Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
File: Mns0IMJQE3legioq5Q043B04J5M.mft (raw, json)
Hash identifier: 2/mkEYO7cL8QRag/1VHyl7KAK6mQuENa818tef49Ryw=
Subject key identifier: 35:7D:C1:DB:62:EA:7D:80:5B:B8:71:5C:E7:B2:87:1C:CA:3A:02:81
Authority key identifier: 32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
Certificate issuer: /CN=327b3420c25013795e822a2ae50d38dc1d382793
Certificate serial: 019CAC0FD5DE10FDCE28BB54E02EBEB01ECE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 01:00:44 +0000
Manifest this update: Mon 02 Mar 2026 01:00:44 +0000
Manifest next update: Tue 03 Mar 2026 01:00:44 +0000
Files and hashes: 1: Mns0IMJQE3legioq5Q043B04J5M.crl (hash: xye8yn0e/CncrhQQCBbhG6zFSRBwIuYiNsNDkeZMYY4=)
2: kYVHDkjWpBomTAXvZtm-ybsEw4g.roa (hash: 6LPY5S+V1vJP40u2fVqFKReWSp6f+FzxIr8cYQv0/dw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:d5:de:10:fd:ce:28:bb:54:e0:2e:be:b0:1e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=327b3420c25013795e822a2ae50d38dc1d382793
Validity
Not Before: Mar 2 01:00:44 2026 GMT
Not After : Mar 3 01:00:44 2026 GMT
Subject: CN=357dc1db62ea7d805bb8715ce7b2871cca3a0281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d3:d9:db:0e:e9:bb:97:a7:c0:07:be:3d:50:
0e:9e:4a:68:19:83:1d:92:9b:a2:e8:cc:6d:52:10:
33:e6:db:19:17:b1:55:0c:3f:54:48:b9:ba:68:be:
63:6c:bd:c1:2e:7b:ca:13:03:df:15:33:bf:b6:e8:
66:d1:39:06:fd:bc:55:26:ab:55:a2:88:fa:3a:2a:
1b:fe:8e:1f:a3:f5:c5:87:92:8d:e1:0c:fa:26:c3:
fb:59:06:af:4a:62:ac:c3:83:2a:a7:c3:f0:77:b5:
32:8d:18:5b:a1:e2:b5:aa:5e:d9:eb:d7:39:c2:03:
2a:24:b6:8c:1a:3b:34:d7:da:39:85:34:bd:96:c2:
cb:d6:96:80:9e:d8:e1:56:e2:e6:d5:c5:31:4e:bc:
f3:11:26:53:05:32:7d:0c:50:e8:a5:cd:fb:cb:c8:
f6:f8:b5:a3:00:a2:6d:e8:90:de:0d:fc:7b:c1:0a:
2b:23:85:18:7d:f4:6a:4c:01:d3:f2:36:96:15:c0:
82:69:1e:a0:5d:74:6d:f5:11:7f:5a:2a:0b:11:b5:
08:38:3a:eb:57:15:1d:4d:a4:32:93:f3:2d:25:78:
71:ef:74:7a:bf:b6:2e:43:58:75:85:3a:7f:f7:81:
01:1f:6c:70:a7:b1:28:8e:f9:57:44:67:51:e4:02:
c2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:7D:C1:DB:62:EA:7D:80:5B:B8:71:5C:E7:B2:87:1C:CA:3A:02:81
X509v3 Authority Key Identifier:
keyid:32:7B:34:20:C2:50:13:79:5E:82:2A:2A:E5:0D:38:DC:1D:38:27:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mns0IMJQE3legioq5Q043B04J5M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3631e0-56d7-4c29-95c4-6682b07fa947/1/Mns0IMJQE3legioq5Q043B04J5M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:f8:9d:3e:0f:aa:bf:8a:bd:09:54:18:14:1f:73:db:6e:86:
dc:78:7b:a9:2a:c1:08:e4:8e:72:f1:c7:71:25:6d:3b:9a:ff:
35:f2:92:54:d4:69:19:c9:85:44:1b:75:fd:e0:af:16:89:1e:
44:be:3f:94:98:bf:e4:ee:49:53:0f:22:c3:a3:84:a8:0d:a1:
8a:56:b1:09:e7:de:0c:59:67:6d:30:dc:49:e5:57:36:97:1a:
cf:14:2f:bb:ba:de:5b:ef:be:e5:2b:a7:e8:a9:fb:61:0f:91:
f7:a7:66:25:a2:03:6d:95:5c:51:88:c8:00:5c:d7:87:17:07:
f7:93:e6:94:bb:2a:82:7e:00:8c:8a:e4:7f:14:8b:dd:af:90:
6c:d9:44:69:81:1a:f3:b1:76:71:f8:d3:eb:04:8e:e1:70:7d:
08:34:be:77:f3:5e:ce:32:67:14:26:bd:21:dd:5e:33:27:54:
df:cb:44:d8:a3:40:04:a5:c3:15:24:37:a6:05:5b:f0:ba:db:
8f:7b:f5:bf:ce:3f:e1:80:27:91:d3:14:c2:76:62:b7:19:a1:
fd:0e:c7:f1:36:74:ab:73:1e:8a:4b:f4:d0:47:db:cf:b5:eb:
3d:8d:8e:2b:fd:84:55:f6:a7:c0:93:0f:42:ae:54:cf:c4:39:
f6:62:1c:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:00:36 2026 by rpki-client