Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
File: dI6Zox81gkAKtd-nd8YNFqyu3bM.mft (raw, json)
Hash identifier: 7wP1X+kKZd/0bGQWUwieSy9SZ+c17+b3pPKpcYSmm6w=
Subject key identifier: E2:A0:11:42:A3:09:E8:AD:03:5A:D1:77:E7:E2:84:ED:10:79:96:A8
Authority key identifier: 74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
Certificate issuer: /CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Certificate serial: 019D389C2A4DE2EA3478A7B77D04CBE73B2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
Manifest number: 0A5F
Signing time: Sun 29 Mar 2026 08:00:51 +0000
Manifest this update: Sun 29 Mar 2026 08:00:51 +0000
Manifest next update: Mon 30 Mar 2026 08:00:51 +0000
Files and hashes: 1: WQjl92RW0jdBTqM0hadCVWAMXP8.roa (hash: CIaHkNR2G65+9/3FHuVOGVz2ojdxwlcnxwiCYecNZcg=)
2: dI6Zox81gkAKtd-nd8YNFqyu3bM.crl (hash: TlIRGcegOTblNR9RtDx2/bNZR8VUav+p2rAuyUguWk4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:2a:4d:e2:ea:34:78:a7:b7:7d:04:cb:e7:3b:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=748e99a31f3582400ab5dfa777c60d16acaeddb3
Validity
Not Before: Mar 29 08:00:51 2026 GMT
Not After : Mar 30 08:00:51 2026 GMT
Subject: CN=e2a01142a309e8ad035ad177e7e284ed107996a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:72:e2:4b:ce:97:a4:36:8c:c6:dc:7a:3f:69:
22:95:77:b0:23:c0:0d:e0:7b:7e:1e:78:b1:96:21:
0a:a5:75:d1:58:04:ba:ec:4f:20:7b:f3:26:4a:50:
ab:ab:e8:92:3e:10:e7:7e:fe:e3:c0:fb:da:28:12:
98:69:91:64:61:37:4a:74:ed:0d:14:89:a8:a5:79:
cc:d8:09:2d:d9:6e:74:48:67:fc:bd:1c:97:3c:06:
ae:87:74:de:e7:72:d0:d2:92:66:3f:98:4c:47:84:
6a:b9:42:55:98:2d:ea:ac:42:63:cc:cb:e5:ba:f4:
7f:bc:26:7e:5f:44:14:9d:46:1e:ce:a5:8c:e0:2b:
5e:d4:d5:3a:88:f2:92:4f:f5:1b:08:0b:b1:42:b4:
fb:8e:54:6a:f8:bb:81:43:c7:09:56:74:f9:4f:ac:
44:91:20:22:94:32:27:34:b7:fc:71:96:ba:9c:fe:
4f:4e:0c:eb:c3:41:ec:9c:fb:63:0c:af:12:0c:5f:
b3:0e:82:1c:c9:20:52:9b:e1:70:7c:8c:7e:a4:84:
f5:ff:24:0e:2b:3f:8c:4a:e9:ca:e0:68:17:97:6f:
43:05:94:c7:55:63:7d:de:ab:b4:0f:fd:ae:35:e5:
f0:fe:f4:7d:51:cc:60:a9:25:45:87:38:9c:b1:a0:
ec:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A0:11:42:A3:09:E8:AD:03:5A:D1:77:E7:E2:84:ED:10:79:96:A8
X509v3 Authority Key Identifier:
keyid:74:8E:99:A3:1F:35:82:40:0A:B5:DF:A7:77:C6:0D:16:AC:AE:DD:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dI6Zox81gkAKtd-nd8YNFqyu3bM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/437ae5-c2ab-4c71-9d06-fec6c2701eda/1/dI6Zox81gkAKtd-nd8YNFqyu3bM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:5c:33:da:21:f4:94:4a:03:7c:28:81:ce:28:a1:c3:a8:e3:
df:da:98:ed:81:02:01:9b:1f:cd:52:b2:1e:cc:c8:70:dc:92:
01:26:d6:ed:a0:3c:e5:4f:6e:89:56:ce:24:4c:9a:80:04:44:
b9:64:a0:1e:63:bc:88:4a:6f:7e:c0:db:29:ce:e1:b1:7d:f8:
a3:4f:db:99:fa:74:1b:2e:dd:d8:c1:f7:db:be:bc:63:1b:d2:
55:87:5b:c8:2e:48:57:bd:8f:bd:d0:45:0c:6e:27:f9:a4:98:
9b:9b:2f:c1:27:76:43:18:e2:1d:23:20:a3:3f:c9:ea:0e:f2:
1f:8b:9d:6c:9a:63:87:48:82:ed:f0:54:5d:cc:7d:25:94:06:
59:c6:da:ef:6c:7c:ae:dd:f1:d9:e3:20:09:76:06:42:1f:13:
fc:2c:da:e8:c7:16:ce:50:4d:2c:b7:65:79:ea:2b:cb:02:59:
79:a4:c3:77:f3:f9:7c:27:46:62:71:f3:82:1f:c9:58:11:00:
d7:cd:d9:fc:39:4e:fd:dd:6e:fc:22:f4:a7:e3:22:09:79:47:
89:a3:da:9b:20:87:95:24:7b:d8:cd:35:52:99:74:a2:5d:b2:
5b:ea:91:69:a3:b6:7c:4a:7e:63:1f:24:ea:a6:aa:79:6a:0c:
1c:b1:b2:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:25 2026 by rpki-client