Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
File: r8GT7hHlRxYWn5TI-THq4fyFSSE.mft (raw, json)
Hash identifier: 5TwicJpsfCH825EJeYzcMxvfU4+8dJCZWPfZPwo6UiI=
Subject key identifier: A2:49:1E:24:A1:45:31:46:2F:A4:97:95:6A:27:3F:F8:FA:EE:5F:79
Authority key identifier: AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
Certificate issuer: /CN=afc193ee11e54716169f94c8f931eae1fc854921
Certificate serial: 019D382EADCAE37203CA8B1B45DE66258038
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
Manifest number: 0DE2
Signing time: Sun 29 Mar 2026 06:01:16 +0000
Manifest this update: Sun 29 Mar 2026 06:01:16 +0000
Manifest next update: Mon 30 Mar 2026 06:01:16 +0000
Files and hashes: 1: lWFmjWS1SbQSeACbvDZD9f1EmEg.roa (hash: TjMg92xbLY6yeaH0PpcE4pe0qFscpI9c3d7VL5l9Rzw=)
2: r8GT7hHlRxYWn5TI-THq4fyFSSE.crl (hash: fmUhgxkmFLY6Kxt7ChxYQIpzM6sdjhvVNH8yXIEZvqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:ad:ca:e3:72:03:ca:8b:1b:45:de:66:25:80:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afc193ee11e54716169f94c8f931eae1fc854921
Validity
Not Before: Mar 29 06:01:16 2026 GMT
Not After : Mar 30 06:01:16 2026 GMT
Subject: CN=a2491e24a14531462fa497956a273ff8faee5f79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:af:d1:7b:e8:e3:5e:c3:54:33:27:60:31:66:
10:c3:39:01:3f:9e:f0:09:e9:5d:e0:7f:b9:c6:0d:
aa:a7:fd:1b:d8:4c:3b:89:ed:56:3c:5e:0b:95:e5:
d0:91:d0:79:c1:d0:b2:b5:95:04:28:c3:ef:50:c0:
85:fd:30:5c:dd:43:79:3a:83:f7:f6:31:87:50:b6:
a2:a9:ab:12:bc:97:47:5e:11:d1:df:fa:3c:ab:51:
47:7a:ea:c8:9c:13:88:b3:be:7d:2a:50:5d:62:29:
d2:bf:0b:2e:03:7c:6a:2b:27:80:dc:05:00:3b:d9:
10:67:e8:a3:76:6b:68:60:16:17:b1:04:db:97:8b:
32:89:4f:52:19:43:76:bf:35:80:b6:56:f0:e1:40:
69:e9:95:8f:f5:7a:76:77:75:3a:25:bd:65:98:fb:
0b:84:11:d6:13:79:df:43:15:e0:d0:4b:03:af:07:
7e:e3:00:68:8d:5b:27:5b:50:d1:d6:9e:14:3a:74:
c0:a7:7e:f9:4e:7b:15:f4:a5:e8:7f:94:f5:34:19:
80:1c:bc:49:dd:09:24:93:d6:ef:35:10:8e:19:97:
0b:24:2b:11:f4:9a:e0:f5:04:1c:4e:5e:f4:6a:4b:
6c:e2:c0:43:4c:bb:79:9b:e2:6b:ce:c0:28:ab:6a:
60:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:49:1E:24:A1:45:31:46:2F:A4:97:95:6A:27:3F:F8:FA:EE:5F:79
X509v3 Authority Key Identifier:
keyid:AF:C1:93:EE:11:E5:47:16:16:9F:94:C8:F9:31:EA:E1:FC:85:49:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8GT7hHlRxYWn5TI-THq4fyFSSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/0b9cbf-25ae-4327-98aa-a7dd9aea1d7a/1/r8GT7hHlRxYWn5TI-THq4fyFSSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:5e:a2:2e:4b:be:1a:3c:1e:6b:53:83:45:44:c8:89:75:99:
e8:6e:e2:4c:a4:e4:1a:fd:24:2a:dd:70:ab:0a:9d:20:51:77:
d3:08:ef:d1:0d:a0:72:d1:c7:6d:c7:c8:18:76:0b:5b:4d:a0:
98:5c:2a:eb:e0:5f:97:31:60:96:fa:0e:d4:3d:a5:b6:e1:d3:
e9:b4:1b:dc:40:54:ad:32:8d:1f:5e:49:15:97:d7:bf:38:b6:
77:37:31:2e:3c:df:a6:85:4f:76:a5:88:56:66:9f:b9:2f:44:
0e:d2:3e:dd:31:0d:89:e2:3b:0c:05:01:37:24:c3:dc:ff:45:
09:40:7a:23:e3:5e:43:66:ef:af:6d:fe:5f:82:b3:3c:1b:a5:
5b:10:cb:df:bf:e3:f5:64:cc:ee:1c:ef:63:10:b2:63:dd:f9:
03:c9:75:2d:09:15:47:ea:27:88:95:21:19:e6:c4:00:2c:87:
1c:de:5a:f7:9d:b3:22:f3:c6:3f:dc:5c:7d:29:b8:a6:14:b9:
5a:47:05:08:3c:24:cd:08:e7:f2:ab:0b:2b:53:48:66:a1:3b:
78:7a:3e:72:2e:28:66:11:84:58:17:c8:75:38:1e:28:4d:f2:
a6:59:9f:9e:9f:de:00:60:3c:cf:dd:36:ac:8d:af:90:22:54:
1a:cb:6b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:47:30 2026 by rpki-client