Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json)
Hash identifier: Kz3kCK+IfspGoCZW8+txiUtezgx9YANJrqwMiXtddv4=
Subject key identifier: 03:5A:1E:7D:0B:5E:09:D6:C5:99:E4:D0:59:6F:5B:23:CA:C1:C8:A1
Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d
Certificate serial: 019CAAC6F06A271E5866EFC5414CADBE0204
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
Manifest number: 0E63
Signing time: Sun 01 Mar 2026 19:01:30 +0000
Manifest this update: Sun 01 Mar 2026 19:01:30 +0000
Manifest next update: Mon 02 Mar 2026 19:01:30 +0000
Files and hashes: 1: p8Q1T6owao0UtFaI0uzL9fVOIDk.roa (hash: ETVPkMleWg5Tmk9ZZqBQNGmyAM72infgVzIH2DgSiBI=)
2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: kFdDJPqADCJcX9vnNKYizkcXTm1tvUL45aYKzvpYiIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:f0:6a:27:1e:58:66:ef:c5:41:4c:ad:be:02:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d
Validity
Not Before: Mar 1 19:01:30 2026 GMT
Not After : Mar 2 19:01:30 2026 GMT
Subject: CN=035a1e7d0b5e09d6c599e4d0596f5b23cac1c8a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:05:d0:7b:c1:b7:58:64:0b:10:69:48:29:2f:
c9:ef:e8:0b:0e:32:73:10:01:94:05:ad:df:dc:8a:
a9:4f:02:5e:9b:93:20:41:db:ef:b5:b1:77:af:3a:
0f:cd:85:d9:98:2e:4c:57:7d:63:8f:ce:04:a5:14:
4c:7c:93:dc:cc:2d:bc:a8:e7:aa:b5:1e:a5:fb:3f:
06:3f:55:88:6f:9c:32:31:9a:18:59:23:ac:7f:16:
4c:da:e5:a5:34:68:45:c2:ea:64:73:b0:e1:09:4e:
e0:88:f4:93:06:24:4b:6b:c3:90:94:10:fe:8f:01:
fb:8d:f2:88:02:19:6f:01:7a:db:62:5d:f9:6c:f1:
f6:8a:61:a3:00:06:ce:8f:cf:be:98:e9:c5:90:45:
76:e9:98:51:50:26:a8:ce:eb:2c:14:91:7d:74:50:
5a:8e:3f:4a:59:f6:94:42:99:13:85:e3:4a:a7:03:
e3:1d:0b:98:6c:80:9f:b0:3f:e1:4a:e4:65:f4:9d:
88:53:a9:71:66:a3:0d:25:87:4d:2e:93:41:9d:d1:
fe:13:e5:06:68:fb:48:a8:99:f7:1c:5c:52:a9:43:
70:6e:a1:2a:28:1a:eb:1c:fc:c6:44:2f:37:3a:40:
e3:ee:5d:12:40:74:ef:fc:96:24:23:bb:66:d2:8f:
73:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:5A:1E:7D:0B:5E:09:D6:C5:99:E4:D0:59:6F:5B:23:CA:C1:C8:A1
X509v3 Authority Key Identifier:
keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:e1:79:86:ca:e5:41:10:08:24:5e:f6:a3:f5:98:75:38:7a:
9a:c5:1b:28:2b:82:51:f9:bf:c6:fc:f9:9c:d0:b1:5d:78:f9:
27:e8:10:02:80:58:da:b5:21:c5:98:b9:f2:dc:28:83:14:57:
99:5e:83:a6:d8:fa:74:d5:39:cb:3b:1c:1f:8b:b7:05:07:b9:
4b:b0:9e:e4:f6:a3:59:a9:20:8a:be:81:7f:86:0d:e7:47:79:
99:b4:0b:fa:43:f3:e2:ce:10:76:13:6e:a8:f6:a5:ca:18:c4:
5a:f2:0c:9c:00:2f:40:a0:68:6f:30:2a:43:20:f3:bf:b7:eb:
be:ad:36:58:21:47:2f:16:61:69:ca:6a:88:e5:e7:1a:83:cd:
1a:9a:cc:c6:9a:ef:5e:8c:aa:89:ce:2c:8a:73:3f:e7:7d:ba:
da:a3:d1:37:30:3c:13:50:2d:f2:8b:87:96:29:43:f2:08:ab:
bc:af:5d:59:b1:af:47:92:fa:47:96:9e:1a:ca:8e:08:c7:b6:
15:41:db:26:82:d3:27:b1:62:fa:8a:ee:b9:57:1d:aa:23:20:
e9:5b:2d:a4:87:5c:af:4d:57:3a:0c:20:37:df:a5:b2:c8:08:
73:13:79:9f:34:e3:51:f8:7c:3b:c1:d5:fb:41:ee:a4:be:55:
68:b2:7d:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:47:46 2026 by rpki-client