Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
File: raXVKzyodFRXW2W3IO74GiYqXzo.mft (raw, json)
Hash identifier: Yn3kcCFYv+I2cl3cisJut0oFIEk4qY0K+/gx5KDsMu8=
Subject key identifier: 7D:E2:D8:21:2B:A3:C7:F4:28:DF:2D:9B:2E:75:5E:81:49:93:AC:2E
Authority key identifier: AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
Certificate issuer: /CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Certificate serial: 019CCA519E7CB49842295AC813FF453876CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
Manifest number: 1195
Signing time: Sat 07 Mar 2026 22:01:12 +0000
Manifest this update: Sat 07 Mar 2026 22:01:12 +0000
Manifest next update: Sun 08 Mar 2026 22:01:12 +0000
Files and hashes: 1: rFQ04GqSU9DTULqn8_NPkqKbWSc.roa (hash: 8XgwklO153GBrJc2s4PKkyGugWT/fq0MyA5r4Aq8lKY=)
2: raXVKzyodFRXW2W3IO74GiYqXzo.crl (hash: UJYEej0/SIq5CV3uorHSmRHXCD1CdXUf5Z+eqhm9CUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 20:09:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ca:51:9e:7c:b4:98:42:29:5a:c8:13:ff:45:38:76:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ada5d52b3ca87454575b65b720eef81a262a5f3a
Validity
Not Before: Mar 7 22:01:12 2026 GMT
Not After : Mar 8 22:01:12 2026 GMT
Subject: CN=7de2d8212ba3c7f428df2d9b2e755e814993ac2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:63:2e:b9:3c:fc:63:1f:0d:4c:e7:be:72:f4:
71:c4:6e:48:45:da:23:69:d5:7a:67:ec:4f:c4:77:
2c:1e:06:ba:30:3e:31:1e:a3:a5:3e:04:0f:e7:54:
81:07:e0:b9:36:e4:e0:8e:bb:43:c9:56:4f:28:35:
c5:4b:40:03:6b:de:c7:1a:02:35:cf:d4:84:41:b6:
e7:aa:9c:26:23:c1:35:a5:67:6a:11:6b:25:71:d7:
d5:17:da:d8:56:9a:7c:00:20:ba:2e:fe:fd:46:9a:
85:4d:26:bc:fb:07:cb:57:63:5e:1b:4e:f8:ec:68:
9a:7e:a9:9b:19:a6:30:c0:50:01:d3:58:ed:f9:d7:
00:fd:93:2e:9d:e8:aa:7f:9c:37:25:49:aa:f2:b2:
b9:07:8a:f3:c3:69:0e:70:2d:13:9e:20:3f:f7:f2:
e6:9f:9e:72:eb:19:f9:b7:5a:c8:a6:fd:13:77:cf:
38:a2:2e:ba:f8:ba:d6:fb:64:19:fe:80:f7:b8:a3:
70:98:f4:b2:0f:b8:ac:c5:bc:ca:75:09:27:38:25:
42:5a:97:de:36:e4:67:42:eb:99:08:c3:e1:49:f7:
c0:eb:15:63:66:87:2f:91:90:88:ce:3e:72:ec:a8:
41:43:6c:20:c2:12:37:42:0c:74:1a:45:87:e2:16:
4f:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E2:D8:21:2B:A3:C7:F4:28:DF:2D:9B:2E:75:5E:81:49:93:AC:2E
X509v3 Authority Key Identifier:
keyid:AD:A5:D5:2B:3C:A8:74:54:57:5B:65:B7:20:EE:F8:1A:26:2A:5F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/raXVKzyodFRXW2W3IO74GiYqXzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/5d8453-0380-475e-9edc-d18ab4f7f5df/1/raXVKzyodFRXW2W3IO74GiYqXzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:83:49:91:ae:52:fb:14:ab:be:9c:6a:ce:73:52:59:f6:fa:
c7:55:31:47:ba:29:0a:2a:c6:3f:9e:c9:47:92:fa:81:a1:23:
13:04:13:56:a1:ff:b1:29:64:31:fd:40:b7:90:90:a7:2d:be:
44:00:6f:d2:38:9f:94:76:36:29:5a:23:43:64:5a:e7:cb:8a:
e9:70:e4:e2:e1:70:c5:8d:13:3b:0e:b9:65:bc:9c:2e:72:c8:
a1:ac:40:ce:20:01:49:e8:8e:09:31:0f:66:74:c2:87:25:39:
96:5e:15:68:cd:23:84:89:8b:54:21:0f:69:58:1e:ef:76:bf:
d2:bc:8b:ae:24:c4:50:bc:05:cc:8d:9a:07:83:e8:32:99:01:
31:13:00:7c:45:ad:9d:1b:20:22:fe:5b:5b:9a:3c:73:b0:a9:
fd:62:16:cf:c6:0f:a0:c6:74:44:22:54:18:9f:79:dc:cf:94:
b5:87:7c:ad:39:59:76:72:cc:1e:5b:f8:41:16:99:c7:49:d3:
38:3b:33:74:18:f4:c5:70:3c:5a:2b:ca:5b:17:d7:44:94:6d:
6c:81:1c:70:46:76:d9:05:18:e7:b6:ea:06:a2:0b:c8:1a:d3:
7b:75:a9:2c:c0:6e:d7:f5:cf:3d:03:fb:f0:67:14:6d:7d:80:
06:fc:61:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 8 02:09:15 2026 by rpki-client