Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
File: Mm9RyiOYIQP_40-YkNC3To-nga8.mft (raw, json)
Hash identifier: kywpIemGwcKYSTuwPLE08s9kuL0nM+iabw8VUAkxETw=
Subject key identifier: 80:E0:B7:EC:75:74:5F:23:16:97:65:D5:2A:B9:5F:B0:19:2B:F2:27
Authority key identifier: 32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
Certificate issuer: /CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Certificate serial: 019D37C0364065281E4A8D8D12CF7B68A56A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
Manifest number: 08F3
Signing time: Sun 29 Mar 2026 04:00:36 +0000
Manifest this update: Sun 29 Mar 2026 04:00:36 +0000
Manifest next update: Mon 30 Mar 2026 04:00:36 +0000
Files and hashes: 1: COs54IVsv9bN1SyErw-G5fsb6yY.roa (hash: 9UNs6Dnf3rvvi5W/WKDmiw83fNTieB9/5O5ngxCvRno=)
2: Mm9RyiOYIQP_40-YkNC3To-nga8.crl (hash: lQyIPuiiCb3PSBEwBXrysluupP8AEBL5jXbvhz9FtnQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:36:40:65:28:1e:4a:8d:8d:12:cf:7b:68:a5:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=326f51ca23982103ffe34f9890d0b74e8fa781af
Validity
Not Before: Mar 29 04:00:36 2026 GMT
Not After : Mar 30 04:00:36 2026 GMT
Subject: CN=80e0b7ec75745f23169765d52ab95fb0192bf227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1b:be:dd:89:84:8e:2a:ea:d3:b7:c2:65:7f:
e1:69:47:9e:fe:78:e3:ea:de:d0:3c:39:8d:34:7f:
0f:ba:5d:1f:ec:23:ba:46:0b:88:7d:e7:94:3a:7f:
e8:f1:ac:de:e8:fd:9f:77:cc:af:f7:b3:25:1e:51:
e4:bf:db:3b:20:46:61:2d:34:ee:b9:c5:3c:2e:86:
c8:67:bd:cd:e9:70:f1:0e:be:6a:d0:bf:76:bf:2f:
8d:59:14:9e:cc:01:de:76:b0:46:7b:90:96:02:1e:
1b:b2:1b:56:2d:29:2e:0a:eb:a3:0a:21:13:3a:b0:
c9:bd:90:24:82:f5:b2:aa:77:44:ad:f9:c1:c2:66:
04:9b:b5:83:50:69:e0:85:46:36:3a:c9:78:0e:c5:
07:6d:2b:de:3c:5a:d9:af:a4:11:55:5b:d5:0c:3c:
74:b4:ef:f8:95:dd:fb:9a:96:35:8f:18:45:f8:40:
d2:71:d9:d1:6d:b7:35:65:b9:2e:f8:50:f8:52:89:
40:09:a1:a5:9a:b4:5c:c0:66:e5:50:c5:b7:01:d9:
af:4b:2c:d0:df:12:38:2b:ca:94:9c:28:0b:dd:92:
1d:96:f1:97:9a:d7:91:ec:84:61:68:37:82:6f:37:
47:a7:ce:8f:ce:05:df:c0:cc:17:69:22:61:70:42:
4d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:E0:B7:EC:75:74:5F:23:16:97:65:D5:2A:B9:5F:B0:19:2B:F2:27
X509v3 Authority Key Identifier:
keyid:32:6F:51:CA:23:98:21:03:FF:E3:4F:98:90:D0:B7:4E:8F:A7:81:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mm9RyiOYIQP_40-YkNC3To-nga8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/40a9b5-e899-4a8a-ac4f-966fa96beff2/1/Mm9RyiOYIQP_40-YkNC3To-nga8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:0f:b8:04:d2:cc:7e:19:f8:b7:ca:41:2e:96:0f:38:78:c8:
1f:ea:e3:ca:25:67:ae:5d:30:55:4b:8e:dd:df:e3:8e:00:d9:
f4:7b:4e:66:07:46:2e:98:97:31:e5:ef:6c:0b:b0:05:c0:98:
3a:48:86:28:cc:15:9e:e7:cd:2a:ae:b1:02:72:99:94:22:cf:
a7:74:4d:df:00:25:e2:36:41:94:5b:47:fc:7e:2d:8f:1d:26:
23:97:30:cf:0e:4d:2d:f7:43:f2:ed:71:9e:71:d1:94:d0:2c:
b7:0c:b3:cd:91:72:71:f6:59:8f:29:41:8f:e8:39:16:1b:ab:
f3:01:23:fc:4c:85:d8:3b:a8:de:d7:c1:d8:e1:2e:b9:c6:58:
5f:c6:4a:c3:56:c8:6d:73:c1:f1:11:37:97:d2:f7:99:b0:f9:
76:e9:53:48:ad:03:9f:55:04:42:5b:0e:81:b7:72:04:c3:66:
49:8a:7a:f6:87:07:f5:9a:8b:89:39:f3:d4:a0:23:c3:4e:1a:
f0:52:f0:a3:aa:85:1a:62:ed:10:5a:72:08:28:94:c8:bb:c2:
b6:1b:b0:a3:1f:b1:75:ec:ba:ef:e8:71:c1:ec:12:41:07:62:
dd:b7:60:f7:93:01:8f:ba:0a:f8:2c:7b:f0:5e:2e:c1:e0:48:
9b:fa:3b:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:37 2026 by rpki-client