b5:81:2f:d8:94:2c:a0:
8c:49:6e:11:de:c7:ba:b2:62:75:c2:df:9c:f1:60:
77:95:04:1f:01:e0:c7:ec:2c:f5:de:cb:03:f1:ce:
4e:70:fc:c3:6d:71:d1:14:bc:d6:c3:29:ce:65:2a:
7b:b8:2d:7c:fa:f1:b1:17:86:94:7f:ff:d3:9c:bc:
3a:b4:e5:36:f4:82:f9:47:db:4a:cb:ef:04:5f:ad:
43:11:40:c0:b2:20:b1:b6:23:e3:0c:9c:21:3b:97:
8a:7d:b6:61:51:78:97:40:ad:5a:3c:1c:9d:3c:fd:
84:c5:c9:ab:29:fa:14:9c:e2:52:4a:e0:f3:07:d1:
ca:cc:50:0a:1a:e6:66:6e:ea:9b:a3:30:84:71:66:
7b:2b:c5:21:74:7f:59:51:84:4e:dd:75:e2:f4:27:
22:3a:6b:92:db:8c:5f:34:35:d9:69:75:18:18:f3:
30:ed:c9:3c:d3:95:33:99:d4:f7:20:7e:1e:d1:a9:
9f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:E5:30:6C:0D:CE:BF:DF:7B:40:8C:7C:5D:E6:58:4C:A1:D0:00:75
X509v3 Authority Key Identifier:
keyid:27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:d6:ac:12:1f:98:f1:d3:af:e4:df:3b:7a:e7:60:a0:ec:7e:
9b:4f:c2:35:35:a7:8d:c9:d6:e5:59:7b:fc:cb:37:07:f7:9f:
09:ec:98:12:7c:2d:88:ed:71:ea:a3:91:69:28:04:a8:78:aa:
42:54:b3:29:7c:41:21:f6:80:12:c5:1d:49:df:ae:97:f6:30:
fa:dc:fd:f2:1c:48:de:f9:85:cf:cf:c9:0a:b6:1a:80:19:d3:
41:e9:cc:7d:61:b7:0f:50:d7:b0:ba:72:10:63:bf:3e:2b:2d:
0e:a8:57:eb:95:1b:69:bb:c1:ff:ea:72:bf:82:d3:b1:e7:95:
19:ea:43:2b:58:c5:b0:b4:df:ef:62:81:df:e8:90:d5:87:5b:
0f:b1:c5:78:0f:08:7b:b8:7c:ab:2b:5e:a7:c9:31:48:87:ca:
ac:2a:e0:62:eb:d2:cd:f1:09:60:ba:8d:80:07:bd:82:fe:33:
23:f6:32:04:43:81:2e:2a:9a:b4:28:9e:37:b1:b6:84:34:f5:
65:48:b5:a1:78:a8:2c:92:13:88:d6:b8:54:67:e2:cd:41:a3:
ea:8c:da:95:ae:6d:db:8d:9c:25:cb:54:c5:42:d5:71:7a:7c:
87:04:ff:0d:78:71:59:5e:2c:91:f8:33:28:21:51:38:b7:f6:
0d:e9:90:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:02 2026 by rpki-client