Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
File: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft (raw, json)
Hash identifier: WzBzz7SKyt+k+M/yReOdNSActvukTSeI3/xSzEYPKH0=
Subject key identifier: 2C:22:9F:EE:1C:B4:A8:3E:A8:31:A9:57:10:03:55:39:2B:E8:07:36
Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Certificate serial: 019D3752DC17FD3663D619EBB058A1677620
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
Manifest number: 1289
Signing time: Sun 29 Mar 2026 02:01:10 +0000
Manifest this update: Sun 29 Mar 2026 02:01:10 +0000
Manifest next update: Mon 30 Mar 2026 02:01:10 +0000
Files and hashes: 1: hEHeb8OuF9xUk8MiJaqaoIXUxyM.roa (hash: cMPtLwG20T+Oxfp5dF/gVvhKkmvpYnxVK+DxJa36bGQ=)
2: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl (hash: 45F65XkNdcJ5MN++mXeUw5Hq8lKOWkAt3J3Pt1kMj/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:dc:17:fd:36:63:d6:19:eb:b0:58:a1:67:76:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Validity
Not Before: Mar 29 02:01:10 2026 GMT
Not After : Mar 30 02:01:10 2026 GMT
Subject: CN=2c229fee1cb4a83ea831a957100355392be80736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f5:7e:50:57:76:8c:18:99:87:51:f0:9d:13:
16:d7:7b:62:e2:e8:16:a0:71:1a:e4:0d:8c:21:f4:
b4:46:7f:ca:7b:fb:c6:ed:3a:f2:8c:cd:5f:29:8a:
6f:00:e7:aa:d4:84:ff:39:90:64:91:5f:3f:ee:a0:
57:e6:f5:84:fa:37:19:47:78:98:d1:81:18:b0:9f:
d6:d6:8c:aa:89:51:07:98:ae:7a:24:58:97:15:f7:
e9:48:f1:2d:9c:76:7c:3c:92:b3:aa:03:1e:70:49:
e0:c0:4e:df:c7:12:63:7a:c1:75:4a:a1:58:ce:e8:
24:8d:9b:98:9d:11:5d:0a:bc:cb:3c:d4:e2:31:10:
a3:ea:b8:f5:17:c6:52:2e:ea:da:e8:78:a8:b3:21:
1a:73:9a:b5:d1:84:f9:d6:cb:b1:b1:5c:0c:e0:ed:
f7:f9:a6:36:58:37:bb:03:af:d7:01:9e:b9:0b:ef:
0b:5b:0a:5c:73:fd:10:7b:9b:d5:49:7f:0d:ca:8a:
12:f1:eb:57:fe:4a:c9:9c:79:71:65:6c:93:a9:e3:
8f:c3:b6:e4:c2:79:9d:11:d8:ac:bb:3e:22:68:ca:
84:8c:b5:f7:f1:96:1c:fa:be:86:94:3f:9d:0e:30:
da:d9:2c:89:a1:b4:cd:6e:1e:35:f4:dd:92:17:d9:
ce:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:22:9F:EE:1C:B4:A8:3E:A8:31:A9:57:10:03:55:39:2B:E8:07:36
X509v3 Authority Key Identifier:
keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:91:4f:73:7a:74:2f:fa:7e:49:e8:83:80:15:5c:bb:00:3b:
a3:7b:80:52:5a:02:42:53:cb:bd:48:1f:09:9a:17:b7:4e:5c:
c4:a7:3b:a1:7b:71:f1:99:f5:a8:24:1e:e4:95:dc:70:68:68:
07:77:6e:2e:d4:43:65:1b:36:a5:58:06:f0:74:32:47:39:23:
db:54:bc:2a:33:93:4d:3d:20:3d:cc:6c:b6:0a:57:3d:64:1e:
d8:ff:d4:6e:e5:2b:4b:58:78:07:2f:7a:ed:e1:2a:d2:a3:a5:
ae:0c:85:40:dd:1a:39:33:ce:2a:a7:48:46:66:e1:b2:ec:0f:
c7:89:70:b0:55:40:8c:9d:e5:21:88:d6:ae:96:da:2f:8c:cd:
f9:da:cf:dc:c0:8f:ec:26:e3:e9:e7:98:8f:6c:54:60:ac:ee:
97:79:15:17:21:91:32:43:73:07:8d:b4:6c:fa:0d:fb:ff:93:
55:ac:9d:f6:b2:eb:c2:2e:72:5e:80:43:b6:86:2f:28:d9:ca:
a0:68:c0:b6:6b:51:ca:42:b7:19:29:10:4e:28:5a:d7:17:63:
c8:3b:b5:9e:2e:ad:ae:bc:46:90:f8:4f:54:2c:06:d4:6b:fb:
17:19:11:fc:fa:f3:a5:ed:13:36:ae:b6:30:97:e9:96:d1:ea:
b0:64:42:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:55 2026 by rpki-client