Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
File: g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft (raw, json)
Hash identifier: nnZsX5EMZ4eWUqz7FppQi1IKVaDTpo5Jg39ogtW0ErM=
Subject key identifier: 98:5F:71:7E:AF:B6:28:66:42:A0:C6:F4:90:4E:9D:10:87:2D:FD:6C
Authority key identifier: 83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5
Certificate issuer: /CN=837a739fd50864ccc246843ed6801959ba1ba6a5
Certificate serial: 019D37533790238AA9CE16C137BE64462F5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
Manifest number: 07F8
Signing time: Sun 29 Mar 2026 02:01:33 +0000
Manifest this update: Sun 29 Mar 2026 02:01:33 +0000
Manifest next update: Mon 30 Mar 2026 02:01:33 +0000
Files and hashes: 1: XeOUR0-pjJaRQT7Tyhbi_WUTtlg.roa (hash: xjNJnRpeBMnuWS2RuvVGcAOVzSFDblEQbuBSUbq0Xoo=)
2: g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl (hash: nF3AEsIC66LVHc7kxtquax5MCenCI8gjplr1u+T7ZLg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:37:90:23:8a:a9:ce:16:c1:37:be:64:46:2f:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=837a739fd50864ccc246843ed6801959ba1ba6a5
Validity
Not Before: Mar 29 02:01:33 2026 GMT
Not After : Mar 30 02:01:33 2026 GMT
Subject: CN=985f717eafb6286642a0c6f4904e9d10872dfd6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:7e:e3:3e:55:2a:dd:06:d2:7b:56:6e:cb:71:
f1:45:26:4a:f6:f3:c4:5a:f9:bc:09:e9:b4:0d:3e:
d2:ae:3a:2a:0d:1b:48:13:ea:f1:ff:82:3b:12:ae:
51:c4:71:54:50:87:59:ad:0a:62:d2:58:e3:4b:83:
cd:ae:b4:34:a9:47:be:48:50:be:6a:bb:d0:82:40:
cb:b7:ba:28:16:be:ef:40:8a:2c:70:97:be:be:68:
09:5a:33:d6:c2:29:0a:17:0f:f2:1a:99:73:ab:55:
ea:18:a4:77:8a:42:38:e4:67:11:26:66:b8:12:5c:
a4:18:28:22:a6:b5:a1:a1:6b:2f:0a:87:68:57:28:
56:69:dd:5c:5c:54:79:c7:d8:a3:51:f9:97:04:86:
67:d6:69:48:ad:b5:52:7b:77:d4:87:b9:ba:51:21:
da:9a:d8:80:36:62:08:8d:4b:ad:35:8e:f8:d5:b3:
15:93:e7:f5:bb:3b:01:31:cb:3a:0d:7d:f7:f2:6d:
3a:98:1a:d2:03:e8:36:21:1a:60:a5:91:2f:a6:dd:
7b:66:2e:7e:3b:da:3a:3c:69:4b:3d:75:6e:90:cf:
50:64:0e:99:71:b8:0c:a7:e2:af:8e:26:5d:38:70:
42:10:1a:7f:e3:89:24:42:46:3e:eb:65:37:58:07:
56:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5F:71:7E:AF:B6:28:66:42:A0:C6:F4:90:4E:9D:10:87:2D:FD:6C
X509v3 Authority Key Identifier:
keyid:83:7A:73:9F:D5:08:64:CC:C2:46:84:3E:D6:80:19:59:BA:1B:A6:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g3pzn9UIZMzCRoQ-1oAZWbobpqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/11cbb5-3e2e-44d6-9d1b-aae1a0bda02c/1/g3pzn9UIZMzCRoQ-1oAZWbobpqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:56:11:80:43:00:28:12:26:e6:49:ff:e6:ad:ef:fd:9c:b8:
ee:84:83:9d:f6:ea:da:54:25:2a:85:80:dd:48:db:78:de:73:
9e:30:7d:2f:15:f5:c1:b1:cd:db:b6:33:68:93:f6:a2:60:47:
f9:ae:f0:75:fd:89:9b:0f:9d:b2:e7:86:11:32:82:04:3e:d1:
71:fb:70:2f:91:b2:99:84:b0:b8:5c:a3:01:1f:36:1b:dc:6c:
27:e2:fa:92:aa:72:2d:fd:60:a1:6d:fb:23:07:33:7c:23:79:
d2:6f:bd:5b:c3:d3:ca:64:58:c8:28:1b:b3:ef:d4:e0:04:23:
76:15:0b:38:31:30:77:10:45:1d:e1:66:66:42:98:1d:2a:47:
80:ce:83:7e:7e:2d:0e:27:3c:5f:ec:8c:21:7f:cc:bb:21:16:
de:b0:23:6b:ee:95:0d:1b:16:63:1a:10:7a:07:91:32:c4:7b:
fd:e2:d9:f6:26:6e:0e:74:1d:21:28:06:b4:94:20:68:6e:12:
2a:5b:f8:25:9f:51:4b:3d:88:a2:94:aa:9a:c6:9a:f9:62:7b:
03:6a:b0:5c:0c:16:35:b8:67:11:7f:8a:45:27:55:be:db:df:
ba:7e:bf:22:2f:24:ed:bf:0b:e6:f2:79:22:f5:c9:5b:d7:c0:
1f:51:e8:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:53 2026 by rpki-client