Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
File: rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft (raw, json)
Hash identifier: onp8RPGCuf+B8UrBuNASYttfOMVKsvQH839bolSlbNo=
Subject key identifier: 75:72:16:89:ED:06:D8:62:D7:0B:69:91:D6:76:3B:DE:E0:5B:5A:FE
Authority key identifier: AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
Certificate issuer: /CN=acfbbca852b957385909f6bd288cdf363f218b06
Certificate serial: 019D38D395A76EBBAE95B1274A618224F021
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
Manifest number: 1565
Signing time: Sun 29 Mar 2026 09:01:23 +0000
Manifest this update: Sun 29 Mar 2026 09:01:23 +0000
Manifest next update: Mon 30 Mar 2026 09:01:23 +0000
Files and hashes: 1: rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl (hash: uP5WQNG8Go0Of83HNZRr3nExdGgqrJmlzLOAxJcJFXU=)
2: xJ6-vf7Cu_EYmxSRDxKEyTZA2C4.roa (hash: 1YoX58ZefTtFX3+XWJhCdTPpLJ5zr3exgVffIofs4kE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:95:a7:6e:bb:ae:95:b1:27:4a:61:82:24:f0:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acfbbca852b957385909f6bd288cdf363f218b06
Validity
Not Before: Mar 29 09:01:23 2026 GMT
Not After : Mar 30 09:01:23 2026 GMT
Subject: CN=75721689ed06d862d70b6991d6763bdee05b5afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a2:c2:f4:cd:39:5a:85:db:c1:f5:bd:f3:9b:
ed:f7:c8:43:08:ac:69:cf:c6:d6:5b:16:e1:31:4c:
ed:ff:51:7e:9a:e4:2c:69:5a:1c:26:f6:53:18:c6:
0a:1d:e4:34:d3:5d:8b:dc:4d:ae:71:c8:c0:72:68:
c2:d1:74:c6:4c:13:50:16:4f:b8:35:a7:b1:92:76:
0b:ef:5a:aa:89:fa:17:b2:c4:06:96:a0:31:03:ff:
ed:69:79:48:7a:c4:1b:af:73:8c:ce:75:97:d0:6f:
8f:40:5b:54:1d:73:04:07:71:54:c2:74:bb:68:0b:
2c:f7:f7:74:83:94:3c:28:3e:f8:c5:77:19:00:6e:
8c:06:a8:eb:33:17:79:53:80:40:5b:ca:fd:18:df:
5b:11:56:73:8b:ca:ec:32:da:67:f2:0e:fe:7a:88:
1f:35:28:b9:24:67:de:71:76:bd:74:26:c0:bd:59:
9a:ac:96:46:c2:a4:c2:61:b1:d4:bd:63:6b:f7:66:
cb:ea:49:b2:a8:03:3c:7d:a7:9a:52:9c:1e:13:0f:
3c:8f:75:b6:d6:c8:e3:00:f1:4e:e9:d4:fc:a2:a8:
2d:63:27:25:fd:b9:2e:3e:af:0f:52:c8:5f:0f:88:
09:cb:ba:b6:61:54:e2:b4:cd:3f:fc:c0:1d:ba:64:
f6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:72:16:89:ED:06:D8:62:D7:0B:69:91:D6:76:3B:DE:E0:5B:5A:FE
X509v3 Authority Key Identifier:
keyid:AC:FB:BC:A8:52:B9:57:38:59:09:F6:BD:28:8C:DF:36:3F:21:8B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rPu8qFK5VzhZCfa9KIzfNj8hiwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5247b3-6067-436d-ae19-cba722ecb2db/1/rPu8qFK5VzhZCfa9KIzfNj8hiwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:27:8a:a3:69:93:66:79:b0:54:7a:ee:ff:bf:51:9b:71:bc:
71:55:a4:c3:b1:91:d1:00:3c:f1:eb:8d:1b:32:22:1f:19:98:
c6:d6:3f:fa:81:4c:3e:40:47:de:fd:71:55:36:21:6f:5b:02:
39:10:4b:e2:a6:c7:5c:6c:9e:d4:2c:79:a7:c0:0c:e8:07:aa:
cc:86:de:d2:83:31:40:ae:23:d2:a4:99:44:cc:f1:2c:ea:ef:
5b:fc:38:57:01:51:b3:86:2d:d2:f1:c1:c3:de:5f:35:19:64:
81:ca:64:97:35:3a:77:d4:93:2c:00:33:91:9c:9b:2e:86:3b:
a5:80:75:e4:22:b1:03:dd:02:02:21:32:63:9a:5a:1b:dd:88:
33:bc:e8:4c:1a:35:fb:c3:6b:4e:24:93:d6:66:5a:f7:99:e7:
e0:64:16:e0:7b:b3:6b:f7:2f:9c:d6:b8:85:93:09:af:6e:3e:
ef:19:df:17:92:fe:00:43:70:b2:f5:87:ad:ae:21:ef:25:bf:
a1:dd:d9:92:9c:fb:71:41:35:38:f8:4a:be:18:f4:64:e6:92:
4f:81:9c:06:0f:9e:c1:54:40:2c:12:75:c4:3c:e9:7c:96:e2:
01:f3:4e:c4:cc:80:62:20:5e:d9:ac:d4:96:a5:f2:65:b2:db:
68:f8:98:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:08 2026 by rpki-client