Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
File: toF3Ytn8jxGwHPUjS25DHPvsG80.mft (raw, json)
Hash identifier: lUUBvPc9r69skepz0TAKkjcDpK+SZk8yTs2xcJKUyPo=
Subject key identifier: 02:85:FF:68:BB:0C:84:5B:C0:1C:80:7C:41:B5:41:D7:91:B6:1B:D2
Authority key identifier: B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
Certificate issuer: /CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Certificate serial: 019D39AF50537B62E16B00B514E27EC64A40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
Manifest number: 0BF0
Signing time: Sun 29 Mar 2026 13:01:23 +0000
Manifest this update: Sun 29 Mar 2026 13:01:23 +0000
Manifest next update: Mon 30 Mar 2026 13:01:23 +0000
Files and hashes: 1: TCoBlMxDiguWCq2X4av9S4gQXEQ.roa (hash: 6msXgBjxx6Yi7xW5PUuzbdt4jO41s2SyXCfLVxtofm0=)
2: toF3Ytn8jxGwHPUjS25DHPvsG80.crl (hash: zgBrgJXRu7IKi6/5z1eppQdJlnLka4fvHwhfav7g8DY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:50:53:7b:62:e1:6b:00:b5:14:e2:7e:c6:4a:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6817762d9fc8f11b01cf5234b6e431cfbec1bcd
Validity
Not Before: Mar 29 13:01:23 2026 GMT
Not After : Mar 30 13:01:23 2026 GMT
Subject: CN=0285ff68bb0c845bc01c807c41b541d791b61bd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:04:5a:46:31:a4:7a:f0:05:b6:81:67:3e:fc:
6c:85:56:3d:48:f0:4d:1f:e0:87:2a:2d:12:87:7c:
d8:20:e4:e6:09:34:a2:88:bd:f4:02:99:d0:20:47:
e0:30:ba:db:30:55:58:e5:70:eb:04:30:44:17:b5:
44:eb:fe:f0:29:41:64:f0:30:13:24:f4:e4:ed:e4:
4c:48:63:34:6b:6e:16:9c:73:d2:cf:ef:7a:be:e3:
b5:b1:eb:d1:3a:60:d3:d4:31:1b:b5:37:d1:76:a4:
83:a5:c8:9c:01:4f:4a:94:80:23:4e:74:bf:16:b1:
ea:48:03:3f:33:e3:c2:8e:d3:4a:5f:35:a6:eb:c1:
02:f7:e3:3e:32:ad:75:73:39:fe:ee:9c:ad:78:03:
1c:48:da:3b:df:fb:4d:5b:44:d1:8c:9c:15:c8:25:
5c:ef:4b:05:7d:38:0f:77:80:82:20:cc:cb:5b:36:
6b:20:01:6e:b8:e3:7b:be:79:c4:bb:ca:12:19:3a:
21:fa:68:4b:d1:fc:89:5c:c8:63:43:fb:82:ab:0c:
23:ff:b9:24:23:6e:31:10:58:de:69:60:40:69:b3:
5a:93:a2:e0:54:96:b7:38:9e:fe:f0:b1:e4:63:71:
56:a6:67:32:6c:bc:cc:5b:40:ae:71:45:19:71:35:
78:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:85:FF:68:BB:0C:84:5B:C0:1C:80:7C:41:B5:41:D7:91:B6:1B:D2
X509v3 Authority Key Identifier:
keyid:B6:81:77:62:D9:FC:8F:11:B0:1C:F5:23:4B:6E:43:1C:FB:EC:1B:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/toF3Ytn8jxGwHPUjS25DHPvsG80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/1e63a3-b306-413a-adf4-d3f265ad514f/1/toF3Ytn8jxGwHPUjS25DHPvsG80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:13:c9:73:67:77:9a:cd:c2:7d:51:f5:d0:6b:4d:2f:1f:15:
9a:fe:a8:66:e8:f9:bc:fe:fb:a4:86:cd:12:ed:ce:1d:44:4b:
e9:d5:3c:4b:48:fc:b0:33:39:5d:2f:1b:68:9c:09:79:7e:62:
14:6e:1b:33:37:e3:e3:bf:2b:93:76:26:cf:d0:63:ac:17:be:
53:17:9f:e2:a0:74:a6:f3:f4:7a:19:8c:58:d8:01:0b:bf:be:
70:cd:57:1d:a2:5f:98:75:f7:af:ad:e1:17:03:6e:f7:6a:d4:
11:34:79:75:67:ec:a8:cd:58:a8:4d:e4:f6:5d:75:ba:5c:b8:
f1:52:3c:9a:2d:dc:d1:e6:ab:f1:63:4c:f3:b6:3c:f5:9b:23:
0f:57:55:62:f7:eb:70:51:ac:74:69:23:8b:a3:25:e6:e0:69:
a6:3a:0c:20:0f:52:55:d5:b0:59:56:c1:83:a7:b7:c4:a8:9f:
2d:8c:65:3a:fe:2f:df:14:20:4a:c9:68:d0:53:23:21:cd:f6:
4a:83:a9:c2:46:45:5d:ab:9d:67:d1:fb:dd:ba:2e:8f:6c:78:
37:26:ee:f3:9b:30:4c:7e:05:44:2d:03:87:9c:fb:06:52:f6:
75:f1:a7:56:ab:56:3a:c9:69:26:9b:1c:74:9f:8f:d9:c1:bc:
ca:f5:c1:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:46 2026 by rpki-client