Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
File: 1O219t5yQ2FIs1pZA38jNBUN2zY.mft (raw, json)
Hash identifier: hVKL63Xrg0nUSsISQA5C5HmOZ52VotPGDN+SNUx9hKc=
Subject key identifier: 3D:97:55:FF:62:99:98:D8:36:39:A5:31:AA:36:88:A0:69:AF:B2:D9
Authority key identifier: D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
Certificate issuer: /CN=d4edb5f6de72436148b35a59037f2334150ddb36
Certificate serial: 019CE66D2EBD21C6E5772FBC43F9238952A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
Manifest number: 17F8
Signing time: Fri 13 Mar 2026 09:00:40 +0000
Manifest this update: Fri 13 Mar 2026 09:00:40 +0000
Manifest next update: Sat 14 Mar 2026 09:00:40 +0000
Files and hashes: 1: 1O219t5yQ2FIs1pZA38jNBUN2zY.crl (hash: zHzkwLx+V8127cFtKp4s+FCxRqEaO2fgHJ4/Vt30ksQ=)
2: RpCy1JXxo-ZI0wF9fz-fX4KJGZQ.roa (hash: 3/7dLJaax8heeK87EWODxuRiV6OLm+WDskuSJCjvPmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:6d:2e:bd:21:c6:e5:77:2f:bc:43:f9:23:89:52:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4edb5f6de72436148b35a59037f2334150ddb36
Validity
Not Before: Mar 13 09:00:40 2026 GMT
Not After : Mar 14 09:00:40 2026 GMT
Subject: CN=3d9755ff629998d83639a531aa3688a069afb2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ef:87:27:e6:c7:11:6c:a0:5d:5f:85:c9:d7:
f5:bb:c5:c0:f2:27:3d:83:7e:68:8e:a9:46:ce:de:
2a:8d:04:f8:f7:b7:02:05:57:9f:4e:07:3d:6d:8d:
6b:84:59:27:7b:f5:ee:69:50:39:cc:e0:ae:f6:35:
1f:40:dd:05:77:a5:51:52:0d:fe:d9:fe:65:fc:aa:
e5:cd:60:69:a1:d3:a0:65:a7:03:5e:a6:cb:13:ff:
4a:2a:53:46:fc:4e:98:93:24:99:94:f6:56:7a:aa:
1c:39:cb:3b:d5:25:23:72:a5:7b:ed:d0:c1:c6:56:
08:27:66:e2:48:e8:da:f4:86:1e:36:c7:d5:4d:59:
30:d5:e4:57:73:ea:00:8e:1c:9e:73:2c:09:5c:18:
e8:3b:00:17:d9:71:53:bc:d1:d5:32:23:0a:a1:ce:
50:5a:9a:ee:36:4e:9b:8d:dc:15:ad:da:15:e7:a6:
69:d4:78:60:09:92:26:e3:89:08:26:01:86:93:46:
61:3f:ae:81:35:96:bb:11:06:79:d4:c7:f9:97:89:
77:0a:b6:7c:a6:7b:e2:44:76:89:24:48:51:e9:85:
8e:28:4b:b9:2d:a9:6e:d2:f6:80:61:07:a3:73:1e:
d2:5d:d8:09:b0:ec:8d:6a:c6:3f:a2:ab:f6:eb:17:
5b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:97:55:FF:62:99:98:D8:36:39:A5:31:AA:36:88:A0:69:AF:B2:D9
X509v3 Authority Key Identifier:
keyid:D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:00:93:07:dc:56:cc:83:ee:ca:18:79:71:c4:84:23:e4:07:
72:4c:59:8c:3a:36:08:22:17:6b:e8:08:25:f3:59:22:5b:4d:
e7:cc:61:dc:db:f5:b8:4a:33:42:08:81:d1:17:19:11:f5:dc:
6c:97:3c:0b:91:71:19:9e:76:dc:7a:fb:ed:c9:13:32:64:70:
a0:6a:e1:fc:60:3b:25:3b:80:a0:4b:05:49:41:50:45:c8:00:
3c:bf:e2:8c:4f:9d:67:58:65:6e:0c:d3:5d:12:72:b0:ed:6f:
94:c1:ec:14:44:dc:44:83:46:a3:02:64:f8:fd:fd:67:bc:91:
7d:97:f5:a5:45:43:79:25:2e:8c:a6:f7:8f:0e:4d:4c:c0:3a:
70:7c:79:29:3d:eb:c9:dc:a6:df:0e:bc:98:ba:25:5f:25:8a:
d7:3c:4d:40:c7:61:27:02:e6:83:94:f7:ef:e5:35:18:03:f0:
3f:ae:a6:2e:73:ac:05:54:80:0d:ad:fe:ec:49:d8:c1:41:c1:
16:63:c1:66:b7:15:a7:eb:77:8f:11:65:69:0c:f1:86:60:82:
45:f9:ed:bf:84:4c:95:25:23:05:7c:c1:7d:3c:04:2b:7a:fd:
6f:30:60:54:a5:3d:ec:fa:b1:8a:4d:fa:c6:b4:e1:a4:d8:6f:
a3:29:46:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 12:33:43 2026 by rpki-client