Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft
File: loH8jHM3xqHSC4SADfhion5f29c.mft (raw, json)
Hash identifier: IfDalbJbIXKyzoDDwMqyjgCeZQm6waNsNCgdIFPSNDw=
Subject key identifier: 17:7F:5A:78:EF:36:85:0A:13:DC:EF:61:C7:96:36:BF:50:F3:63:0A
Authority key identifier: 96:81:FC:8C:73:37:C6:A1:D2:0B:84:80:0D:F8:62:A2:7E:5F:DB:D7
Certificate issuer: /CN=9681fc8c7337c6a1d20b84800df862a27e5fdbd7
Certificate serial: 019D3909927150654CEC34C1BCED98F7FBF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft
Manifest number: 0331
Signing time: Sun 29 Mar 2026 10:00:21 +0000
Manifest this update: Sun 29 Mar 2026 10:00:21 +0000
Manifest next update: Mon 30 Mar 2026 10:00:21 +0000
Files and hashes: 1: 62xv2lQHxNM_l_YrJtcwOfnMuYw.roa (hash: gV7lklXQn/5hqUDHVsvJYf+Kfk/HDRP/U+DCEe4jlA0=)
2: PFGIVa0BOcrYn7LDn1lpTGcFlyg.roa (hash: KajiJYew3aM31pMlayFlO34jp69DaxrhYFWYOe/gl/8=)
3: i9dvXXtl86NkntskYAQaMtaTQus.roa (hash: jn3xesrUXS6xuu+2iCltP+AJecvksZHI4qYuAZ+46Rw=)
4: kH2vVEZ7NeBnNJ25Bfzxs-l-m2Y.roa (hash: lUmva7T7suBnjlbuPKGwGSN8q5aV/viwDRe/Z9TY9sA=)
5: loH8jHM3xqHSC4SADfhion5f29c.crl (hash: mqGK8yo6MbCE80wrFvlab/LAkvNIK+jigFljjDPZMZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft
rsync://rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:92:71:50:65:4c:ec:34:c1:bc:ed:98:f7:fb:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9681fc8c7337c6a1d20b84800df862a27e5fdbd7
Validity
Not Before: Mar 29 10:00:21 2026 GMT
Not After : Mar 30 10:00:21 2026 GMT
Subject: CN=177f5a78ef36850a13dcef61c79636bf50f3630a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e9:82:59:cd:25:71:ae:0d:a0:2e:9b:76:9d:
3b:3a:a9:70:be:93:0d:d8:be:cc:75:9c:73:3b:1f:
fd:36:65:83:af:4e:32:a4:72:ac:d4:cc:04:95:b1:
33:4f:14:fa:20:47:09:5f:8f:77:ff:7b:23:0b:2b:
40:b0:8e:90:e6:65:71:c3:b6:ec:57:99:f1:89:07:
1a:c6:87:2e:2f:88:7f:fc:ab:c1:40:76:29:cd:d0:
78:30:87:8d:2a:58:ca:e4:64:a4:04:19:ad:d4:5d:
c8:83:3a:db:df:e6:1e:c6:48:4e:c8:56:26:84:cd:
65:e4:76:48:27:04:3f:87:4c:81:74:9f:4f:74:bd:
37:86:c3:40:fa:86:08:fb:5e:76:b2:02:b9:1d:a3:
3e:b2:bb:b4:1f:89:00:75:36:2e:28:f0:5e:4c:50:
d7:ea:5e:b5:d8:92:a1:bd:9b:c3:d8:82:b3:6b:09:
e3:0b:35:92:f9:b4:21:0f:16:a9:73:b3:42:6c:f5:
aa:86:b9:41:fd:b9:05:0e:8f:fb:a2:ac:c7:49:6f:
5f:2a:3c:ed:49:28:8f:44:b6:0a:3a:32:cd:89:b1:
b4:58:1d:a4:e1:17:3d:6b:da:ea:73:81:5c:5d:13:
60:71:4f:e9:54:a8:17:a6:90:d8:a0:5d:61:1a:ee:
a2:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:7F:5A:78:EF:36:85:0A:13:DC:EF:61:C7:96:36:BF:50:F3:63:0A
X509v3 Authority Key Identifier:
keyid:96:81:FC:8C:73:37:C6:A1:D2:0B:84:80:0D:F8:62:A2:7E:5F:DB:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:82:7d:79:a6:d8:86:a1:81:99:5b:ae:22:42:53:06:f1:a3:
32:52:d8:f7:f0:65:d3:9b:ec:73:49:92:6a:2c:7d:b4:ee:10:
cb:f3:2d:66:45:76:3c:02:c8:43:70:e0:db:55:09:e9:40:e4:
db:b9:e5:e5:aa:76:8b:62:43:df:fb:dd:7c:03:73:9f:ac:d2:
e0:f8:32:df:0d:c6:3f:79:66:98:25:89:02:8e:24:fb:03:1c:
1c:c9:27:23:8c:c1:36:1d:36:11:f3:38:0c:56:1d:1f:37:0d:
47:06:19:18:cf:5f:cd:16:3c:7e:23:24:d4:ff:02:06:3d:2b:
a1:eb:7d:f2:f5:29:4f:65:ee:2e:3c:dc:99:27:f9:5c:d8:9e:
c4:21:32:68:59:a3:bd:64:06:02:a9:b7:ea:1b:d9:af:77:b9:
5e:2d:71:54:77:d1:56:97:a5:6b:d9:da:22:90:1e:cd:71:9e:
ef:93:46:76:dd:96:30:31:9e:fc:28:8e:5a:f2:db:d0:ae:4c:
0b:06:f4:67:65:87:28:4c:35:30:ac:cb:8d:4d:31:7f:c1:29:
57:b7:59:5e:f2:d8:c3:08:89:f9:93:bd:06:42:d6:c3:97:f0:
76:3f:b0:f0:67:e9:6d:5a:e9:1b:c7:6e:bb:f1:ee:85:3d:38:
36:95:aa:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:47:03 2026 by rpki-client