Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json)
Hash identifier: Vx1iqbdQWe9Wiperq8wbcZmlpSYYN4ov9MME7lkLGLw=
Subject key identifier: F3:77:D0:66:CF:4B:17:00:6C:64:BD:1D:21:FD:7A:F1:7C:71:6E:D1
Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Certificate serial: 019CE447F41DD9FA7DE2E7AC840AD4F9E53E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
Manifest number: 0CA3
Signing time: Thu 12 Mar 2026 23:00:46 +0000
Manifest this update: Thu 12 Mar 2026 23:00:46 +0000
Manifest next update: Fri 13 Mar 2026 23:00:46 +0000
Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: 0AQ/E50m37JdQ3bZXltdNIhk/paJfrRfFkp11hsiD+8=)
2: bbNTfIJmhGsZ2V8DBjEahyC2lWE.roa (hash: /Eg3PukaE2y9AWWE2+6unARGBgb5uWfL7NaM72cQJhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:47:f4:1d:d9:fa:7d:e2:e7:ac:84:0a:d4:f9:e5:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Validity
Not Before: Mar 12 23:00:46 2026 GMT
Not After : Mar 13 23:00:46 2026 GMT
Subject: CN=f377d066cf4b17006c64bd1d21fd7af17c716ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:e1:74:84:43:b0:46:78:e5:23:5a:47:4a:f2:
69:e6:78:a7:1d:6e:3b:d0:31:6d:5a:bb:ac:73:a2:
a3:34:9a:c5:2c:bd:d8:9c:9f:5a:de:97:62:70:7b:
10:a5:5b:e3:5f:18:f2:05:18:4e:98:de:1d:d9:ae:
69:28:48:0c:be:00:d7:87:a6:89:14:ff:5c:0f:98:
f8:1b:ff:cf:80:44:c2:d4:d7:66:ba:c1:27:e6:6e:
a8:50:a2:75:c7:19:52:20:90:dc:de:34:10:38:a5:
a9:0e:a6:01:48:88:13:de:9a:77:c8:7d:96:8f:6e:
11:62:2f:d6:fd:76:fa:57:3f:5b:96:75:66:70:37:
1a:65:d4:5f:af:22:7d:d1:3d:f2:68:c4:ad:9a:f7:
ea:69:d0:db:d3:fd:17:b7:dc:a1:a6:4e:fe:3f:89:
1b:30:6f:fd:0f:51:ce:9c:75:8d:91:27:07:a6:23:
96:62:46:c4:a6:3a:16:da:59:9f:b1:c4:7f:2e:14:
f2:b3:54:5d:6b:e5:49:22:ea:ca:38:b4:0c:b1:d3:
eb:7e:83:73:22:57:67:12:a8:eb:be:3a:d3:f1:11:
32:b4:d8:02:9f:35:0f:4b:e2:0d:92:3a:37:cb:33:
d2:db:ff:67:30:7a:cb:4c:57:16:0e:e0:0c:0b:b1:
f7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:77:D0:66:CF:4B:17:00:6C:64:BD:1D:21:FD:7A:F1:7C:71:6E:D1
X509v3 Authority Key Identifier:
keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:1c:6a:8d:0b:42:63:06:88:c9:c6:60:68:20:60:02:d7:63:
b7:0b:29:e6:16:6b:7c:ef:47:7c:8a:c1:26:fa:26:38:4c:00:
87:d8:56:67:58:0f:34:9c:06:a9:1b:2b:14:f1:cb:c3:6e:38:
7f:f5:f8:38:e0:a0:b1:f6:a1:a8:3f:49:ad:07:eb:56:e7:80:
25:4d:04:00:28:8e:a8:c6:8a:28:00:ee:57:5b:db:63:d8:04:
c8:4d:64:4e:7b:0e:69:b8:df:55:e6:ef:34:ef:87:15:e1:e4:
a9:71:e4:ef:e2:3f:db:d0:1a:0d:ac:52:92:25:05:9b:b1:d3:
31:81:15:72:11:4e:16:4d:ec:09:83:4b:83:ae:72:e0:72:50:
d2:38:08:e1:3e:27:00:0a:ff:16:90:4b:1c:af:3e:8e:08:1e:
24:94:71:68:28:dc:92:d4:95:ff:a9:80:c3:c9:dc:bc:44:8c:
92:37:da:b3:e2:1a:b4:66:bf:dd:e4:58:e7:b2:89:ed:f4:b8:
3a:e9:23:df:36:1c:f8:ff:12:3c:fb:3d:8a:1d:80:9a:bc:9a:
a1:4a:ef:eb:73:7c:d5:f9:d3:45:16:75:0e:cb:eb:c2:09:19:
cc:1f:24:46:43:08:c5:09:6b:2d:07:f3:a0:b9:1c:68:cb:79:
f8:90:ce:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 03:47:49 2026 by rpki-client