Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
File: rN3HO1mh_N7iLiWCTUCswnKGqlI.mft (raw, json)
Hash identifier: JdtCYLpypfIcK6bQZTcJATtwKGIOgj9dJVueHu1flzA=
Subject key identifier: A7:8C:21:15:E1:9E:BB:3A:CD:2F:38:A6:92:88:5B:15:36:CF:18:1B
Authority key identifier: AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
Certificate issuer: /CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Certificate serial: 019CAA21F4C8EC958AA95044B4D906960998
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
Manifest number: 049F
Signing time: Sun 01 Mar 2026 16:01:17 +0000
Manifest this update: Sun 01 Mar 2026 16:01:17 +0000
Manifest next update: Mon 02 Mar 2026 16:01:17 +0000
Files and hashes: 1: oMb2k7Oz9unm3siEKObsvSGOu5s.roa (hash: pGiHyUdRro6M/TUFejm603qJXDKgL9TMHqLZBCWVjz4=)
2: rN3HO1mh_N7iLiWCTUCswnKGqlI.crl (hash: ZD0k5LWQQAneD0Epwy/dWXkScAdUJyI5fj08QPocK4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:f4:c8:ec:95:8a:a9:50:44:b4:d9:06:96:09:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=acddc73b59a1fcdee22e25824d40acc27286aa52
Validity
Not Before: Mar 1 16:01:17 2026 GMT
Not After : Mar 2 16:01:17 2026 GMT
Subject: CN=a78c2115e19ebb3acd2f38a692885b1536cf181b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ce:08:eb:01:df:45:52:88:dd:70:b2:22:a1:
21:be:96:56:a5:58:48:52:32:96:ac:14:00:15:cb:
2f:82:00:96:32:2a:b4:ec:4b:e3:d7:24:32:7e:88:
2c:3b:c5:8e:e5:50:62:7a:fb:d9:b2:e0:22:af:92:
e7:16:d1:ee:14:79:b1:b3:a0:36:a0:ce:dd:11:bb:
46:f3:07:fb:3e:bd:09:b2:c2:cf:c6:4b:76:1e:30:
97:5f:00:2c:47:e6:6d:b4:bc:b3:aa:6a:47:8f:12:
dc:b0:02:03:4b:5e:ee:97:82:e6:f0:1b:9f:cd:3c:
5d:1f:87:df:11:c1:3e:b7:69:a9:2f:bc:44:f5:52:
bb:b5:10:d2:52:bf:33:78:35:e1:f5:62:31:e1:c5:
38:08:a7:3e:ff:f3:46:7a:55:9b:75:30:f5:d6:9f:
8d:6e:dd:29:37:0e:1e:96:dd:ee:38:4a:7d:0f:b2:
a5:bf:78:1c:c9:e8:ea:fe:36:f3:84:28:c7:bd:26:
dd:5b:9e:de:8a:62:f8:39:d3:82:d3:3f:7c:86:83:
35:15:46:97:26:a2:a0:7a:00:7f:ed:6b:4e:66:fc:
94:a5:30:c7:16:72:99:61:d2:53:8b:47:f3:9f:62:
ae:c0:9a:18:ce:1e:3f:08:1f:22:91:48:de:04:4e:
4a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:8C:21:15:E1:9E:BB:3A:CD:2F:38:A6:92:88:5B:15:36:CF:18:1B
X509v3 Authority Key Identifier:
keyid:AC:DD:C7:3B:59:A1:FC:DE:E2:2E:25:82:4D:40:AC:C2:72:86:AA:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rN3HO1mh_N7iLiWCTUCswnKGqlI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/8788e5-8ab8-43e9-9dab-a0ec84a31393/1/rN3HO1mh_N7iLiWCTUCswnKGqlI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:7c:5b:ba:dd:65:5a:92:01:c7:e5:de:33:6b:35:5f:e3:08:
cf:22:40:4e:bc:b2:1d:a5:6c:d0:4f:23:95:d3:eb:6d:98:07:
3f:d2:a3:5f:6b:1f:a2:3a:16:02:9a:69:b8:48:41:81:46:b5:
79:5e:91:99:ad:7b:bf:22:51:d5:3b:8a:9a:11:90:2b:a2:55:
61:21:cb:82:0f:a5:24:1c:62:3b:4e:d3:8c:bf:8e:4e:30:c9:
c7:d1:77:7e:c9:e2:38:a0:ed:51:6e:be:59:f3:72:63:3d:61:
73:90:7f:15:95:4e:80:c4:ef:60:c5:c5:6b:85:16:88:17:3b:
c6:b9:b3:8b:82:3d:96:dc:d0:59:36:72:35:00:d6:51:44:8e:
2e:73:83:62:1c:9b:a5:33:3c:50:ac:ca:85:a7:32:3c:83:b9:
ee:ef:fa:fe:fd:f3:b0:6f:db:8f:80:1a:e1:39:7d:cf:8e:9a:
7c:41:45:cb:5c:96:38:74:f7:03:eb:2b:67:4a:dc:6b:c6:bd:
3e:9f:0d:31:5e:d1:4e:61:5e:ab:3b:08:bc:a9:a0:7e:23:de:
fd:c4:5c:74:7a:2b:eb:ec:d3:cc:d9:52:07:d1:97:05:7a:6a:
16:11:fa:9a:26:b7:23:cd:38:62:48:a9:81:9f:f1:7f:aa:05:
b1:95:86:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:37:10 2026 by rpki-client