Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft
File: h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft (raw, json)
Hash identifier: XENdnqEjZJ8quT1yq7n7YzIPhFIat5/TnYd3n9FhglA=
Subject key identifier: 81:6F:C7:6F:0D:C2:4A:E2:B0:47:64:4A:13:76:D7:39:BA:5D:3C:66
Authority key identifier: 87:C3:B8:5A:7B:EF:BB:44:90:D7:AC:85:2E:B8:BE:84:BF:93:8B:4D
Certificate issuer: /CN=87c3b85a7befbb4490d7ac852eb8be84bf938b4d
Certificate serial: 019D386571CEDB0DE9B524938C65E8EFC345
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft
Manifest number: 0AAF
Signing time: Sun 29 Mar 2026 07:01:05 +0000
Manifest this update: Sun 29 Mar 2026 07:01:05 +0000
Manifest next update: Mon 30 Mar 2026 07:01:05 +0000
Files and hashes: 1: HDdJrGAOCORFyVgyxrNaNeF2t8Q.roa (hash: rD8uKvcs46K8PbUVJgx0QG2NecMmJWf53Xg6anGyvsM=)
2: h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl (hash: ibxC6LA0JFx6AllxrHvArZqPNCQW2q36HWyNESY5z3s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft
rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:71:ce:db:0d:e9:b5:24:93:8c:65:e8:ef:c3:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87c3b85a7befbb4490d7ac852eb8be84bf938b4d
Validity
Not Before: Mar 29 07:01:05 2026 GMT
Not After : Mar 30 07:01:05 2026 GMT
Subject: CN=816fc76f0dc24ae2b047644a1376d739ba5d3c66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a6:09:3c:0e:8d:ad:03:1e:13:61:04:ce:20:
56:1a:a9:1f:db:8e:d1:52:1f:cb:1f:2f:7a:91:91:
65:13:70:8e:d3:5f:0e:91:36:37:00:ec:ac:ee:50:
75:fc:4c:09:33:09:44:9d:1b:fd:8a:94:9f:bb:b4:
04:0a:49:d5:4b:c1:0a:88:94:e0:58:6e:e2:72:de:
2d:1a:cd:1a:79:9f:bb:04:47:e1:18:e8:0a:84:86:
fb:08:9f:1f:c1:68:fb:44:7c:d3:d5:be:f0:22:a5:
70:60:97:4c:28:32:aa:3e:46:61:12:13:9c:29:a7:
a4:85:23:23:c5:62:49:b4:74:99:36:41:aa:5c:83:
a4:00:00:58:f2:f8:0a:f7:f2:f2:52:6f:01:2c:2e:
5d:9d:38:2d:54:e5:f4:ac:d7:a4:5d:33:65:07:9a:
13:9d:9a:24:39:8a:a6:99:15:fa:de:3e:52:18:31:
97:6b:9b:e2:a1:47:22:26:89:71:7c:80:ce:76:48:
db:1e:39:37:63:0b:29:a3:c3:fc:08:84:98:98:d1:
11:10:3e:33:ad:68:eb:08:e3:24:b1:38:e4:3d:7a:
d9:38:fa:2b:31:22:4a:78:d8:61:e1:19:ba:9c:e5:
dd:67:80:cd:04:6e:97:d6:3e:ac:95:26:2b:ad:f3:
4f:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6F:C7:6F:0D:C2:4A:E2:B0:47:64:4A:13:76:D7:39:BA:5D:3C:66
X509v3 Authority Key Identifier:
keyid:87:C3:B8:5A:7B:EF:BB:44:90:D7:AC:85:2E:B8:BE:84:BF:93:8B:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h8O4Wnvvu0SQ16yFLri-hL-Ti00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/bc5cc8-b3ef-40fc-ae40-78ec8023068f/1/h8O4Wnvvu0SQ16yFLri-hL-Ti00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:1d:4d:7e:48:b2:db:3c:89:fe:43:7f:6b:a1:20:b8:76:80:
d2:1f:f3:a4:fa:ff:a5:d3:75:36:ee:ce:db:ef:53:0a:e9:3d:
d0:08:3f:9a:8d:a8:b2:81:97:f5:65:06:a0:3d:c6:ab:e9:7f:
dc:5d:f6:6f:ce:7d:d4:4c:21:f7:16:93:bd:ef:30:1e:fe:b3:
7c:ac:01:e5:54:9b:5d:4b:ce:e6:19:30:1a:c3:7c:0d:ba:97:
84:09:41:3a:f5:88:ba:37:ce:7d:84:5a:f5:fd:bf:a1:77:3e:
63:5c:98:ed:fb:9e:5a:2d:bd:02:a3:49:0d:0b:55:08:3e:6b:
18:c7:a8:28:cc:07:30:99:14:c6:74:b2:85:b6:70:b0:cd:93:
04:b0:9b:7f:9f:2d:2f:20:ff:b1:c6:97:f0:ec:f5:22:58:b6:
41:c2:b2:76:f1:d2:76:c2:5a:74:71:b5:0a:3e:66:6f:26:63:
c8:ba:98:58:a2:b7:cb:cc:fe:73:d6:eb:ba:86:ee:35:51:54:
ec:c0:2a:ef:90:b9:71:88:f9:3e:20:68:4e:f4:25:69:db:42:
74:1a:b3:fe:99:b2:14:3f:08:65:24:60:6d:f7:d4:05:cb:b6:
ee:7e:6d:18:20:23:3f:4e:99:d3:dd:e6:9d:52:7c:a8:be:1a:
4c:9a:3c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:08:36 2026 by rpki-client