Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
File: doFcfQ6GPCF4D4v0uezDqcZFkpg.mft (raw, json)
Hash identifier: oV7/kDX/RAWYKYWvj3Nq/tt6ci1RLOXETLFSdQwAATk=
Subject key identifier: B3:D5:08:64:70:C7:06:8B:6C:19:35:B3:59:F3:5C:08:22:3F:0C:6B
Authority key identifier: 76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98
Certificate issuer: /CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298
Certificate serial: 019DCFABE9BFBC180F9213E45B8E573DF1D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
Manifest number: 05D4
Signing time: Mon 27 Apr 2026 16:00:43 +0000
Manifest this update: Mon 27 Apr 2026 16:00:43 +0000
Manifest next update: Tue 28 Apr 2026 16:00:43 +0000
Files and hashes: 1: NwXP9XjEV_tAQNFwDQBmSN78alU.roa (hash: I0Ts9gFxat3bJUV/IHoujUultkWM8WN3TtuoR0WHIVg=)
2: doFcfQ6GPCF4D4v0uezDqcZFkpg.crl (hash: 8kxgtXjDh9tLgddMru20GQYorio4UXnLvF7qrH0oAy0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 16:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:ab:e9:bf:bc:18:0f:92:13:e4:5b:8e:57:3d:f1:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76815c7d0e863c21780f8bf4b9ecc3a9c6459298
Validity
Not Before: Apr 27 16:00:43 2026 GMT
Not After : Apr 28 16:00:43 2026 GMT
Subject: CN=b3d5086470c7068b6c1935b359f35c08223f0c6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:43:59:74:6a:10:9a:5c:25:46:14:48:72:8e:
0e:68:ef:4b:f7:05:66:e3:18:1a:10:99:ce:cd:c2:
f6:b0:3c:df:05:92:38:77:ee:fe:b2:51:f2:66:d2:
6b:8c:e8:f1:21:33:f5:01:03:7d:2c:71:ae:3c:3e:
f2:4a:ae:4e:f0:e0:ae:46:54:ec:74:d1:8d:ac:6c:
23:8d:a9:30:19:57:37:9a:57:a4:8e:c0:8e:95:22:
a1:b7:f2:8d:b1:3e:14:02:4d:1d:6a:56:2f:84:44:
7f:fd:15:10:1e:3b:7a:3c:fd:1c:96:dd:5c:dc:b7:
d7:7a:25:fc:14:9c:82:f4:a4:f0:ad:ca:4b:38:c6:
63:9b:ce:46:39:f2:40:e9:b4:d7:af:a3:18:a7:ac:
6c:94:7d:fa:7f:98:24:cd:6f:57:82:ab:2f:99:1a:
f2:03:e6:3c:28:24:cf:94:54:57:f3:a5:5f:0a:ec:
2d:42:93:1e:f6:05:45:1d:f2:0f:d1:94:e1:42:8a:
97:06:b5:a4:2b:98:20:12:87:f8:d7:41:1a:fd:15:
8f:de:17:d7:42:4a:b7:62:8f:72:7c:39:30:2a:06:
3a:cd:a4:da:2a:c4:c7:fc:3f:4e:2d:af:88:56:73:
94:5b:21:49:1d:cb:a1:d0:77:88:43:fd:d5:d7:2e:
f8:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:D5:08:64:70:C7:06:8B:6C:19:35:B3:59:F3:5C:08:22:3F:0C:6B
X509v3 Authority Key Identifier:
keyid:76:81:5C:7D:0E:86:3C:21:78:0F:8B:F4:B9:EC:C3:A9:C6:45:92:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/doFcfQ6GPCF4D4v0uezDqcZFkpg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/2aaa49-2823-4ee2-b5d1-e547395d6b47/1/doFcfQ6GPCF4D4v0uezDqcZFkpg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:21:51:14:88:59:c3:64:24:7c:41:75:81:d5:92:83:28:5c:
26:3d:79:17:b8:f1:80:bf:3f:fd:ef:6f:2c:11:93:20:13:42:
a0:ab:5c:de:06:69:b7:85:c1:40:8a:e9:82:04:ea:13:71:79:
ce:cc:00:2e:90:2f:84:6f:3f:e9:78:8b:c1:b4:5c:16:ce:8e:
01:43:6a:53:16:14:ba:b7:9c:9b:6f:5d:1f:ea:f4:0b:44:de:
e9:a7:c1:e4:ba:f9:3d:63:c0:21:f6:77:30:0f:cd:83:c9:75:
4e:96:94:80:f2:23:a4:0d:02:68:51:98:0c:8a:0d:c9:fd:0e:
c7:f3:dd:33:73:dd:5e:1f:bf:3a:a9:93:da:96:35:e9:b0:e1:
b8:b1:14:2f:47:ab:e8:67:47:3e:5b:b4:af:09:3d:eb:2e:67:
9e:83:0d:79:18:09:57:81:55:d8:8e:6f:2a:c7:96:39:bf:91:
88:34:a9:fc:99:f4:43:a9:ad:81:70:a1:f5:aa:de:91:f0:72:
3f:48:f4:5e:5c:7d:b2:e0:ac:fe:92:39:87:15:49:92:d8:83:
e9:20:07:58:2f:c0:b8:dc:7f:4d:a6:73:b6:04:72:b2:0b:a9:
df:8d:6d:c4:3a:43:33:f2:6e:1a:74:9b:cb:61:7e:76:05:6f:
bf:d1:e6:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 22:27:53 2026 by rpki-client