Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
File: 1-qWsXSKtkHinLhNplihyR-nx4TE.mft (raw, json)
Hash identifier: F+IzX8egKtzECf4EFqcpLW9cP68XIGkq9obc824lOF8=
Subject key identifier: DF:D3:34:BD:C2:45:13:20:F0:6D:47:B7:65:DE:7B:4C:BD:D4:44:7A
Authority key identifier: FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
Certificate issuer: /CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Certificate serial: 019D382DF16828B21447F08FC0F2D6CE9897
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
Manifest number: 13BD
Signing time: Sun 29 Mar 2026 06:00:28 +0000
Manifest this update: Sun 29 Mar 2026 06:00:28 +0000
Manifest next update: Mon 30 Mar 2026 06:00:28 +0000
Files and hashes: 1: 1-qWsXSKtkHinLhNplihyR-nx4TE.crl (hash: iBewPYs/iTsKciTDeww39j5r7oXCvOTcPixH02OmFvk=)
2: Sg5TLd0LRzU1Kyw2aXOACqsG4yA.roa (hash: 4vlEE5O6rdTk7GzU24AHkksV5knXEZvyv5QSu+1PBWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:f1:68:28:b2:14:47:f0:8f:c0:f2:d6:ce:98:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Validity
Not Before: Mar 29 06:00:28 2026 GMT
Not After : Mar 30 06:00:28 2026 GMT
Subject: CN=dfd334bdc2451320f06d47b765de7b4cbdd4447a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:21:46:e3:e5:41:54:31:22:20:cd:cd:e5:3e:
b4:14:a8:77:37:03:d5:47:b2:d6:c4:25:4e:69:83:
73:c1:3b:04:ff:ed:35:cf:2b:39:25:69:94:ef:e5:
f9:e6:61:6f:5c:0d:4f:82:d4:bf:ac:7a:51:f6:6b:
0c:fa:62:e2:43:e4:1c:76:f6:37:b3:7a:cc:5c:93:
a3:d3:c3:09:89:97:7e:e5:03:66:c8:81:df:1a:d7:
28:ef:7f:8a:16:d1:ec:b0:b3:fb:fc:d0:37:65:64:
bd:1a:ba:a0:bf:d2:d4:95:60:9a:94:9b:5f:a1:57:
59:f1:2f:cf:12:78:e9:d8:2d:1d:70:cb:36:8c:92:
b2:77:f2:aa:7d:94:7f:5f:39:dd:d9:48:ce:aa:71:
3d:7c:dd:ef:66:b1:06:33:b7:1e:78:76:be:f7:5e:
ab:87:81:8c:ea:c6:35:77:ae:f6:f7:16:4b:87:2e:
57:d9:21:9a:cd:4d:75:2d:e1:fe:a5:07:7b:04:f8:
aa:fc:f9:32:0a:6f:a0:6d:b7:b9:de:86:34:b8:e3:
ae:21:33:dd:f0:f6:2e:ab:f3:da:b7:12:f5:02:f5:
06:d8:36:99:6f:12:e2:f4:7f:7c:23:62:4a:53:64:
63:96:38:20:a2:e6:d3:a9:06:91:d1:23:54:ce:1b:
2b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:D3:34:BD:C2:45:13:20:F0:6D:47:B7:65:DE:7B:4C:BD:D4:44:7A
X509v3 Authority Key Identifier:
keyid:FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:2e:a3:7c:e0:c9:e4:8f:38:2b:01:be:70:10:93:f5:bf:18:
37:48:62:ec:68:6d:22:26:1c:4a:b3:f1:31:76:c2:79:62:44:
5c:30:d3:49:e0:a8:72:6d:bd:df:7d:bf:4e:99:1a:5f:f5:72:
95:08:c6:9b:17:bf:45:67:d3:e0:05:9a:7b:4d:7d:34:1c:89:
17:f3:af:28:35:16:3a:46:9b:4b:d5:18:df:01:b5:f0:48:a1:
4f:d1:63:96:c1:52:dd:69:6f:fe:b3:7d:25:24:1c:58:b5:42:
6f:08:32:2e:bb:55:18:f8:90:08:7a:07:0d:3f:4a:98:93:6c:
f4:99:5e:9d:3a:16:b0:82:c3:d4:57:81:b5:24:9f:11:0e:16:
b1:a7:d9:14:e7:1e:10:7b:75:0f:1c:46:9c:a4:ce:87:94:50:
8b:5b:e1:e1:0a:6f:3d:ab:66:1f:cd:65:29:f5:96:29:b7:ef:
f5:c3:65:3a:be:17:f6:21:ee:b4:96:6d:48:e9:63:99:37:f9:
b4:3d:7e:fb:ae:03:fb:bb:f8:cb:c3:8e:63:d9:77:90:4e:48:
9d:f4:67:5d:5e:8b:54:b4:ae:59:d0:21:c4:a0:b1:a6:fb:74:
b8:3c:a6:fb:e6:48:02:05:f6:da:e0:db:da:b5:f3:ff:13:ec:
74:bc:a5:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:14 2026 by rpki-client