Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
File: rXz7zh1tOmok8lZSBl0xV1go7bU.mft (raw, json)
Hash identifier: OToya5dag/PrXYSdqqymzhrwunV2vzgLpK7rdKle5Vc=
Subject key identifier: 24:00:12:D3:D5:F7:D0:93:3A:8E:D6:06:D2:C0:D0:7D:F9:3F:52:11
Authority key identifier: AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
Certificate issuer: /CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Certificate serial: 019CAB6B295549DB7F0549220AEC2C2398FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
Manifest number: 0F58
Signing time: Sun 01 Mar 2026 22:00:52 +0000
Manifest this update: Sun 01 Mar 2026 22:00:52 +0000
Manifest next update: Mon 02 Mar 2026 22:00:52 +0000
Files and hashes: 1: X95prXHzq8X1CPwv1gtcHecBZ9A.roa (hash: kIyKmeEmNUCd7/Tfz3mqcBFszHGcJgIalIr5T8BFnbY=)
2: rXz7zh1tOmok8lZSBl0xV1go7bU.crl (hash: Bs07VrYlG6MsPf6w4H8N06PfR2qsI+AlBtL1Mhw4UjY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:29:55:49:db:7f:05:49:22:0a:ec:2c:23:98:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad7cfbce1d6d3a6a24f25652065d31575828edb5
Validity
Not Before: Mar 1 22:00:52 2026 GMT
Not After : Mar 2 22:00:52 2026 GMT
Subject: CN=240012d3d5f7d0933a8ed606d2c0d07df93f5211
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:88:22:56:66:8f:be:1b:78:64:e3:4f:c8:b0:
67:cd:ec:12:7b:b8:5e:93:ba:d2:c7:53:9e:f0:b7:
46:8d:06:07:b1:ab:eb:49:d7:08:4d:1c:62:f2:14:
4e:e6:0c:b9:7b:48:41:ee:99:41:7a:1e:30:fd:ab:
3d:0f:b2:2f:ef:8c:1f:ee:ef:a2:cb:22:52:a1:91:
88:e3:95:84:9f:7c:f5:ef:95:a5:74:92:73:9a:08:
7f:e8:2d:0b:cd:f0:a9:09:c7:bd:70:2e:d7:9d:bc:
d1:10:55:8e:6d:39:5c:32:d8:60:28:ab:54:46:05:
63:3e:3f:37:3f:04:61:aa:c8:14:c0:7a:0e:df:30:
b2:29:68:1c:ae:c1:e7:0c:7e:b2:ec:69:1f:f7:39:
62:11:fb:d6:c4:49:c8:cd:12:bb:f0:e5:fa:c0:3f:
c2:64:71:f7:e0:8b:d2:2c:de:15:16:15:e4:64:61:
59:d4:aa:1d:44:cd:4f:83:74:f8:2a:6c:db:8a:6f:
bb:6e:b7:a2:bf:21:e2:9a:bd:fd:8d:75:04:92:42:
04:da:26:78:2b:a0:3f:ac:37:aa:1b:79:2c:a8:c3:
6b:ba:1b:64:46:54:71:70:33:d4:d9:43:9f:ed:b7:
38:f0:42:16:c7:1b:dc:d3:81:4f:e8:9c:26:ce:71:
42:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:00:12:D3:D5:F7:D0:93:3A:8E:D6:06:D2:C0:D0:7D:F9:3F:52:11
X509v3 Authority Key Identifier:
keyid:AD:7C:FB:CE:1D:6D:3A:6A:24:F2:56:52:06:5D:31:57:58:28:ED:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rXz7zh1tOmok8lZSBl0xV1go7bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/114340-2c70-41fc-abe7-2fa7c9b111b1/1/rXz7zh1tOmok8lZSBl0xV1go7bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:c7:a8:5b:63:68:92:59:5c:0a:94:30:41:24:27:3d:c9:ab:
82:02:ba:54:97:4d:35:1e:ff:79:49:b2:83:d5:9c:80:45:33:
51:ef:cf:83:07:1c:80:4c:b0:32:14:b1:81:46:4a:2b:23:35:
e7:46:33:65:44:83:1a:eb:c3:30:a8:51:29:b2:3e:ee:3a:b0:
cb:5c:1c:2e:9a:1a:41:83:95:a3:da:e6:fa:25:ef:5b:2c:eb:
a8:74:ff:f6:be:02:01:0c:12:a2:86:ba:b9:3e:3e:71:0b:ef:
cf:39:2d:8a:58:30:b0:be:c8:c3:e3:05:79:21:8f:b7:13:aa:
09:28:9f:d7:0a:38:be:fb:20:95:9f:1f:e3:6d:62:f7:33:49:
b1:10:e1:f5:41:62:c0:f3:6b:35:c4:88:5a:92:fb:9b:df:71:
c9:0f:42:c4:d1:7f:e7:14:d3:e3:41:3a:25:f3:c2:7b:99:e0:
57:4b:e9:cd:41:79:e6:94:66:10:5d:07:56:3e:5a:aa:79:90:
6c:a3:9a:7b:76:90:33:e8:0c:11:9d:e8:cb:5f:b0:1d:4b:a4:
ac:3c:a0:74:27:a4:39:88:b9:3c:63:cd:1f:e2:fa:4d:39:3e:
7c:ad:27:50:a7:a7:ef:f4:40:ad:cf:b6:cf:6f:f7:60:3b:af:
36:5d:81:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:42:21 2026 by rpki-client