Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
File: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft (raw, json)
Hash identifier: 2zk3fN0kxsH/7TPuSRvkKSgl8Q6WpuckD3Yg4f8mLpc=
Subject key identifier: DA:B8:59:4C:45:89:AF:3D:D7:29:6A:17:65:21:79:C6:C6:80:4B:FC
Authority key identifier: AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
Certificate issuer: /CN=ae7f187c12782fc4d844762235993329c4563a0d
Certificate serial: 019D39AF57B6445530C65610943939EB5177
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
Manifest number: 0EAD
Signing time: Sun 29 Mar 2026 13:01:25 +0000
Manifest this update: Sun 29 Mar 2026 13:01:25 +0000
Manifest next update: Mon 30 Mar 2026 13:01:25 +0000
Files and hashes: 1: p8Q1T6owao0UtFaI0uzL9fVOIDk.roa (hash: ETVPkMleWg5Tmk9ZZqBQNGmyAM72infgVzIH2DgSiBI=)
2: rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl (hash: lUzXfru4E7Dx+Hbgc7u3zieA70w0CAco0ahGGjdM4IU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:57:b6:44:55:30:c6:56:10:94:39:39:eb:51:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae7f187c12782fc4d844762235993329c4563a0d
Validity
Not Before: Mar 29 13:01:25 2026 GMT
Not After : Mar 30 13:01:25 2026 GMT
Subject: CN=dab8594c4589af3dd7296a17652179c6c6804bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:03:1b:e4:4f:e9:df:85:e8:3d:36:d0:7f:e2:
4c:e4:0e:00:bc:0c:23:ea:ae:b2:fd:24:9e:57:1b:
9d:35:b9:a1:c6:56:93:d4:f3:52:2e:cd:f2:4c:0a:
d0:2d:1f:8c:89:b9:51:60:bc:db:f9:30:ca:40:33:
e9:bf:6c:49:9a:f5:43:3a:af:52:65:7e:22:75:85:
42:85:af:fc:b7:4e:64:03:74:90:83:ff:77:df:5d:
3b:1b:69:f4:46:83:94:9a:e6:09:04:54:10:eb:c1:
01:df:c9:50:a1:e0:f6:16:f3:5a:ca:7c:c2:0a:c3:
da:d6:1d:b0:b9:f9:a4:69:32:4c:95:98:38:0a:b2:
66:63:47:8d:c8:0c:d1:70:ef:6a:e1:67:84:fa:ad:
4d:8c:70:4b:ee:e4:09:e0:9a:72:b5:f9:98:83:d6:
4f:cf:8c:aa:aa:5c:b3:31:9f:1d:c0:73:85:a3:6e:
a2:57:da:39:b2:2a:3c:ae:c3:99:e3:90:e8:7a:a7:
71:6c:7c:df:a6:f5:a4:1d:02:3a:be:88:3d:92:f7:
73:75:ac:77:a0:cb:97:4e:39:d4:ea:a4:b4:2d:4b:
b2:d3:91:d7:ce:48:2a:13:38:d3:e8:2f:42:fc:5d:
21:2e:1a:87:29:7e:d8:f4:8a:54:3c:87:91:6a:06:
97:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:B8:59:4C:45:89:AF:3D:D7:29:6A:17:65:21:79:C6:C6:80:4B:FC
X509v3 Authority Key Identifier:
keyid:AE:7F:18:7C:12:78:2F:C4:D8:44:76:22:35:99:33:29:C4:56:3A:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/c8f647-ed79-42d9-8df6-05877604a01d/1/rn8YfBJ4L8TYRHYiNZkzKcRWOg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:35:c7:5c:0f:2b:b4:7d:16:26:01:ca:27:dc:bd:b2:1f:09:
a5:d9:93:64:c4:d4:cc:90:1b:61:b6:30:d5:54:ed:10:e8:78:
88:0b:e9:d2:b2:c0:1b:8d:47:f7:39:81:a0:4f:9b:93:7e:ac:
41:a3:81:d8:45:df:3f:d5:0e:d1:fa:38:5f:29:e3:ba:89:2d:
88:2b:5b:c1:02:5d:59:f2:b0:7d:49:47:17:4d:d4:30:3e:ed:
dc:f9:13:09:d4:2c:f3:7c:1a:3a:bd:c6:d0:0a:b2:47:5f:9d:
cd:9e:9d:bf:23:48:14:74:a3:c8:ec:44:8a:54:63:43:9d:a0:
41:34:9b:4a:26:e0:80:9c:df:ca:20:6d:59:3d:bc:7f:82:f1:
18:76:1c:b9:ce:c8:3f:63:0f:d9:c0:be:22:5a:a4:1b:c1:41:
8c:51:58:2f:a6:c0:2d:73:97:d2:c9:14:08:17:7a:69:83:05:
d9:00:db:25:1b:0d:65:8d:df:91:a7:17:c0:9d:5a:6b:a9:1f:
cb:f0:4e:2b:b8:39:db:8d:5f:98:3d:42:a7:ec:bf:81:9a:f5:
41:a3:00:58:0e:20:22:75:f3:b6:5d:7d:ac:cf:e1:87:fd:a9:
ba:73:c0:7a:dc:43:43:3d:77:28:fd:f4:07:65:26:5c:06:30:
bf:f7:09:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:50 2026 by rpki-client