Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: wbtM//f7ocLdEhYtmzaSHSYuZDxIY/64qZQy6OnPfi0=
Subject key identifier: 9C:1A:74:79:F7:3C:D1:3A:8F:2B:39:FF:97:80:7F:8C:05:74:2A:64
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 019CAA582C7EB2180382E6AC3E9557C4BD21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 17:00:31 +0000
Manifest this update: Sun 01 Mar 2026 17:00:31 +0000
Manifest next update: Mon 02 Mar 2026 17:00:31 +0000
Files and hashes: 1: YwiBk7F0B614LD9wQoEFnkWeQjs.roa (hash: mvD8mcgS8Z/u8tn955UOEASMu8p9nleqgNicn8XmXOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: 4UB7eKlMc1hCxQQMrNE1cyge4mdvzxBAHjFyI9ZZDS8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:2c:7e:b2:18:03:82:e6:ac:3e:95:57:c4:bd:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: Mar 1 17:00:31 2026 GMT
Not After : Mar 2 17:00:31 2026 GMT
Subject: CN=9c1a7479f73cd13a8f2b39ff97807f8c05742a64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a6:ae:fd:15:4e:e5:31:34:37:ba:ad:7a:37:
72:1c:76:78:f7:c7:d2:50:87:8c:b0:1f:03:0c:4e:
c7:f2:f8:98:be:93:dd:50:95:19:a1:38:78:4f:eb:
47:92:9b:de:a7:81:81:3d:60:09:4d:77:e7:27:42:
e6:66:ed:a8:d7:84:40:05:ff:17:31:72:86:4b:55:
b3:9f:1b:52:56:90:6d:cd:f4:9c:8e:56:86:bd:d1:
bd:63:fb:f3:78:0b:15:8d:05:77:6c:e5:f0:24:a7:
c9:4b:e6:28:32:a9:59:31:55:60:f7:0c:2e:ee:c0:
05:8d:3f:d2:48:76:bf:76:50:4b:cc:67:38:c8:17:
cd:d7:4c:0c:26:a9:07:5a:9d:3d:89:f8:92:e2:a5:
61:3f:ce:d7:db:56:1e:4e:8e:11:cd:40:c5:af:0e:
97:a9:1a:fc:78:fa:78:37:7a:9c:7d:19:50:f9:dd:
2a:cf:7e:01:6d:b6:86:2b:d4:6a:b9:6b:34:68:97:
58:ce:54:7b:5d:a3:5c:06:df:77:0f:a8:a2:1a:32:
b6:66:e9:26:c5:47:a5:cc:91:1e:3e:8b:ad:2c:de:
4a:22:d4:b6:62:d1:ff:d4:0b:b7:96:76:8f:d5:65:
06:1e:22:f6:a6:76:17:e0:cc:76:9e:3e:56:bc:38:
61:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:1A:74:79:F7:3C:D1:3A:8F:2B:39:FF:97:80:7F:8C:05:74:2A:64
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:49:8b:bf:8c:e9:8e:84:a1:fb:99:a2:1b:6b:cc:8c:97:dd:
75:82:d6:46:17:c2:e3:c8:e3:6d:08:f7:3b:6d:ff:c0:0d:51:
8c:d9:17:af:42:d9:4c:06:db:48:0a:d1:8c:42:bc:ec:3b:19:
05:c8:e3:9a:09:e5:e2:83:3c:5d:81:dc:e2:f7:fc:b1:8d:dc:
e0:57:0a:9d:ef:23:86:f1:8d:e3:f3:db:75:91:8a:c1:69:e8:
da:a3:12:11:6b:34:44:bc:6e:75:7f:d7:ed:0f:b8:fd:23:39:
d8:74:12:6f:97:12:3f:d1:5b:87:b8:ab:cf:88:3a:99:01:4a:
cc:bf:3c:30:1e:7b:42:9e:b7:30:cc:91:ad:ec:35:51:34:0c:
34:3a:af:18:ed:76:c8:c0:5f:78:96:f0:8f:4d:c8:c4:1a:3d:
62:e3:3a:f6:48:84:1a:24:cc:9b:b6:92:e4:8f:6a:95:19:c2:
5b:ea:97:e2:c4:5c:e8:f5:8a:c8:1e:5c:81:75:ef:c6:0d:8f:
5a:49:ae:a9:88:f1:8c:f6:2e:9e:22:cb:cd:ed:7a:a9:b3:d4:
a4:f8:c8:b6:88:1c:72:90:ba:7e:05:9b:e4:2d:e4:4c:31:aa:
74:35:5b:0e:93:6c:06:72:61:c4:1f:bc:10:4f:7f:81:0c:db:
17:26:7d:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:10:11 2026 by rpki-client