Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
File: R1oGyte9DD25-KOB8euc1sdaqyg.mft (raw, json)
Hash identifier: /hzJZ8x4rS3yuoKCME2nIudLHqhbahw/38UVsxe0rrU=
Subject key identifier: 83:C7:23:DE:AF:05:3A:02:E7:04:2A:9F:C3:CB:54:DE:5B:36:40:ED
Authority key identifier: 47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
Certificate issuer: /CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Certificate serial: 019D37F6FB55C10FE76BA1095A7B70157BF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
Manifest number: 044A
Signing time: Sun 29 Mar 2026 05:00:26 +0000
Manifest this update: Sun 29 Mar 2026 05:00:26 +0000
Manifest next update: Mon 30 Mar 2026 05:00:26 +0000
Files and hashes: 1: R1oGyte9DD25-KOB8euc1sdaqyg.crl (hash: q3ludaZ1Pb3n4Mzgy3rZgN6KiAVi5WuJKJe9/C3gaWs=)
2: WssIiJPoFY7lcNnyGVymIImcWDA.roa (hash: k9Vj39pdgub01PhKYMQsaWQH2pHY+R5nnRnCmdZFUMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:fb:55:c1:0f:e7:6b:a1:09:5a:7b:70:15:7b:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=475a06cad7bd0c3db9f8a381f1eb9cd6c75aab28
Validity
Not Before: Mar 29 05:00:26 2026 GMT
Not After : Mar 30 05:00:26 2026 GMT
Subject: CN=83c723deaf053a02e7042a9fc3cb54de5b3640ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:a6:7a:2b:ec:de:f3:f8:30:cf:86:ef:89:c9:
ee:ec:8b:99:00:e9:86:ce:a8:07:1b:4b:35:4f:4a:
b5:1c:67:41:ef:85:2a:ca:bc:4a:e0:f0:c6:e0:55:
8b:41:70:c9:6d:49:47:8c:43:4e:ab:19:1f:28:94:
e0:22:57:06:b0:4f:ea:66:fb:90:0c:f0:6a:00:8c:
af:6d:f7:de:6b:a2:93:0f:4e:af:13:7a:29:45:0a:
76:06:db:b5:60:c6:df:e4:0a:e4:55:62:bd:68:b6:
a4:fd:3c:f7:eb:98:4b:94:a6:49:77:f8:95:e8:76:
ec:d6:eb:8c:ff:fd:0f:4f:02:c1:19:6f:c7:70:c7:
2a:ee:35:b7:e7:9c:95:9c:44:b2:d0:a1:78:02:da:
f7:cc:39:15:13:e1:43:c3:94:f2:f8:39:ec:9b:a8:
c0:e6:57:9e:75:17:31:fc:4f:64:e6:38:c1:ea:04:
82:bd:1f:a7:d6:f5:50:0b:eb:94:aa:ea:6b:41:40:
b3:03:00:2f:14:9c:6b:21:14:19:4a:8e:fd:52:4d:
52:86:f0:32:9f:ed:9f:e9:50:09:e4:06:3e:97:ee:
c1:e8:6e:24:05:d3:42:62:7a:97:47:88:80:d2:16:
39:bc:ef:03:75:f3:b8:75:9f:50:11:b1:9a:77:d5:
b0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:C7:23:DE:AF:05:3A:02:E7:04:2A:9F:C3:CB:54:DE:5B:36:40:ED
X509v3 Authority Key Identifier:
keyid:47:5A:06:CA:D7:BD:0C:3D:B9:F8:A3:81:F1:EB:9C:D6:C7:5A:AB:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R1oGyte9DD25-KOB8euc1sdaqyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/bdfd70-3067-473d-8f65-b55322028bb8/1/R1oGyte9DD25-KOB8euc1sdaqyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:33:fb:21:6c:ed:55:9d:d7:83:56:69:e2:2e:46:d2:a3:4a:
a6:1f:ab:4f:da:53:bd:c3:8a:7f:e0:68:93:da:74:71:a7:0f:
72:1a:45:49:e9:55:0e:33:3e:bd:e0:48:f3:74:d3:2f:ab:c8:
ce:58:dd:74:f3:62:fe:b6:d3:02:f5:a9:93:1f:9c:59:82:fd:
39:10:de:0f:c4:b1:1f:4c:5f:0d:a7:77:95:57:50:7f:a2:ff:
39:ab:69:c5:fe:c2:ab:f7:9d:43:80:65:91:79:cb:58:f6:d7:
09:ea:9f:05:3f:bf:6b:3f:28:ae:28:2e:24:a5:de:f3:0d:f7:
43:06:ba:5d:6d:7e:61:46:71:28:1e:d4:6e:58:e4:d8:9f:69:
4d:01:55:0d:b0:d6:4a:e1:83:da:a3:4b:1e:44:47:4a:96:96:
80:66:87:54:81:b9:ed:5a:f8:5b:b5:95:82:1c:ed:c2:67:f4:
b2:03:7f:b7:71:1c:d7:6b:0d:1f:08:6a:f6:13:61:35:4a:e6:
68:40:92:dd:06:78:fd:a5:ac:fa:b8:47:5c:9b:8c:23:10:db:
3c:e6:12:12:ab:47:87:da:84:6c:30:b9:19:c6:7b:a7:20:5a:
68:cf:dd:b1:d1:8c:c5:a1:40:37:8d:97:85:08:3c:18:6e:12:
e5:b1:59:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:50 2026 by rpki-client