Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: bSfImIPBOy58ImRDUvn1+Tom11cifP/jwOV+bqyYsvs=
Subject key identifier: 88:B7:8F:0B:71:8A:70:67:07:DC:83:AA:95:65:5B:EC:EE:CA:47:43
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 019CAC46981F914722B027DBED38C706A5C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 02:00:33 +0000
Manifest this update: Mon 02 Mar 2026 02:00:33 +0000
Manifest next update: Tue 03 Mar 2026 02:00:33 +0000
Files and hashes: 1: YwiBk7F0B614LD9wQoEFnkWeQjs.roa (hash: mvD8mcgS8Z/u8tn955UOEASMu8p9nleqgNicn8XmXOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: 5O5pmpyJJD+nofiyGGAhCqJV+3L2psw7QHEO4t9vc08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:98:1f:91:47:22:b0:27:db:ed:38:c7:06:a5:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: Mar 2 02:00:33 2026 GMT
Not After : Mar 3 02:00:33 2026 GMT
Subject: CN=88b78f0b718a706707dc83aa95655beceeca4743
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8f:56:d8:bf:03:e4:4f:bd:1a:63:9a:c0:2e:
33:e6:73:c6:d9:0c:bc:6a:64:a8:b0:a1:5c:be:af:
c0:ea:79:29:22:0e:3e:71:9a:5c:14:36:4d:bc:2b:
fd:ac:c1:c2:89:98:ae:18:fd:2e:4d:21:aa:f0:7b:
1f:8c:6a:51:57:ca:93:5a:7e:2e:0f:7c:10:a7:3e:
a0:07:39:fa:d3:1e:d4:98:cd:c8:5d:5d:63:c0:52:
a8:c4:cf:d0:e8:a7:17:07:9f:ad:3b:4e:af:d7:48:
3c:66:d5:a1:a9:d7:b8:4b:4e:12:6e:95:86:fc:78:
be:f0:30:26:68:a6:0d:22:7e:6a:02:44:44:66:a3:
3b:ae:71:df:de:b2:8c:2d:3a:30:d4:77:22:5b:57:
c9:51:40:76:c8:77:eb:11:38:92:ea:65:56:ff:a9:
03:4b:fc:b8:30:a3:13:9b:99:14:14:00:4c:b3:51:
4a:13:48:32:fc:7f:5a:bc:6a:31:a3:54:57:c9:32:
06:84:89:b7:92:3c:24:32:ce:b8:17:d3:29:d0:a2:
c5:47:01:3f:61:94:26:55:49:05:22:ae:23:00:5d:
f9:ea:91:48:1e:f9:ff:98:be:14:8e:f8:87:34:01:
8b:83:65:6e:ae:af:73:6c:96:ed:49:8a:3c:e7:bd:
a2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:B7:8F:0B:71:8A:70:67:07:DC:83:AA:95:65:5B:EC:EE:CA:47:43
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:e1:d1:e0:05:fb:f9:2e:ad:8f:95:db:2d:ec:58:04:ef:d6:
3e:f7:d9:5d:05:bb:8f:a2:36:a4:cd:92:19:a9:b6:47:75:f8:
81:76:98:b1:69:ae:df:f3:44:2c:ae:db:8b:61:7a:c2:64:b1:
5f:3d:27:de:7e:70:f8:3b:22:ee:dc:10:12:00:79:50:f0:b8:
3b:70:0c:90:ae:9e:38:54:37:4e:90:57:a3:f8:7f:bf:de:ff:
f2:33:64:1b:74:c2:28:8e:f9:37:b1:45:54:3f:52:f7:02:bf:
91:e9:c8:48:ba:60:2d:ee:6f:83:e7:82:3a:57:da:b6:38:93:
f2:e3:c6:93:0a:1c:ec:c5:64:7f:0b:13:44:06:9e:14:7b:01:
8a:99:a3:ca:c6:d3:82:cf:96:33:ae:8d:26:57:d8:bf:fb:95:
2e:aa:6b:19:df:43:c3:53:ad:d3:e8:d8:8a:1b:c1:7d:94:d8:
f2:f4:c0:6c:3d:d6:b7:dc:c7:63:5d:27:34:57:70:f6:64:c2:
36:04:55:d2:8e:57:47:94:d8:15:09:cc:ca:42:ea:2d:9b:07:
90:46:19:4d:6a:af:5d:d7:88:bf:f6:72:2e:f2:cf:c1:ba:df:
5b:8b:2e:75:23:bf:94:9e:b6:c9:a4:40:75:4d:d1:e1:4f:32:
3b:74:72:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:08:15 2026 by rpki-client