Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
File: ESmtAUBy3mYXQ4-xr75BotvcgRw.mft (raw, json)
Hash identifier: tYp6lYXxLYUfZjhXK89C3YZCFdHkAzcXnC5QDedKt7s=
Subject key identifier: 30:2A:D5:66:D6:AC:E6:BA:95:02:72:4B:B8:9B:B9:32:D3:C8:2B:31
Authority key identifier: 11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
Certificate issuer: /CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Certificate serial: 019CADC854066BF9DC0D2078F48074A9C69E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
Manifest number: 0FF5
Signing time: Mon 02 Mar 2026 09:01:52 +0000
Manifest this update: Mon 02 Mar 2026 09:01:52 +0000
Manifest next update: Tue 03 Mar 2026 09:01:52 +0000
Files and hashes: 1: ESmtAUBy3mYXQ4-xr75BotvcgRw.crl (hash: 0gUcGZeg5t96k/Sw5ZgmC6hZwcFq/yv1h5So09QpDC4=)
2: yOU3uduoN5dP8e-jmAjD8aQwrlU.roa (hash: O6bQWgeJySRYDkrf9DCbKR1ZNlkw4pe8n+wuoJJY0+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:54:06:6b:f9:dc:0d:20:78:f4:80:74:a9:c6:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1129ad014072de6617438fb1afbe41a2dbdc811c
Validity
Not Before: Mar 2 09:01:52 2026 GMT
Not After : Mar 3 09:01:52 2026 GMT
Subject: CN=302ad566d6ace6ba9502724bb89bb932d3c82b31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:86:d3:02:16:bb:26:97:2a:9e:e4:b2:fd:3f:
14:7a:37:1a:cd:7f:06:26:c4:0b:0f:40:87:a9:48:
71:f5:8a:1c:78:87:30:c5:8a:ca:53:a6:76:f5:59:
fb:f4:d3:9c:68:24:6d:20:b2:84:cc:52:f4:22:0a:
f7:9b:c3:07:59:10:39:62:e1:e1:8c:5f:63:d4:ae:
88:4a:a9:66:d7:64:76:2b:ce:75:44:f9:a3:e9:71:
7f:37:63:2a:ba:1a:5f:26:99:62:da:28:91:91:05:
cb:bd:1f:5f:09:a1:c4:fb:18:15:04:f7:1f:27:4d:
35:0c:6d:e8:c7:63:36:06:6e:fd:99:f1:1e:ed:78:
03:97:94:0e:a8:1e:34:3a:db:0e:35:c7:db:15:62:
5f:83:41:02:ef:79:d2:50:6d:3e:9e:90:e5:eb:7d:
43:b9:33:12:43:79:ec:45:6d:f2:76:bd:c2:a0:24:
5d:30:39:47:63:89:09:d5:e3:ad:53:74:5a:b2:c7:
15:09:c7:28:4e:6d:8f:b5:e6:98:69:d7:06:62:2d:
ef:65:1e:e7:e8:cd:40:d0:52:76:b3:b7:ee:e3:fc:
70:41:4e:7a:1d:30:65:6a:4f:06:5a:43:9e:8c:5e:
3f:af:b8:a2:ba:75:a9:16:d1:66:6f:80:72:35:0b:
6c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:2A:D5:66:D6:AC:E6:BA:95:02:72:4B:B8:9B:B9:32:D3:C8:2B:31
X509v3 Authority Key Identifier:
keyid:11:29:AD:01:40:72:DE:66:17:43:8F:B1:AF:BE:41:A2:DB:DC:81:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ESmtAUBy3mYXQ4-xr75BotvcgRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/7e1989-4b1e-4f33-bd32-ac881497e0a2/1/ESmtAUBy3mYXQ4-xr75BotvcgRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:80:71:24:da:ac:1a:92:14:87:0c:8e:f8:17:fc:a0:53:ae:
af:67:e3:0b:5a:e6:ac:62:14:44:23:42:8b:d8:30:f7:e0:88:
43:b9:fc:74:56:c8:ae:c6:50:fe:37:2e:71:fe:a5:a0:a1:2a:
23:17:cd:0c:bd:62:6d:2a:96:0a:88:2d:d2:26:9b:1a:e1:a8:
a9:48:e0:84:3f:3e:80:46:fd:1b:bc:b6:f0:43:24:e6:ec:c7:
41:c4:ab:51:03:88:2e:11:37:f4:8c:fe:61:20:8e:d7:d1:9c:
57:aa:22:62:ae:8a:fa:5f:c1:9c:93:1e:7b:dc:9e:3c:b6:07:
f7:bb:e5:bd:30:ed:88:e3:20:6e:66:38:f6:3e:a2:33:ba:4c:
d8:9f:fc:d4:75:35:ea:2f:39:99:d0:9b:72:8f:ef:f9:e0:bf:
4e:58:55:a2:bf:94:df:23:87:d3:99:55:5b:be:a6:c4:7b:b2:
6c:fa:87:1c:f7:bb:e4:0e:07:cb:19:ec:7f:94:64:5f:08:68:
d7:6d:b0:92:42:d4:b9:c2:66:15:7c:d1:0f:57:e4:05:ae:12:
58:90:0d:0d:6b:3a:35:b9:82:ce:4a:06:a0:57:76:78:8e:7d:
f2:2b:62:be:80:11:5b:5a:29:ae:d2:bb:c5:8c:b7:8a:34:e5:
74:08:7e:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:08:52 2026 by rpki-client