Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
File: 43HOIIaAX5EvhRK3nF5mqcn01NI.mft (raw, json)
Hash identifier: 10rDQ1mTovJUN0PFSUJbjSEVKh67PYPLmhbqOvbHG7E=
Subject key identifier: AA:9E:2B:71:DB:A0:C5:CC:04:15:B6:01:75:93:5B:7D:E7:CB:8A:A6
Authority key identifier: E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
Certificate issuer: /CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Certificate serial: 019D3789A87293DC8A98F1C199F70EE96C57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
Manifest number: 0CE8
Signing time: Sun 29 Mar 2026 03:01:01 +0000
Manifest this update: Sun 29 Mar 2026 03:01:01 +0000
Manifest next update: Mon 30 Mar 2026 03:01:01 +0000
Files and hashes: 1: 43HOIIaAX5EvhRK3nF5mqcn01NI.crl (hash: u+wbFxIELdwq+A56bkWQhm11TeXCe1wjN4Y1ASIVe0k=)
2: Gfq6OwngWw1fRn8U15Pj1V8Qgo4.roa (hash: THRrDATBehizQuRMdoUMH27yXofDZyuSKLWoSx5aX+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:a8:72:93:dc:8a:98:f1:c1:99:f7:0e:e9:6c:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e371ce2086805f912f8512b79c5e66a9c9f4d4d2
Validity
Not Before: Mar 29 03:01:01 2026 GMT
Not After : Mar 30 03:01:01 2026 GMT
Subject: CN=aa9e2b71dba0c5cc0415b60175935b7de7cb8aa6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:3b:3f:fe:3c:fd:12:9b:56:77:83:eb:3a:9d:
75:f1:8d:9b:5b:2f:1f:47:53:0f:13:2c:1f:7f:9d:
b2:8a:cb:b2:d3:df:13:aa:ed:b7:11:47:9a:55:54:
5a:28:7b:0e:60:a8:10:0e:df:d7:8d:bb:77:bb:6b:
65:90:d3:4d:a8:79:6c:3a:c1:bd:a0:81:56:f6:87:
dc:c5:3a:71:89:ee:7e:74:dc:33:32:a2:b7:12:99:
ec:9b:a4:d0:0b:59:c9:9d:76:f3:2f:e3:2a:51:ee:
14:5f:dc:1d:89:30:3c:fa:5d:f1:91:d5:97:2d:85:
b0:76:01:19:83:70:66:0f:59:e1:45:45:2a:37:4f:
3b:61:f7:3f:df:b0:86:0d:e6:2e:fc:b7:68:e6:ed:
58:66:7c:bd:a2:29:4d:5b:bd:6c:04:8d:7b:53:12:
48:41:23:68:9c:f6:63:b3:77:04:16:0e:91:e2:95:
2d:86:27:b6:1c:ea:c5:09:4d:bc:53:0a:31:4f:16:
ad:d9:31:e3:34:e5:60:83:dc:1c:76:fa:93:ee:7d:
a9:bc:e8:2e:37:73:80:4b:6b:c9:5c:b3:24:bb:42:
2f:1a:43:25:68:11:4b:fb:3d:22:f1:84:20:07:ff:
91:5f:d9:e9:25:5e:78:db:9e:77:94:01:45:8c:39:
69:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:9E:2B:71:DB:A0:C5:CC:04:15:B6:01:75:93:5B:7D:E7:CB:8A:A6
X509v3 Authority Key Identifier:
keyid:E3:71:CE:20:86:80:5F:91:2F:85:12:B7:9C:5E:66:A9:C9:F4:D4:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43HOIIaAX5EvhRK3nF5mqcn01NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6dbdaf-5495-4cc5-b770-73590aa290f1/1/43HOIIaAX5EvhRK3nF5mqcn01NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:b1:26:d5:c9:9e:b2:1a:81:55:ae:23:40:55:bf:12:bb:cf:
2f:0c:8d:19:45:92:f1:44:45:48:06:76:80:2c:cf:f6:a0:dc:
dc:5b:f2:f1:40:c0:32:ee:1c:71:f2:c3:4a:ad:25:2d:d7:95:
69:d2:0b:e9:73:32:b4:d4:07:c1:cb:24:51:86:2a:71:66:5e:
83:c5:63:55:84:e2:6f:47:21:e3:96:23:46:67:f4:f9:4b:e0:
65:22:90:3a:7e:f3:d6:ba:ad:60:7d:bb:fb:3c:9d:42:4c:4c:
9c:b0:7b:4c:f4:53:92:f5:34:32:ee:e6:e3:ab:71:c0:fd:0d:
7c:bf:11:1a:ab:82:0e:a4:0f:53:ba:f4:38:b5:b4:ac:28:e1:
4f:0b:78:c9:8a:86:8b:dc:65:4f:4e:49:37:66:92:db:7b:c2:
12:30:e7:14:63:7a:03:6d:6c:fe:08:fd:bc:ba:a5:73:90:37:
2f:4c:7d:b8:ee:df:eb:f2:74:4f:e6:86:92:f3:45:01:76:d9:
a3:f7:32:67:be:a0:d2:c8:ef:a1:6b:95:45:a5:5a:27:5f:dd:
e3:df:6c:b0:e0:ce:b2:fd:68:39:70:50:ca:b9:98:ca:ab:6d:
8f:49:6b:34:8c:eb:7e:68:ff:f4:2e:78:e0:14:ab:7d:1f:d8:
94:d4:0c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:44 2026 by rpki-client