Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
File: 8zXtZqwB15F1zk149nKh_kcgN4A.mft (raw, json)
Hash identifier: Aw/7djNdS28PXXM5rlxY47rMKOl0jmQp02651WaUSu4=
Subject key identifier: 27:75:27:FF:CC:FF:2D:F4:F1:0F:0C:D5:79:3B:AC:BE:88:8A:09:AA
Authority key identifier: F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
Certificate issuer: /CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Certificate serial: 019CAD22BA63D3B936D422D3D26E1E3DC576
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
Manifest number: 020C
Signing time: Mon 02 Mar 2026 06:01:00 +0000
Manifest this update: Mon 02 Mar 2026 06:01:00 +0000
Manifest next update: Tue 03 Mar 2026 06:01:00 +0000
Files and hashes: 1: 8zXtZqwB15F1zk149nKh_kcgN4A.crl (hash: lu9Rdk36OvGifvt9BT3eoAOi1IbZ2adQt7TeXpqoSMA=)
2: VpiFwK0hsjfTbGKdlZz4M450A4o.roa (hash: 7nG4whDnBMU971FoyHXyhGJf7PxhrWgEoIfy9EmmD2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:ba:63:d3:b9:36:d4:22:d3:d2:6e:1e:3d:c5:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f335ed66ac01d79175ce4d78f672a1fe47203780
Validity
Not Before: Mar 2 06:01:00 2026 GMT
Not After : Mar 3 06:01:00 2026 GMT
Subject: CN=277527ffccff2df4f10f0cd5793bacbe888a09aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0e:fb:25:12:88:b0:4b:68:90:a0:7a:5e:cd:
ac:b6:44:36:a3:19:e2:d6:23:1c:b1:4b:f6:49:36:
05:87:da:63:43:a9:c3:8a:4d:76:0f:e7:5c:b6:ba:
57:ed:9d:82:bb:fe:f9:b5:c4:63:3b:2f:ae:35:08:
3d:2a:8a:5c:9e:6f:fb:6c:8a:6a:7c:ff:72:97:82:
f1:02:93:74:24:7b:65:8d:8c:bf:55:cf:8f:f2:61:
91:58:95:60:1a:ee:e3:19:ce:b4:7a:30:9d:ca:09:
53:09:cc:3e:94:b3:40:62:40:62:94:2c:f2:0b:62:
d8:fc:06:c1:36:f2:cb:c1:25:82:ed:7c:d3:5f:19:
6e:cc:29:04:d7:b3:05:9a:2a:01:b7:44:29:a5:cc:
ee:be:02:44:94:45:dd:b4:18:eb:18:a7:d4:38:8f:
de:18:d5:de:c8:82:1d:b9:30:32:fb:99:c8:e6:97:
f1:b6:cc:65:e8:5e:e8:d1:cd:cc:7b:65:97:37:b7:
d5:12:3e:90:f6:18:58:f3:06:e8:2d:8d:7b:05:6e:
49:05:3b:81:fa:7e:7f:08:06:df:6c:0b:6f:61:60:
2e:5e:27:db:92:9c:d8:b8:9b:17:50:c3:7e:b2:e1:
0e:e4:03:68:df:8b:cd:c3:38:f5:6b:29:f7:6b:0b:
49:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:75:27:FF:CC:FF:2D:F4:F1:0F:0C:D5:79:3B:AC:BE:88:8A:09:AA
X509v3 Authority Key Identifier:
keyid:F3:35:ED:66:AC:01:D7:91:75:CE:4D:78:F6:72:A1:FE:47:20:37:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8zXtZqwB15F1zk149nKh_kcgN4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/798889-29d4-4f53-a041-50acbaeec7ca/1/8zXtZqwB15F1zk149nKh_kcgN4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:3e:e9:d0:c1:b7:1e:54:31:0f:46:38:e5:b8:93:03:ff:4d:
88:6d:0e:cd:9d:76:58:d6:72:b1:6e:c1:27:bd:ec:51:ca:2e:
84:6f:53:16:ce:50:1f:91:a4:44:ef:b0:1b:46:d9:a8:a8:e9:
81:71:73:b6:7f:a8:7a:d6:5e:47:d1:8a:9e:1f:30:5d:a7:5b:
14:9c:52:3c:f1:fd:53:7b:f7:4c:67:7f:65:3b:dd:07:60:87:
2c:e9:75:e2:70:80:18:cd:69:c4:6d:a8:6b:14:5b:30:13:75:
0c:4b:e9:7b:5e:e8:24:ae:83:a3:70:81:fb:42:d3:88:89:78:
b3:e9:72:7d:c1:58:12:0f:fd:e6:74:c8:c7:1f:a0:11:b8:22:
ee:59:f6:28:00:0c:ee:cc:5f:22:8c:1d:3d:8c:9b:c4:42:2b:
1f:7c:96:8d:cb:08:b4:24:ef:3e:ed:25:78:70:9e:d7:87:4b:
61:ac:55:74:bd:c7:65:ef:1b:d6:40:71:10:34:35:00:8d:19:
2e:ec:5e:38:c2:00:64:77:d6:99:a5:80:02:41:70:79:fb:5d:
bd:7c:a8:f3:47:98:51:b6:6f:45:98:ab:b1:e0:72:8a:58:f8:
72:e0:95:98:a0:4e:42:69:67:ae:93:0d:1f:70:4e:33:2b:b1:
6b:38:07:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:51:49 2026 by rpki-client