Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json)
Hash identifier: 8+uQw03KYbjGgHNt7Rd9JbflVANW3SE45tOpBzi/SV8=
Subject key identifier: 77:72:A2:A4:A2:0B:CA:EE:9A:AE:A4:C4:D4:FF:0D:55:10:49:CA:E9
Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be
Certificate serial: 019CAC0FAEBDCCD0CB7F08BD9FFE137D106A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
Manifest number: 0828
Signing time: Mon 02 Mar 2026 01:00:34 +0000
Manifest this update: Mon 02 Mar 2026 01:00:34 +0000
Manifest next update: Tue 03 Mar 2026 01:00:34 +0000
Files and hashes: 1: 00KPXaoeVFb3ZxS5PVmQU3i8VY4.roa (hash: HLzQZ86nyzCWCoL4HyX0cWOR0lVQ8RFQ8/UNt4CesgA=)
2: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: Qjfi+iBuCkrI26nVrqjOeIt0DPpZlKhbcskVNwAk5q0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:ae:bd:cc:d0:cb:7f:08:bd:9f:fe:13:7d:10:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be
Validity
Not Before: Mar 2 01:00:34 2026 GMT
Not After : Mar 3 01:00:34 2026 GMT
Subject: CN=7772a2a4a20bcaee9aaea4c4d4ff0d551049cae9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:25:5d:38:5e:a6:d6:80:90:f4:7c:08:a5:ac:
2b:f3:36:b7:b7:ec:d8:dd:51:a5:85:7a:ae:f7:0b:
1e:7e:ff:ff:a6:48:6e:31:3f:19:1a:c7:19:00:2b:
c7:29:5b:bf:f9:f6:8b:3f:e5:5a:d2:a5:1f:c8:3f:
b7:92:30:ee:9f:63:c6:18:43:14:43:b2:9c:d3:16:
67:ef:6d:1b:c2:28:d0:e1:81:14:2b:ff:4a:81:6f:
28:93:ce:75:0b:b2:d6:7a:38:e9:ed:25:58:97:04:
c6:0d:7f:21:b9:e1:ef:41:5f:17:17:06:f9:2f:b3:
13:0a:eb:ed:a8:91:a0:ff:98:0a:6b:44:cc:85:7c:
6f:00:4f:02:af:37:d3:2c:23:ab:22:63:ea:be:4c:
50:bf:b3:1e:fe:f0:a5:5e:f9:df:c7:99:49:fd:0d:
37:8f:a1:49:a7:8d:6e:99:e0:48:c9:fa:05:c0:6d:
e5:2e:12:dc:58:9a:f4:19:27:e6:db:ca:7e:d6:d0:
45:6f:43:6e:99:4b:ce:5b:fb:dd:c9:8a:c6:ea:5e:
94:f6:a6:cb:8c:d8:68:1d:00:79:41:5b:14:19:bc:
51:54:00:f2:d6:1d:53:45:5b:9e:eb:ff:66:44:e2:
5e:b6:62:ff:cd:e7:19:19:e8:41:77:f5:cf:c2:e6:
cb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:72:A2:A4:A2:0B:CA:EE:9A:AE:A4:C4:D4:FF:0D:55:10:49:CA:E9
X509v3 Authority Key Identifier:
keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:fa:06:bc:3a:e8:b9:cc:fd:11:09:6b:ec:cd:46:ee:f9:99:
3f:65:bf:78:47:24:f9:77:d1:8d:1a:d3:82:0c:ce:0b:ce:76:
9c:0e:f9:8c:b8:47:3c:6f:52:be:ed:f2:5e:b6:59:fa:88:7b:
6d:ac:e9:f1:cf:9d:b6:73:52:3e:96:fa:01:9a:c3:84:c4:ae:
29:01:d1:fc:de:aa:00:2d:b7:74:67:52:ad:46:05:67:b1:62:
10:f7:31:b5:a1:ac:96:31:47:7c:9d:9f:68:a0:27:6b:6b:88:
4c:96:0d:a6:3e:57:e5:d6:25:09:a8:ff:9d:ce:28:6b:0c:d2:
e7:38:5d:df:99:07:c3:f2:b2:21:73:59:82:44:3b:68:18:cd:
1e:f9:38:c6:83:41:f4:34:eb:bf:93:85:b5:3c:02:3e:45:b6:
a6:95:16:2e:65:98:b1:ce:6d:0c:4a:0c:9e:cb:d5:6d:55:c2:
90:76:c1:9d:3c:b4:3e:d3:00:0f:da:4a:51:d3:12:4a:d9:76:
49:96:ae:79:a2:24:57:8c:77:c8:15:0a:16:27:9d:71:ed:b4:
b3:46:b2:49:10:a3:06:2c:e4:a3:99:73:93:99:67:cf:bc:ee:
bc:0c:01:d4:9c:db:70:02:af:e4:00:c0:24:f8:ec:e1:71:18:
76:15:d9:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:08:02 2026 by rpki-client