Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
File: F3khM2kRpWiNeOk__l5HIRO7Gb4.mft (raw, json)
Hash identifier: SdjU6euJbf27fZxt6hGPFisknn1RL7i7F7OXG1xX2lQ=
Subject key identifier: 55:A8:FD:63:46:00:4B:DF:41:1A:0C:DF:38:78:DE:34:AB:EA:E5:C5
Authority key identifier: 17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
Certificate issuer: /CN=177921336911a5688d78e93ffe5e472113bb19be
Certificate serial: 019D3909A5CEF116CEE82D6056DEAD8472E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
Manifest number: 0871
Signing time: Sun 29 Mar 2026 10:00:26 +0000
Manifest this update: Sun 29 Mar 2026 10:00:26 +0000
Manifest next update: Mon 30 Mar 2026 10:00:26 +0000
Files and hashes: 1: 00KPXaoeVFb3ZxS5PVmQU3i8VY4.roa (hash: HLzQZ86nyzCWCoL4HyX0cWOR0lVQ8RFQ8/UNt4CesgA=)
2: F3khM2kRpWiNeOk__l5HIRO7Gb4.crl (hash: nN6s3fF2fCJhzNw3fxsxu722PxGa9fI717r5n2c/mXY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:a5:ce:f1:16:ce:e8:2d:60:56:de:ad:84:72:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=177921336911a5688d78e93ffe5e472113bb19be
Validity
Not Before: Mar 29 10:00:26 2026 GMT
Not After : Mar 30 10:00:26 2026 GMT
Subject: CN=55a8fd6346004bdf411a0cdf3878de34abeae5c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:ac:65:58:e6:dc:22:af:dd:47:59:57:b7:b5:
ba:da:08:05:f5:af:18:ec:40:94:89:28:13:75:b0:
2f:0d:d8:10:56:a2:f4:7f:ea:bb:f6:5e:e5:07:e2:
21:ae:de:e6:0e:d3:1c:d9:1a:66:99:d4:21:d9:80:
47:54:1d:1e:97:aa:f3:0e:76:70:2d:47:38:89:17:
de:ca:a5:f1:48:b1:77:2a:d9:61:c8:fc:74:6a:61:
00:36:81:d3:d2:2e:3f:5f:b3:e3:6f:d2:0e:29:ab:
80:cb:07:2d:93:e9:79:f4:74:4a:da:3f:1d:35:20:
c9:ff:47:8a:6b:6e:0f:cd:fa:b6:9f:9f:43:0f:7c:
26:2c:08:a1:d9:9e:f2:ce:5c:e0:35:eb:69:2b:3e:
83:38:ac:96:65:0d:a0:75:d9:4b:3a:d2:40:74:a0:
4b:4e:08:45:29:b2:16:73:09:99:3b:ea:d4:ca:9c:
a9:94:96:79:0a:23:b7:6c:9b:08:4f:8c:f7:b0:f9:
65:bf:bf:c9:eb:3c:e5:c8:c3:89:c6:47:d4:4c:a0:
5d:f9:09:88:45:ae:b4:6e:39:12:01:50:c8:cc:53:
e6:9c:b4:c5:32:f7:ea:f0:c7:b1:c6:a4:68:d2:23:
43:8f:d8:73:06:9b:c4:8d:ab:f3:0c:04:0e:4f:d7:
0d:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:A8:FD:63:46:00:4B:DF:41:1A:0C:DF:38:78:DE:34:AB:EA:E5:C5
X509v3 Authority Key Identifier:
keyid:17:79:21:33:69:11:A5:68:8D:78:E9:3F:FE:5E:47:21:13:BB:19:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3khM2kRpWiNeOk__l5HIRO7Gb4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/63107c-b560-4116-b478-b5c3d24efdcd/1/F3khM2kRpWiNeOk__l5HIRO7Gb4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:e6:9b:61:5d:90:d1:82:98:3f:b9:3a:7e:d0:ea:0f:40:b1:
08:47:99:41:a5:69:83:54:1d:ca:2a:37:90:49:48:64:40:11:
b1:2b:b6:dc:d7:be:1b:d2:cd:13:f5:d1:a1:1e:5b:a1:a8:5d:
97:b4:f9:ec:da:ee:10:68:d0:76:70:4a:d1:f0:3e:65:9a:05:
b1:4a:9c:6f:97:cc:1b:d7:90:69:5c:09:6f:31:b1:22:9b:5b:
d4:87:3f:1d:25:7a:51:09:4b:c2:5c:69:5c:30:8e:6c:88:0f:
7f:9c:ec:a8:66:7a:68:55:76:85:f8:c6:96:8a:41:78:9e:d0:
e4:61:11:c3:b1:54:06:ee:ce:2a:63:2b:df:15:46:c3:b5:28:
34:c7:2e:96:3e:dc:ec:b0:0b:b0:7c:e9:da:6c:ed:bb:ef:1e:
8d:ac:ec:cc:99:64:69:92:b7:20:28:8b:c2:55:52:a4:53:5f:
20:74:7a:b0:54:c4:d7:8b:e2:f6:58:db:0a:c7:37:82:6d:4f:
c5:bf:e8:82:68:c7:7a:bc:b7:76:bf:6e:36:f8:95:26:e2:ee:
50:98:e4:e3:5e:30:37:33:f3:b4:88:57:d3:2e:97:f7:16:38:
0d:cc:84:00:ff:2b:2c:ab:17:a1:53:79:5d:c9:b7:04:27:a1:
59:c6:2f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:57:46 2026 by rpki-client