Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
File: d8LYpgGX_HveZPw_rRDrLaT-h3k.mft (raw, json)
Hash identifier: UPJgQRRBRpM/HijwGeLggEx4r4EWgLENHoikiaMSbFY=
Subject key identifier: 7D:E7:10:FB:AB:3F:08:3C:03:8E:ED:B2:5A:91:4B:7F:30:6A:90:10
Authority key identifier: 77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
Certificate issuer: /CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Certificate serial: 019CABD93B7F3ABDB0E0C61745736EB9F54A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
Manifest number: 089C
Signing time: Mon 02 Mar 2026 00:01:06 +0000
Manifest this update: Mon 02 Mar 2026 00:01:06 +0000
Manifest next update: Tue 03 Mar 2026 00:01:06 +0000
Files and hashes: 1: aJHKOA-DMpMHSd964JXfuSmBfY0.roa (hash: oXACImzHioTx7c3QtWHlpndieWC52eNkX76flIoPyqE=)
2: d8LYpgGX_HveZPw_rRDrLaT-h3k.crl (hash: WFyOXtvMhOSMTCxy8QzliTNNNKwMUN+bADOUUOcDb+s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:3b:7f:3a:bd:b0:e0:c6:17:45:73:6e:b9:f5:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Validity
Not Before: Mar 2 00:01:06 2026 GMT
Not After : Mar 3 00:01:06 2026 GMT
Subject: CN=7de710fbab3f083c038eedb25a914b7f306a9010
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7d:f5:1d:2c:0e:ef:1e:db:b6:6d:cc:f7:f9:
9f:41:08:56:22:dd:3b:1d:df:39:2f:4c:7d:09:e0:
ba:ba:2e:6b:35:0b:9e:03:3e:b4:3f:a6:ad:01:27:
f6:6e:ea:71:2b:ee:23:58:e6:2b:a8:05:9d:9b:b0:
f2:27:9d:c5:18:ca:2f:07:20:a7:2b:22:23:50:05:
5e:04:e5:3c:05:da:58:fc:09:c4:43:f7:ea:13:1d:
a6:b2:86:f7:8c:d5:44:7e:f1:fe:9a:8a:6b:70:d7:
39:08:29:93:69:27:03:4d:70:53:e3:bd:e6:e5:7a:
56:3a:a8:e1:04:db:a0:67:28:a6:1b:6a:53:47:31:
66:7d:0b:bc:70:6a:13:12:65:dd:8d:be:3a:5e:52:
34:5b:5e:ec:8d:4d:5b:27:7c:f4:f1:df:3b:45:6d:
4c:35:8e:63:03:1d:7c:dc:f0:6b:7d:f2:56:20:2a:
15:8b:f7:26:7e:47:dc:10:25:b1:34:c1:79:38:ab:
55:bd:18:ad:57:1f:0d:63:95:b7:df:a5:5a:75:b0:
88:a3:37:93:bf:53:81:da:16:ac:d5:fc:b0:29:d3:
e6:6d:d2:33:07:0a:57:09:a7:43:3c:92:da:f0:32:
14:55:1d:80:43:c8:26:79:73:ae:63:6c:81:56:46:
ba:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E7:10:FB:AB:3F:08:3C:03:8E:ED:B2:5A:91:4B:7F:30:6A:90:10
X509v3 Authority Key Identifier:
keyid:77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:d8:29:46:d2:c4:ab:22:dc:d9:93:1e:b2:f6:9e:64:b0:5a:
5e:dd:19:f5:7e:b3:fe:7d:29:35:90:1c:d8:0a:92:e7:76:ad:
f4:f7:37:0a:c0:fd:87:90:1f:82:1e:32:f2:8e:e2:70:0e:45:
a9:a6:68:c1:01:a4:3e:ed:d2:50:6b:92:89:f5:59:15:b6:69:
b2:5a:3f:5a:62:c2:51:6d:a7:cc:28:d0:e4:aa:08:72:3f:c2:
53:53:8b:63:54:5c:63:6f:84:3a:d6:8f:bc:25:a2:39:08:d1:
94:3a:df:42:84:5f:3b:fe:29:ff:b0:78:5c:54:fc:e8:d4:11:
2b:32:d0:0d:04:ab:1b:24:c2:7f:86:06:1b:2b:d1:43:ec:ce:
62:78:4f:ee:fd:06:54:20:89:cd:65:ce:65:f9:34:07:19:b0:
d4:58:d5:15:1a:d3:6f:a7:c1:31:cf:71:dd:1a:55:85:08:ee:
7a:3e:13:ff:39:dc:6f:e4:2c:85:cd:e8:c2:45:9e:98:44:21:
75:d7:e2:bc:1d:6f:c4:b1:7d:8a:9b:f5:2e:c8:67:4e:67:1f:
40:54:51:35:fb:4e:06:ee:d1:d6:1c:4f:f2:d3:1d:ed:3d:c1:
84:2d:24:12:09:41:18:a6:04:cb:a8:b2:8c:1c:20:3e:15:bc:
0e:23:64:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:13:22 2026 by rpki-client