Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
File: Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft (raw, json)
Hash identifier: faNt7MAAlVGGiAQ990hTCJoe6pK71mSDfzdTLwWFlnU=
Subject key identifier: 2C:CF:C4:E8:47:31:5A:F9:20:00:01:23:D6:E3:F2:D0:A7:3E:73:50
Authority key identifier: 02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F
Certificate issuer: /CN=028fdf719d47a10033451a83384a6db68dbd5b0f
Certificate serial: 019D205CB9F0C009303E7C7C57C86CF7FFFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
Manifest number: 0E8B
Signing time: Tue 24 Mar 2026 15:00:40 +0000
Manifest this update: Tue 24 Mar 2026 15:00:40 +0000
Manifest next update: Wed 25 Mar 2026 15:00:40 +0000
Files and hashes: 1: Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl (hash: lNsY2C4eXe+60cczlo7pk2g0EobIfu+NG8bFbTVwPrM=)
2: wx4jf3r0v_RD4WGbwjNb9_66YeA.roa (hash: Yg61lLQnPGGlaDhOZEVebkyWouHjvzVXcfasCV97MNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 25 Mar 2026 15:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:20:5c:b9:f0:c0:09:30:3e:7c:7c:57:c8:6c:f7:ff:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028fdf719d47a10033451a83384a6db68dbd5b0f
Validity
Not Before: Mar 24 15:00:40 2026 GMT
Not After : Mar 25 15:00:40 2026 GMT
Subject: CN=2ccfc4e847315af920000123d6e3f2d0a73e7350
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:cc:3e:62:e2:6b:9a:d9:7c:c3:60:19:7a:04:
57:93:4f:d0:06:3a:a6:89:d1:56:4f:0f:8b:89:c3:
df:62:83:76:f9:aa:b9:b6:d8:f2:a7:dc:27:6c:02:
ac:2e:7e:bb:42:06:3b:97:ee:f0:5b:f1:94:b4:97:
d7:22:ad:49:cc:4a:7b:fb:b8:fc:f3:5e:63:a5:99:
ca:3c:42:5e:ba:de:c9:dd:ae:d8:d1:a9:f7:66:fe:
0c:46:87:87:99:ab:c7:90:57:eb:af:4e:b3:5e:0a:
63:94:5b:8d:16:fb:dd:e8:58:cd:93:29:48:86:04:
4b:bc:1c:4f:db:64:9f:f0:d6:11:ba:1d:71:0c:37:
d2:e8:eb:f5:07:0f:44:91:69:fc:80:4f:83:0c:06:
a7:4c:e5:9f:ad:05:38:05:18:8e:0b:38:47:0d:7e:
13:3c:76:29:8f:e8:62:7b:a4:44:3f:58:43:aa:f8:
70:65:48:0d:66:06:10:21:41:a6:26:50:01:4f:9d:
f5:19:a1:8b:b5:79:17:75:66:fe:7a:1b:cc:e5:a8:
71:9a:98:75:36:2b:91:35:10:99:1c:8d:8a:3a:58:
50:e5:cc:0c:eb:af:2e:aa:e2:6e:42:e1:d1:1d:76:
ac:00:6b:a8:39:a1:ac:04:f3:1f:d4:52:4a:fa:14:
ab:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:CF:C4:E8:47:31:5A:F9:20:00:01:23:D6:E3:F2:D0:A7:3E:73:50
X509v3 Authority Key Identifier:
keyid:02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:20:b0:03:05:be:6b:3c:be:5d:6e:6a:4c:6e:f1:ea:68:6b:
be:e4:61:8b:b8:41:10:7a:17:c1:e4:70:a3:79:87:69:5c:a7:
20:a9:9c:e6:5b:b3:c3:d8:3b:84:92:ec:0e:1f:5d:d5:e4:8a:
1a:53:f6:90:d0:e0:f0:74:0d:b6:c8:a1:e0:87:ec:f6:43:b7:
88:5e:05:f0:ec:ce:00:11:72:02:57:92:bd:9a:71:c1:f3:bb:
2d:1e:98:dc:51:60:11:6b:6c:1f:0d:13:81:13:cb:22:91:ba:
0b:ce:29:34:d4:d9:9b:21:16:85:c5:1b:29:d8:4b:4a:92:ae:
ff:8d:7f:de:c0:33:c2:3d:5c:5f:f4:aa:dc:c2:5b:81:c3:a4:
62:01:cf:39:3b:9b:09:ad:c4:f9:e5:62:4e:68:da:61:00:28:
67:2c:79:b1:08:c9:f0:5b:54:b5:a7:e2:82:36:3e:36:65:f6:
47:69:df:22:56:97:72:93:75:73:94:7f:44:56:0e:97:d0:bf:
bb:5c:ae:cf:2f:68:3e:d8:95:91:13:0d:e1:32:36:16:71:64:
c1:a6:76:b1:2b:1f:ac:37:3a:88:57:dd:55:0d:e1:8a:00:ed:
53:69:9a:4f:d1:de:4a:ce:f3:51:51:bf:74:b9:51:cb:c2:ff:
7e:60:a8:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 24 21:05:27 2026 by rpki-client