Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: /JZkMNX7obnUKOs6ThSAJ6UByQCD5BZ0X2ERbDzwWcg=
Subject key identifier: DE:8F:DD:63:61:07:9C:0A:23:92:E4:35:49:B5:D5:C0:E2:8E:12:7F
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 019D389C67C09A9A2A944857F4965F21B82A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 0813
Signing time: Sun 29 Mar 2026 08:01:07 +0000
Manifest this update: Sun 29 Mar 2026 08:01:07 +0000
Manifest next update: Mon 30 Mar 2026 08:01:07 +0000
Files and hashes: 1: 8641rsKg9fD7lx-GPNjbC4vuzsc.roa (hash: Vka8GFo29c9tBpzyWSVh9ZUdbW2Ls5cI8qhExZNURvw=)
2: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: wQd+1xhyN4xbTuZeZOdhRv/trydpLZtFFS3R/vU0J/g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:67:c0:9a:9a:2a:94:48:57:f4:96:5f:21:b8:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Mar 29 08:01:07 2026 GMT
Not After : Mar 30 08:01:07 2026 GMT
Subject: CN=de8fdd6361079c0a2392e43549b5d5c0e28e127f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:49:f2:e0:36:35:e8:74:52:5c:a6:82:dc:76:
fa:31:c7:36:1a:6b:7e:e1:a0:8d:ed:49:cf:fb:0b:
6b:97:14:8c:fe:8e:41:a6:05:47:52:60:ea:5e:10:
f1:30:22:21:6b:78:28:4d:19:e7:67:77:67:9b:96:
79:1b:5c:66:fd:1a:99:72:e5:8b:ed:98:cc:60:f0:
68:c1:ce:da:89:66:78:f2:9e:5c:19:c1:ff:7a:c3:
63:5f:20:7e:81:5a:86:18:01:9a:62:b1:ef:b8:c5:
a9:92:56:0d:6a:80:44:aa:db:2c:5c:a9:75:cb:b6:
15:52:14:50:7e:d8:f6:89:4c:06:95:ee:92:5d:b4:
13:43:84:ec:41:5b:83:90:de:3b:54:13:57:19:6f:
41:25:0d:ab:b5:1c:01:2a:d6:57:a1:39:26:3d:2c:
b4:d0:c5:38:63:c7:68:e5:d1:20:78:21:89:bb:93:
1c:41:59:ab:25:72:50:69:3a:77:19:d1:8a:34:8b:
8d:9f:37:7a:3f:a5:5a:f1:e9:3f:71:e7:67:4a:98:
72:ab:44:56:d9:94:d7:9a:e8:20:23:9a:67:7b:a1:
5b:e1:88:0c:03:41:5b:b3:76:5a:af:ed:66:86:eb:
88:3f:d9:a7:97:5e:30:51:c7:c1:4d:00:90:d7:4b:
b4:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:8F:DD:63:61:07:9C:0A:23:92:E4:35:49:B5:D5:C0:E2:8E:12:7F
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:2e:43:4a:0f:14:22:b0:75:91:94:40:90:6a:ff:ee:28:d5:
bb:b2:0f:32:ea:b5:b2:2c:1f:8f:4c:42:77:2d:c9:3a:55:f2:
45:f2:27:0a:77:b5:05:7b:e7:06:55:4e:6d:c9:e5:ca:e0:c8:
c9:50:85:b8:bc:82:90:7e:96:c4:36:fb:16:f5:9d:9c:dc:e8:
62:a6:02:82:a1:61:f0:d6:77:fe:70:6c:21:29:2f:75:ec:7d:
0e:95:68:17:15:2e:2a:9e:3b:fc:69:cf:9e:32:4c:45:ca:bc:
c2:cb:17:de:ca:67:50:b4:af:0e:c6:bb:9b:8b:54:51:fc:c1:
78:15:66:b3:8a:11:23:a8:90:3e:b8:26:6e:7e:55:37:7a:a1:
a7:3c:c9:59:3b:d7:68:93:b5:b0:14:c5:f4:29:a0:ae:70:55:
76:ee:17:e2:eb:a8:98:c5:04:87:87:54:de:d1:3d:4f:7d:2d:
b4:a0:82:81:ba:dc:ff:cd:6b:98:33:d7:35:cd:fb:53:14:c7:
ab:88:4f:2c:d5:c2:b3:5b:53:0b:6a:b2:ab:b1:2e:df:f5:08:
03:cb:ce:82:00:9f:8c:ab:53:5b:5f:be:62:15:a2:fe:38:6a:
9c:c5:fb:c4:80:7a:b6:f5:46:10:56:1c:37:08:97:22:4d:f3:
89:d4:c8:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:13 2026 by rpki-client