Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
File: INShQtHjFwTrW88Dp4X2N4NVt5k.mft (raw, json)
Hash identifier: 6Swttdv/GmhE1KvyROheV+TN6PoGJOKc+4HqSyZ/wu0=
Subject key identifier: 34:89:04:76:84:F0:B7:E8:2E:80:EA:54:F1:CA:91:07:5B:43:E7:BF
Authority key identifier: 20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99
Certificate issuer: /CN=20d4a142d1e31704eb5bcf03a785f6378355b799
Certificate serial: 019D38D2D9D51FD77AD7CA3A819B64DA769E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
Manifest number: 08B4
Signing time: Sun 29 Mar 2026 09:00:35 +0000
Manifest this update: Sun 29 Mar 2026 09:00:35 +0000
Manifest next update: Mon 30 Mar 2026 09:00:35 +0000
Files and hashes: 1: INShQtHjFwTrW88Dp4X2N4NVt5k.crl (hash: vdoGLjGaayWKGlTq/Npd+8WtVR1KpmcuW3fy/9EFICo=)
2: g082PDAHpiRZAocEJGI8VaarFzs.roa (hash: Au5SOTFMsi2+OrZE63a9/Ibnr7Cniiip3FgMbm/9rrs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:d9:d5:1f:d7:7a:d7:ca:3a:81:9b:64:da:76:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20d4a142d1e31704eb5bcf03a785f6378355b799
Validity
Not Before: Mar 29 09:00:35 2026 GMT
Not After : Mar 30 09:00:35 2026 GMT
Subject: CN=3489047684f0b7e82e80ea54f1ca91075b43e7bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1c:9e:d0:5c:f1:6d:7b:6d:28:96:ed:ed:83:
13:1c:bc:8d:97:2a:60:08:64:21:d9:dd:14:0a:59:
0d:db:b3:2b:4c:7d:8a:41:f2:74:33:5c:bd:90:11:
82:e8:c1:01:4f:6d:28:eb:a2:d2:1e:79:07:de:05:
33:95:59:b1:25:d8:3a:a1:8e:a0:ea:77:99:88:00:
46:dd:cc:ae:bc:32:f0:01:73:6d:3f:b1:4f:cc:da:
71:63:56:e4:d3:8f:75:43:02:12:2c:6a:26:96:e6:
4e:58:51:56:ce:ae:3b:cc:04:dc:5f:8b:0c:92:8b:
79:1d:50:9a:f1:3d:4d:c4:6f:9c:77:c4:b0:07:e1:
55:89:2e:0c:5c:a1:2c:ec:05:45:9b:b5:6d:b2:32:
7d:e0:ae:b0:01:9a:8e:ed:79:94:e0:68:d1:c4:be:
1f:07:ee:09:5f:6f:3d:0c:ba:12:b9:12:3e:4a:c2:
ff:30:e9:02:1f:38:a1:f3:11:4e:71:9f:90:34:a4:
82:bb:99:6b:45:b3:54:2d:24:ba:fe:44:3a:fd:1e:
76:5c:da:4f:81:fb:c0:5e:eb:5e:a6:e5:3d:86:08:
de:2f:70:1c:3a:f3:69:5b:00:96:12:9b:a7:66:de:
18:65:96:5d:4b:f0:ba:bf:24:b1:bd:1e:45:9e:3a:
fe:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:89:04:76:84:F0:B7:E8:2E:80:EA:54:F1:CA:91:07:5B:43:E7:BF
X509v3 Authority Key Identifier:
keyid:20:D4:A1:42:D1:E3:17:04:EB:5B:CF:03:A7:85:F6:37:83:55:B7:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/INShQtHjFwTrW88Dp4X2N4NVt5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/099e79-16fb-40be-a918-db7c1af3a073/1/INShQtHjFwTrW88Dp4X2N4NVt5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:39:46:39:1e:2a:3d:ce:fd:56:6d:ff:87:6f:05:fc:1f:5f:
18:ad:73:5c:3b:5b:b4:44:10:99:d5:97:5a:79:42:31:2d:d0:
f4:62:0a:b9:bb:04:ae:cc:89:09:f5:1d:f7:c6:cf:f4:2f:b9:
ca:94:fe:3b:14:05:77:7e:48:bd:25:7e:7f:7e:08:a4:01:a6:
78:60:50:ec:c2:38:27:de:e5:54:a3:0a:e5:90:e3:4a:4b:83:
4b:95:99:80:2d:6c:d8:c5:e0:9d:83:4b:6f:72:8e:a5:e1:93:
6c:22:78:02:6d:04:ab:00:7b:f9:e7:a4:d4:3d:86:6d:62:9a:
12:1a:2e:9b:7b:38:26:9d:5d:be:c4:62:07:77:dc:3b:69:8f:
fa:6d:5c:7f:95:65:70:4d:a1:71:d1:1e:d9:a5:3b:0d:f6:ac:
5d:a3:f1:af:30:4a:05:3b:e5:81:d1:eb:cf:3c:f3:95:72:e0:
bc:1e:eb:87:5f:d7:99:b5:b3:65:76:e3:ce:26:c9:d0:30:57:
a2:2d:4b:4f:55:78:ba:aa:4f:f0:96:68:b8:cf:0a:91:20:dc:
b6:c2:6c:b9:23:ed:34:f2:38:af:c1:3a:c8:58:ac:0c:1f:08:
12:de:40:d1:be:39:b0:27:23:97:4f:9d:64:3f:b2:35:59:a6:
7f:1b:82:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:14 2026 by rpki-client