Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
File: 0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft (raw, json)
Hash identifier: 8Q2UHZTsy1/qbB+jSaHZ4aTOwiCL3PCMIZCi2W2tZCw=
Subject key identifier: 59:81:81:C1:EC:8A:28:43:1E:09:F0:9E:D6:7B:68:90:E1:0C:49:BC
Authority key identifier: D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A
Certificate issuer: /CN=d1bf176af8dba30fef325365ef3404812ce2d84a
Certificate serial: 019D3940BDAF5DF178AC20BE42D50382D070
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
Manifest number: 1112
Signing time: Sun 29 Mar 2026 11:00:37 +0000
Manifest this update: Sun 29 Mar 2026 11:00:37 +0000
Manifest next update: Mon 30 Mar 2026 11:00:37 +0000
Files and hashes: 1: 0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl (hash: i/XjzuNRGabawSOzjIYembXWeXOMYUMMZg25OSA9cCk=)
2: ZJfd2bM3zI3ej_61TAwH8lmhHLc.roa (hash: duIN3E5E9I7c9rAgU9yjUM0YccPt4nRq25usPFTIyKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:bd:af:5d:f1:78:ac:20:be:42:d5:03:82:d0:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1bf176af8dba30fef325365ef3404812ce2d84a
Validity
Not Before: Mar 29 11:00:37 2026 GMT
Not After : Mar 30 11:00:37 2026 GMT
Subject: CN=598181c1ec8a28431e09f09ed67b6890e10c49bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e1:88:a5:b0:78:9f:4f:84:85:8d:3a:f2:71:
11:7f:42:72:df:7e:5c:1b:d8:ef:b6:24:5a:f0:eb:
38:01:3c:58:d8:3c:22:bd:08:ee:82:cd:e9:a1:43:
3e:10:3b:45:7d:6c:b4:eb:b3:4a:89:3d:fb:10:77:
0b:80:56:07:f5:6f:1b:e3:61:51:d5:ad:78:df:2c:
28:dc:cc:38:be:fb:8d:61:55:b0:e2:56:d7:00:7a:
20:32:50:b9:c3:dd:60:f3:68:c0:74:2f:c0:79:13:
65:ca:38:fc:7a:e4:3a:e2:a4:dc:d2:c7:4d:36:d0:
b3:89:87:02:39:7a:d3:f5:09:51:72:14:5c:72:3c:
fd:41:73:b9:fc:22:cd:b9:45:45:5d:72:85:d0:c0:
c1:a5:8e:09:5b:f6:74:8b:b0:9a:e5:dd:f8:f2:09:
d0:c2:3e:78:39:cd:8c:e3:b4:fc:8c:9a:93:0e:c0:
00:a2:0a:0a:54:bc:00:ae:17:ad:eb:ea:f4:49:f2:
10:1a:03:a5:12:4b:4d:ed:9b:3a:e6:16:60:f2:c4:
f5:f1:8e:94:5f:96:73:20:e3:08:84:d8:9a:6e:c4:
42:44:81:69:3b:4e:af:85:6f:b2:a1:86:44:ca:c6:
ba:b7:ae:67:00:46:e4:c2:1c:80:09:a7:cd:0a:36:
4e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:81:81:C1:EC:8A:28:43:1E:09:F0:9E:D6:7B:68:90:E1:0C:49:BC
X509v3 Authority Key Identifier:
keyid:D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:47:fc:fe:e4:ea:e9:ea:aa:c9:7d:4d:19:96:22:31:99:4a:
a3:30:ee:9e:f7:03:e2:f7:6a:2d:e7:9b:b1:81:03:d5:72:4b:
a6:4e:72:d7:ec:96:b9:6c:7c:1f:c9:72:f8:fe:f1:15:67:23:
b5:b6:e7:7e:6a:fe:be:4e:5f:e5:41:db:5b:36:ef:04:01:42:
f2:40:2b:26:15:fd:41:4a:a7:9e:69:b7:8c:1f:d6:14:46:e6:
89:b1:92:96:81:6f:2c:50:0e:d7:5f:fb:87:94:03:e0:b5:06:
62:ad:74:47:76:35:98:c1:16:23:99:94:e9:a7:e4:36:83:20:
ee:30:13:67:cd:d7:2f:ce:3d:a8:65:a4:d6:1b:dd:15:a4:5e:
12:af:d8:aa:d2:4b:ec:2a:a2:d2:4f:cf:f0:3f:9c:96:2d:f7:
7c:71:2a:63:05:a0:28:6d:89:47:95:1e:90:7b:54:eb:83:4c:
c0:a3:96:b0:39:37:83:99:c8:7f:12:8a:f2:ef:50:db:93:de:
59:9b:c4:51:78:69:05:ab:c7:4d:24:b1:7f:97:12:21:a3:d3:
ab:e6:79:b9:ed:a8:bb:4f:ec:33:50:c6:db:b1:d7:0d:77:86:
97:d4:26:28:45:f5:c4:cd:dd:d7:e3:96:5b:ad:e0:f9:a9:ea:
51:64:9f:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:39:10 2026 by rpki-client