Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
File: 8uOrazEY4L3g5kiOa-1slpQeDoQ.mft (raw, json)
Hash identifier: SNDLD6RkSkVBdBrvXQ5iqwZcYNQzvMF/ScrxklJLVsw=
Subject key identifier: FA:82:2F:5A:3F:4A:D8:B4:07:D7:66:66:3A:65:FE:BA:FD:9F:61:9F
Authority key identifier: F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
Certificate issuer: /CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Certificate serial: 019CACEB4FD6C2AA959A13F26F50197A3F15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
Manifest number: 0CDD
Signing time: Mon 02 Mar 2026 05:00:28 +0000
Manifest this update: Mon 02 Mar 2026 05:00:28 +0000
Manifest next update: Tue 03 Mar 2026 05:00:28 +0000
Files and hashes: 1: 8X-vY96aKKHfj_txGbHwT7KRdWc.roa (hash: 0WIWIIW0b9953A6VR0CU69w8OMoDd9V6tcRbkVExZv4=)
2: 8uOrazEY4L3g5kiOa-1slpQeDoQ.crl (hash: +ujHITMEIf7utTeYxQeryY7CgAiSQcV2Y6oHpRaR5aw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:4f:d6:c2:aa:95:9a:13:f2:6f:50:19:7a:3f:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2e3ab6b3118e0bde0e6488e6bed6c96941e0e84
Validity
Not Before: Mar 2 05:00:28 2026 GMT
Not After : Mar 3 05:00:28 2026 GMT
Subject: CN=fa822f5a3f4ad8b407d766663a65febafd9f619f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:09:75:60:49:0e:c5:1f:e7:80:c3:8b:c4:34:
58:5d:a4:9d:41:83:31:4d:b5:02:dc:7b:59:1e:35:
e8:c7:67:20:ac:c8:2b:fc:d3:fe:fc:6c:3d:5a:0e:
b3:f9:85:10:71:7c:76:a9:08:dc:35:02:d9:d7:2e:
2e:76:cf:26:d2:c6:b3:cc:ba:68:03:e9:20:f8:b0:
8c:d5:c0:c4:cd:8c:74:fe:56:cb:11:35:90:36:b6:
4b:0e:69:eb:9a:ee:52:56:6a:ca:47:38:59:c9:12:
c3:38:fc:5e:87:0f:e0:ae:6f:5f:37:f4:a1:b0:86:
0c:f6:3b:32:e9:6e:f9:33:2d:31:83:53:11:0d:1f:
a8:4a:9d:94:96:78:18:fc:0a:ee:8e:8f:6b:76:3a:
b6:d9:fc:ae:4f:02:60:85:b1:16:80:4d:64:60:0f:
a0:0a:0c:be:26:51:d0:c4:bc:18:91:2f:1f:07:ee:
62:b6:8a:e3:6c:bb:22:20:5a:5d:b2:c1:ee:58:09:
76:a5:a2:30:cf:38:60:72:28:e5:62:8d:48:c2:21:
35:ea:dc:80:47:f6:ef:ed:65:cc:a4:1c:0e:89:30:
5d:7e:ff:af:d6:64:87:27:14:78:98:c1:24:5d:43:
6d:fb:62:3a:f4:1f:0b:89:01:23:3c:e0:93:9d:6d:
3c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:82:2F:5A:3F:4A:D8:B4:07:D7:66:66:3A:65:FE:BA:FD:9F:61:9F
X509v3 Authority Key Identifier:
keyid:F2:E3:AB:6B:31:18:E0:BD:E0:E6:48:8E:6B:ED:6C:96:94:1E:0E:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8uOrazEY4L3g5kiOa-1slpQeDoQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/36c4a3-6e1d-4614-8f90-83b03870094d/1/8uOrazEY4L3g5kiOa-1slpQeDoQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:d9:d1:d3:be:46:76:0a:61:e8:89:99:fa:57:c3:df:ec:24:
83:7b:03:6f:9d:7c:6b:91:75:3a:e7:8e:c4:fc:57:48:3a:c3:
f5:41:cc:22:9a:0c:01:35:e8:1a:7e:f8:4a:7a:9b:61:c6:45:
b9:b5:48:3a:32:a7:2c:4a:45:f4:71:42:be:ca:2e:55:6d:40:
e1:25:db:1e:7f:4a:19:e1:e6:42:66:1c:22:83:29:69:31:71:
5c:2b:5c:34:ef:d4:e6:76:97:3b:0a:ae:7e:fb:cd:8d:b0:a6:
be:f5:e0:0e:05:f0:47:1a:9c:4a:d0:fd:74:db:14:d0:66:3c:
91:cc:31:7b:3e:e0:1f:49:b9:0b:01:f3:40:71:c7:85:5e:d5:
21:cc:46:87:1a:28:2c:1b:9c:73:83:37:15:70:da:52:87:44:
8a:a1:88:ea:59:49:4c:34:fb:69:17:0c:79:28:9e:20:d1:1a:
ca:96:8c:12:94:b4:a7:b5:30:34:e8:d8:05:34:7f:96:bf:1b:
70:36:38:3a:ae:93:22:9a:50:e7:77:c8:e9:7a:96:6f:af:70:
93:43:18:21:27:63:f9:cc:b3:55:be:ab:2e:33:b9:02:00:8b:
94:e4:a4:6a:14:80:a0:cd:d2:cf:74:6b:bb:af:dc:0c:41:4b:
12:2e:a2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:48:44 2026 by rpki-client