Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
File: R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft (raw, json)
Hash identifier: mNJVqchgBseXOjGqjjG2H29Qewix3pvzE/bYTdk6088=
Subject key identifier: 56:CA:AF:87:C4:7F:06:1A:CE:7F:C7:33:68:FF:F2:3C:CD:66:54:25
Authority key identifier: 47:E5:D3:33:DA:D9:D6:2D:53:28:D1:25:78:A3:1D:EF:42:AF:8F:34
Certificate issuer: /CN=47e5d333dad9d62d5328d12578a31def42af8f34
Certificate serial: 019CE5FEF947EE39215B08A5104AA99F12F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
Manifest number: 0AE5
Signing time: Fri 13 Mar 2026 07:00:18 +0000
Manifest this update: Fri 13 Mar 2026 07:00:18 +0000
Manifest next update: Sat 14 Mar 2026 07:00:18 +0000
Files and hashes: 1: R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl (hash: wFJvBsQY3+N5DA4snDcfOHcgRK8vqE7wCTMtGNZCJPQ=)
2: lDMKh21Wt4FbbKS1OgeKAWJLOUA.roa (hash: 3L7WTrIU7aPDIrcLzqUSb6E2nzrLgIJ/FaZM9uhhyxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:fe:f9:47:ee:39:21:5b:08:a5:10:4a:a9:9f:12:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47e5d333dad9d62d5328d12578a31def42af8f34
Validity
Not Before: Mar 13 07:00:18 2026 GMT
Not After : Mar 14 07:00:18 2026 GMT
Subject: CN=56caaf87c47f061ace7fc73368fff23ccd665425
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:51:ff:52:fa:bd:26:66:70:79:8e:c6:45:ce:
77:59:69:7b:19:55:f2:4e:bd:d4:96:7c:d7:9f:b7:
e0:bb:49:99:99:7b:be:8c:a0:c8:42:dc:3d:8e:9d:
00:7b:d6:8e:61:b4:ea:98:5a:9a:b6:17:4c:b9:61:
72:e6:27:2c:67:81:bf:d7:5c:53:1f:e8:b3:ed:39:
23:c9:99:a6:dd:42:03:0a:18:2a:84:29:0a:5a:09:
cb:03:be:0d:96:bf:5c:c5:9d:a8:36:30:3c:e5:20:
ef:47:dc:9a:cb:38:92:aa:58:79:b3:97:0d:f8:85:
6c:cc:01:75:75:3a:32:ce:17:3f:0b:73:23:7e:b0:
2c:d0:ea:10:db:6e:40:34:c8:6b:4d:c4:d0:d0:2e:
56:00:c8:61:fc:cf:d6:e8:90:b2:7b:89:71:21:ee:
31:53:7b:fa:dc:1e:e2:78:61:f2:42:a2:83:22:76:
2e:6d:dd:24:d8:3b:68:d4:d2:c3:f1:8f:a0:c9:57:
65:67:36:df:1a:5d:2b:3f:26:b9:8a:db:1e:66:3c:
c5:b8:3c:a9:cb:55:dd:dc:ea:e3:de:cb:b2:43:a9:
9a:41:b1:81:06:df:be:3a:dd:34:3d:7c:c2:eb:d9:
fb:3d:42:0d:cd:79:1e:a1:df:63:b4:a5:c8:19:2a:
83:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:CA:AF:87:C4:7F:06:1A:CE:7F:C7:33:68:FF:F2:3C:CD:66:54:25
X509v3 Authority Key Identifier:
keyid:47:E5:D3:33:DA:D9:D6:2D:53:28:D1:25:78:A3:1D:EF:42:AF:8F:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R-XTM9rZ1i1TKNEleKMd70KvjzQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/d661d4-c624-4a0c-9069-352cfc369ef3/1/R-XTM9rZ1i1TKNEleKMd70KvjzQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:ff:40:8d:7b:1d:80:2c:36:ff:dc:f2:fd:cf:32:36:b5:db:
02:e5:03:b4:95:99:7b:bd:84:7d:29:18:44:22:6d:a6:34:f4:
e0:03:c2:74:63:f2:56:a7:45:79:67:77:cc:1d:8c:a7:bc:2e:
26:8e:ae:4b:df:71:77:42:51:65:41:7b:a6:7b:0c:b7:29:53:
a4:0b:5c:b8:fa:a0:60:da:03:09:15:e4:0f:b1:9c:4b:75:eb:
42:a1:af:47:05:aa:4d:ed:70:8e:b5:da:0f:4b:56:5c:0a:8f:
d9:b1:a1:6d:bf:58:f3:ff:08:61:7f:83:05:a7:c1:4f:8c:18:
a4:33:5e:51:3b:fa:a9:fb:07:65:35:55:f3:3c:53:61:ba:15:
9c:02:03:08:d8:57:bb:fe:a2:44:9d:cc:a0:b6:99:56:41:17:
af:e3:97:f3:20:b4:54:c8:ad:30:97:07:3c:b3:72:73:05:7e:
ff:36:48:ff:6f:08:de:53:d4:d6:df:cd:91:8c:8b:55:22:a7:
53:f3:60:d6:d9:36:7a:25:c9:4e:cb:32:33:20:8b:86:1e:5b:
27:fd:76:72:18:32:b8:84:c2:5b:1d:43:55:80:fd:60:21:c0:
ca:3e:73:89:51:05:93:8e:02:92:b9:05:31:18:6e:af:d2:38:
a9:82:cd:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 11:16:28 2026 by rpki-client