
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
File: g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft (raw, json)
Hash identifier: z8riHAc7bRgpVTE/jJ2iFCl/OljZh1lvSGPE7ehZ3wc=
Subject key identifier: 53:E0:8F:09:B0:E9:B2:78:0A:9E:2D:0C:BB:3A:5B:2A:A8:BA:81:BF
Authority key identifier: 83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5
Certificate issuer: /CN=837a739fd50864ccc246843ed6801959ba1ba6a5
Certificate serial: 019D3940DF81A87785285ABDD7C8A8CD2892
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
Manifest number: 07F9
Signing time: Sun 29 Mar 2026 11:00:45 +0000
Manifest this update: Sun 29 Mar 2026 11:00:45 +0000
Manifest next update: Mon 30 Mar 2026 11:00:45 +0000
Files and hashes: 1: XeOUR0-pjJaRQT7Tyhbi_WUTtlg.roa (hash: xjNJnRpeBMnuWS2RuvVGcAOVzSFDblEQbuBSUbq0Xoo=)
2: g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl (hash: HWuQ05+Ns8EDDUjZc31aYRsOYhF/BPwCsXGg/9X9S/Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 11:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:df:81:a8:77:85:28:5a:bd:d7:c8:a8:cd:28:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=837a739fd50864ccc246843ed6801959ba1ba6a5
Validity
Not Before: Mar 29 11:00:45 2026 GMT
Not After : Mar 30 11:00:45 2026 GMT
Subject: CN=53e08f09b0e9b2780a9e2d0cbb3a5b2aa8ba81bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:f7:aa:9d:b8:d0:ee:4e:bd:d3:c0:11:8c:b1:
12:0c:70:c0:57:bb:4c:9d:87:b5:0d:a7:7b:3f:79:
c1:26:72:0a:24:a2:32:b9:79:00:f0:91:c4:ae:fd:
ea:72:d1:81:a2:9a:ff:63:29:5b:ae:1d:82:e3:8d:
8e:fa:42:7c:82:64:08:e5:91:2e:3a:4d:f3:14:12:
1e:c2:9c:ab:70:21:43:4a:a6:98:77:63:90:8e:86:
c6:d5:cd:28:7e:1c:98:e1:a6:eb:70:57:ea:27:e1:
46:17:05:63:d3:a8:ca:77:0a:44:68:a1:9a:54:ce:
a4:95:c2:3e:e3:75:b4:7a:02:55:e4:15:02:60:7c:
3e:8a:4c:f6:2a:d6:45:68:02:ce:48:ab:b9:10:55:
8d:26:fc:04:09:d5:19:5d:6e:15:18:a8:c6:d9:30:
6d:6f:70:97:b7:bd:8e:a3:51:af:4a:c6:c6:b9:18:
d0:85:64:7d:af:0f:42:dc:b3:b8:2a:08:09:fb:9d:
38:e5:88:db:6a:61:02:d5:08:91:c0:ae:1d:5a:7b:
a3:97:27:f4:1d:f4:87:ad:09:48:eb:86:27:b1:0a:
34:12:87:7b:c2:c3:c1:06:cd:0f:60:8c:9f:28:4e:
3e:61:91:44:3e:64:3e:a0:4d:5d:4a:41:e5:25:72:
9e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:E0:8F:09:B0:E9:B2:78:0A:9E:2D:0C:BB:3A:5B:2A:A8:BA:81:BF
X509v3 Authority Key Identifier:
keyid:83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:fa:97:eb:8c:3a:1f:f6:f4:55:e3:70:00:06:24:82:e9:1c:
4e:65:53:ff:4c:b0:c4:32:02:b4:a4:b2:0e:48:3f:7a:42:61:
21:19:6a:b3:76:3e:e0:b3:73:07:7f:aa:3b:6b:94:5a:bb:cc:
55:68:64:d7:dd:82:10:e2:d7:8b:59:99:6b:07:0a:1f:34:63:
d2:2d:cf:2c:b1:c1:34:55:89:fe:5a:b9:e3:64:63:5d:35:f8:
ad:21:6b:b7:33:81:ec:bd:68:ed:21:88:04:b3:48:20:74:6c:
f2:41:59:ea:02:9e:51:3e:72:ee:40:df:63:30:03:3e:8e:78:
af:45:c0:5a:69:48:42:cb:37:ee:6b:1b:18:13:6f:2f:23:ad:
3f:2a:d0:e8:dd:f9:c7:00:c2:c2:a3:56:5b:a5:c7:4a:7d:6a:
d1:b1:29:07:c4:2d:24:f8:83:fa:c6:dc:c8:3f:0d:38:a5:ee:
3d:1d:88:a6:b1:a1:8f:98:09:86:5f:89:70:5e:b2:ee:93:d2:
30:1f:2c:f2:e6:70:7a:3d:fa:24:ed:ba:37:7c:cf:aa:c4:26:
af:30:56:14:da:49:ff:c3:b6:2e:f7:41:aa:54:22:32:92:ce:
fa:27:73:69:d7:23:12:72:01:21:8f:d1:2c:53:72:05:20:81:
54:3b:dc:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:49:21 2026 by rpki-client