Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
File: rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft (raw, json)
Hash identifier: mCCeh/+SBKpuBY5ek0g9FS9UxXLKsUa7mAmdg6Y3EHw=
Subject key identifier: 63:54:53:60:51:9D:17:08:6B:16:41:EC:D9:9D:42:D2:A3:D3:17:34
Authority key identifier: AC:9A:51:BE:A1:B5:70:FF:A7:2D:9C:52:D1:A5:18:C2:4B:C7:8C:02
Certificate issuer: /CN=ac9a51bea1b570ffa72d9c52d1a518c24bc78c02
Certificate serial: 019D3940B652225B399A7E9F7B278B7F0EE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
Manifest number: 14AE
Signing time: Sun 29 Mar 2026 11:00:35 +0000
Manifest this update: Sun 29 Mar 2026 11:00:35 +0000
Manifest next update: Mon 30 Mar 2026 11:00:35 +0000
Files and hashes: 1: 5BqcS5YAd2CqG1Bqr1DMz14XLBs.roa (hash: hc3I67ClpXYlhmM2IyIqXgYM+yQAnq3AX4m72or+MyQ=)
2: rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl (hash: 7tHl0r+PDF6Guaoc3VoDEz2wTn0TMFEyhWR3l/61ozg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:b6:52:22:5b:39:9a:7e:9f:7b:27:8b:7f:0e:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac9a51bea1b570ffa72d9c52d1a518c24bc78c02
Validity
Not Before: Mar 29 11:00:35 2026 GMT
Not After : Mar 30 11:00:35 2026 GMT
Subject: CN=63545360519d17086b1641ecd99d42d2a3d31734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:c5:1f:7f:31:1d:1f:4c:bb:cc:03:03:9b:3f:
d1:d5:69:9b:1a:95:c4:6b:ae:4e:16:2e:ef:02:20:
4c:25:4e:a6:03:f1:4d:3c:04:78:db:8b:9f:48:b9:
a9:91:a7:11:88:2d:8b:c5:c9:f3:ea:3a:97:80:4b:
8a:0e:b2:f9:1a:65:19:c3:15:dc:b4:ac:1e:07:80:
d4:cd:8f:11:51:0e:3a:74:54:8d:e8:d4:98:f4:e5:
ce:8e:3d:70:5b:98:73:9c:74:fd:81:e4:e9:d9:17:
2d:ed:2d:06:2e:80:3c:80:4e:28:46:05:0d:63:a1:
82:fa:27:e7:12:04:da:e7:9b:a7:a5:f2:77:cc:6a:
1e:7d:f7:b6:25:56:6b:c6:88:3b:ff:64:a2:9b:3a:
b6:ff:55:bc:39:0d:e8:e0:f0:47:28:82:ca:fb:4f:
e9:a5:4d:7b:ee:bf:fa:0c:8e:bd:9d:70:c6:69:1c:
cc:fe:93:47:b9:db:2d:f9:52:dd:40:df:23:fb:2d:
0e:e3:73:82:df:88:fe:74:21:e1:d0:6b:e2:e3:15:
94:25:f7:72:6a:99:7b:7d:6c:02:1e:24:04:20:c1:
e7:a3:82:48:cf:c5:13:af:f6:12:1e:a9:f3:05:81:
e9:db:f2:f8:d9:33:c4:1f:73:5f:00:4b:dc:7d:81:
d4:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:54:53:60:51:9D:17:08:6B:16:41:EC:D9:9D:42:D2:A3:D3:17:34
X509v3 Authority Key Identifier:
keyid:AC:9A:51:BE:A1:B5:70:FF:A7:2D:9C:52:D1:A5:18:C2:4B:C7:8C:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rJpRvqG1cP-nLZxS0aUYwkvHjAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/2de87a-0176-4f19-b0e8-ab5630211f7a/1/rJpRvqG1cP-nLZxS0aUYwkvHjAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:b5:04:9e:82:c0:42:40:bf:ec:76:c0:a3:10:5b:22:f0:c0:
7e:dd:d5:38:30:ac:bd:51:12:8b:9b:7f:1c:52:25:57:7a:68:
7d:44:4b:f6:ff:41:d3:2e:21:1a:53:7e:35:6e:61:12:6c:de:
43:dd:02:5e:e3:14:19:35:50:98:22:8e:28:94:15:79:a9:bf:
39:07:47:fd:64:54:f3:ed:45:55:42:fc:88:92:e4:7d:41:74:
7c:72:42:a1:63:45:c4:ea:dc:54:0b:d4:88:78:6c:30:05:cf:
d5:0f:90:90:de:8f:6d:d1:80:15:87:2a:b3:57:1a:44:2f:35:
a9:08:79:7d:07:9a:9d:0d:e8:27:bd:c2:7a:af:44:42:1d:e7:
88:29:13:16:cc:b2:80:96:86:40:c1:be:e7:92:3a:2e:44:8f:
b9:3a:07:19:59:95:a2:4c:cf:7b:3d:a9:85:db:16:31:dd:1d:
03:71:19:7c:25:39:c7:a6:48:2d:33:21:4b:00:86:d3:c8:6b:
5d:6f:c8:51:da:76:13:94:b0:d1:18:2b:9f:5a:fa:35:56:58:
e7:dc:ff:88:b1:95:c2:07:49:ba:d3:75:a6:c9:7c:4f:ad:9f:
8b:c5:30:a9:c1:4d:85:78:28:8c:9d:55:e8:1e:a0:0f:f7:e2:
dd:8c:b4:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:44:36 2026 by rpki-client