Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
File: F80TGMkZxu8W0kynhGKgt94UugU.mft (raw, json)
Hash identifier: zxyeibri+ReGM7O44eIqFsMnfrRC+8KEO4CAvf9azbI=
Subject key identifier: 44:F5:A1:DF:36:1F:1F:DE:24:1F:22:D1:66:A4:FF:CE:65:61:B0:65
Authority key identifier: 17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05
Certificate issuer: /CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05
Certificate serial: 019CB091BF0D14664CAD0ABBD9D365684347
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
Manifest number: 01D3
Signing time: Mon 02 Mar 2026 22:01:07 +0000
Manifest this update: Mon 02 Mar 2026 22:01:07 +0000
Manifest next update: Tue 03 Mar 2026 22:01:07 +0000
Files and hashes: 1: F80TGMkZxu8W0kynhGKgt94UugU.crl (hash: poL7GxydFsaV3syR8wQ+VSxHWDTpQpLlftQ/Yi0N5sY=)
2: pf5Zf2vmMKwv3V7bxVEW72mA5Ro.roa (hash: 25kq67NwiLZpvtq/lLKi0cW1juljgXPpgbg4/hkoeJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 21:16:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:91:bf:0d:14:66:4c:ad:0a:bb:d9:d3:65:68:43:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05
Validity
Not Before: Mar 2 22:01:07 2026 GMT
Not After : Mar 3 22:01:07 2026 GMT
Subject: CN=44f5a1df361f1fde241f22d166a4ffce6561b065
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b3:9b:42:a3:cf:a5:39:52:ea:db:20:e0:b6:
7a:d3:b5:02:b6:a5:12:2a:02:f3:1c:16:a2:75:c6:
3b:85:19:86:45:57:fc:f9:22:03:2e:a7:68:ed:58:
45:08:e4:9d:72:f0:d6:99:c5:4b:f4:aa:07:2a:9d:
42:a1:46:11:63:51:d2:98:bb:c4:8e:d5:24:94:0b:
7f:7c:00:bb:7b:82:bb:d9:32:4c:79:e8:f8:83:30:
ae:de:25:e9:c1:ba:60:53:8d:9e:bb:aa:b7:9a:77:
0e:b3:f5:04:2c:6d:db:09:34:42:81:89:24:12:f7:
f3:0c:58:01:25:78:fd:6c:fb:35:c8:5c:5f:c4:02:
a4:56:98:a0:5d:ff:69:fb:68:cb:cb:f4:af:92:4d:
7a:f0:47:44:0a:09:81:12:ea:86:42:99:e0:d7:f6:
5e:2a:c2:75:8b:62:b6:31:8e:09:d7:2b:18:4c:b1:
89:e2:ca:a1:cf:a5:be:da:c9:ba:98:a6:8d:07:54:
12:3b:31:b1:e2:50:fd:3b:74:37:a4:b1:27:c3:0d:
8f:ad:c1:bd:18:6f:52:e5:49:ac:ca:08:b5:55:d8:
39:32:bc:a2:1c:8c:36:10:7d:7b:8a:8b:e9:09:f4:
ef:49:cf:ad:58:55:ba:fe:af:bf:1c:29:88:d3:a4:
44:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:F5:A1:DF:36:1F:1F:DE:24:1F:22:D1:66:A4:FF:CE:65:61:B0:65
X509v3 Authority Key Identifier:
keyid:17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:aa:24:8a:47:71:c6:26:54:46:ff:5f:52:ff:bd:b7:f3:f1:
58:99:86:a9:9a:a9:af:70:64:5b:2b:c1:8b:d1:22:d0:41:f0:
23:6d:69:52:b3:31:75:ff:66:42:47:2f:b7:fb:cc:6b:3f:e3:
12:f0:46:38:ed:b9:26:95:18:7a:fc:db:95:08:a7:b8:94:8f:
64:d7:19:76:5a:06:f6:2f:aa:a4:c0:02:d3:27:fe:30:64:75:
94:06:bb:94:7d:4e:d0:83:43:aa:27:22:96:4f:62:96:68:23:
f4:55:bd:e5:5a:c1:7e:d9:c6:1d:1f:a2:aa:13:50:bc:95:e7:
44:79:54:dc:75:d6:9a:d1:20:a0:29:d1:cd:d0:43:c2:04:d6:
50:a6:9d:94:f3:36:99:71:a9:d1:3c:f2:e4:92:bc:bc:6c:28:
d2:99:dd:38:ae:5c:4c:ee:70:23:33:fd:4a:1d:a5:e2:f3:49:
ff:a8:a2:71:7a:49:42:88:2c:8a:1d:0a:4e:f3:54:50:46:c6:
2d:9c:51:66:1e:da:b8:ac:c7:4b:ce:b8:04:8a:a5:ba:e0:23:
09:9f:00:89:4e:f1:ca:31:b0:32:88:22:84:5e:54:4a:60:17:
da:83:78:8c:c8:65:b3:ac:91:c3:e4:cf:19:af:b2:37:c0:75:
8e:80:29:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 04:17:16 2026 by rpki-client