Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
File: a1zOqpdLKQWssmKvRSwCKAMWqrs.mft (raw, json)
Hash identifier: GnIFL8DvPpjNvCynjPGfHjyDUlewsG2QZaDjeI1gqrg=
Subject key identifier: 9D:6F:A1:ED:55:57:B4:EE:83:3D:4C:4F:24:3B:A7:F8:2B:C9:86:42
Authority key identifier: 6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB
Certificate issuer: /CN=6b5cceaa974b2905acb262af452c02280316aabb
Certificate serial: 019D3789B465337EC3418F1E3A672CE1D9F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
Manifest number: 07CD
Signing time: Sun 29 Mar 2026 03:01:04 +0000
Manifest this update: Sun 29 Mar 2026 03:01:04 +0000
Manifest next update: Mon 30 Mar 2026 03:01:04 +0000
Files and hashes: 1: 6jji6GeuDi-28zZLjTZ0rqsVQ5g.roa (hash: jhgAVRcRyQTR4kfw/aMMXP8njp+EzzXJbfCtIYZkQOE=)
2: a1zOqpdLKQWssmKvRSwCKAMWqrs.crl (hash: 8cQ/O44d27/shV+Bu5iaKBZ8nVVry7ELH6aMNdKkKTQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:b4:65:33:7e:c3:41:8f:1e:3a:67:2c:e1:d9:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5cceaa974b2905acb262af452c02280316aabb
Validity
Not Before: Mar 29 03:01:04 2026 GMT
Not After : Mar 30 03:01:04 2026 GMT
Subject: CN=9d6fa1ed5557b4ee833d4c4f243ba7f82bc98642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:17:b5:ed:b9:9e:53:28:1e:5d:4b:2f:bd:c5:
2c:37:6b:5f:b0:60:a5:4e:18:8f:c2:7a:cc:20:5b:
c6:ea:16:04:a9:89:2a:86:8c:1e:a0:c7:b2:0c:9b:
3c:d2:9e:77:aa:e1:13:7f:1b:95:a4:a0:10:a9:09:
3f:b1:09:b9:c3:14:9f:c8:0a:29:47:9a:06:39:5c:
18:a0:25:38:47:93:cf:f3:a3:70:30:5d:ee:41:2f:
26:ce:04:8c:96:fd:b5:0b:5b:bc:86:b0:31:3a:68:
47:07:ce:a7:d9:0d:0d:2d:23:8c:4c:a3:4a:c0:3d:
61:fa:54:65:a8:ff:81:c6:ba:22:73:63:8b:8b:43:
52:1d:52:98:bc:1b:46:d3:aa:da:42:38:cd:fa:cd:
df:65:a6:14:20:cf:bf:5a:e0:a0:22:ef:6d:35:3e:
28:fc:09:91:6c:71:fc:80:a7:c4:56:15:cc:e3:df:
44:05:33:a3:79:a1:4b:7a:97:16:29:f5:5c:86:4b:
11:25:c2:a8:3e:64:b2:ee:7a:d4:1b:79:31:cb:91:
e0:50:38:2a:15:e1:de:f0:aa:97:51:d0:b8:89:bc:
e1:1f:70:83:7c:3f:5d:28:17:ce:66:4a:2b:a9:84:
e7:63:58:67:ef:e1:07:52:7f:55:5d:6e:f9:d8:12:
14:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:6F:A1:ED:55:57:B4:EE:83:3D:4C:4F:24:3B:A7:F8:2B:C9:86:42
X509v3 Authority Key Identifier:
keyid:6B:5C:CE:AA:97:4B:29:05:AC:B2:62:AF:45:2C:02:28:03:16:AA:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1zOqpdLKQWssmKvRSwCKAMWqrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/39f1e0-3627-492f-ae93-8b07acd07c94/1/a1zOqpdLKQWssmKvRSwCKAMWqrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:33:a3:87:8f:12:b5:ed:1c:15:c4:88:54:37:f5:c5:55:4b:
0e:90:7e:41:44:d8:37:4a:f1:93:ee:56:74:7d:a0:ff:3e:11:
e1:ec:ca:b0:b6:20:0b:31:24:c0:a7:93:4f:fb:da:8f:dc:6c:
63:4c:82:d6:bc:dd:c8:4f:e3:58:42:4b:50:37:8d:7b:e7:17:
44:1d:5e:45:18:e8:08:27:e0:b2:7e:e0:3b:f9:96:df:3a:c0:
5e:9b:ef:10:04:2f:e0:9a:e4:7c:f0:13:92:41:47:c6:2d:47:
96:aa:3a:6f:04:59:d1:a0:4a:23:0c:f9:f6:ee:44:de:fc:b4:
fd:66:ad:a6:3e:29:0f:3f:27:6b:26:02:b6:8c:81:af:e8:d4:
b1:93:c5:48:dc:eb:e8:79:96:c6:7f:f8:98:f4:f6:6e:00:c9:
cf:d6:ae:bf:5d:d0:a2:b7:a8:55:f1:18:7c:79:d6:5d:e3:88:
0c:00:a6:90:23:7a:18:a5:0d:ba:2c:68:b4:f2:07:5e:01:21:
e5:eb:7a:43:21:be:8f:00:1f:f3:43:e1:e5:cd:a5:b4:81:9a:
01:41:83:4a:c4:c3:f7:0f:75:5d:06:7b:6f:c2:42:e5:d6:7c:
18:0d:c7:03:d6:0d:28:47:e9:d5:d3:6a:79:47:c2:7f:1f:ed:
f7:0f:56:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:37:39 2026 by rpki-client