Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier: UJ6G/JmpE6efqsfQXKkFDrggM3vTP264cCDeaxrmBOA=
Subject key identifier: 25:71:51:1A:8C:FB:EF:A3:2F:E8:10:31:B2:90:C5:6A:4F:AD:87:17
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial: 019CE47ED49013CCAE5781CDCBEBB989F6CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number: 059F
Signing time: Fri 13 Mar 2026 00:00:42 +0000
Manifest this update: Fri 13 Mar 2026 00:00:42 +0000
Manifest next update: Sat 14 Mar 2026 00:00:42 +0000
Files and hashes: 1: LFUS6tQiGpmjI6ItUVw2MpTAETI.roa (hash: FEu4LPnIRepU4N89SAmjCCbg/lOypjW1gLoZTKRnXmE=)
2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: oi/uMWWmAB31WdEQ+J84953qrCZpDg45D3j0iBOx5KA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:7e:d4:90:13:cc:ae:57:81:cd:cb:eb:b9:89:f6:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Validity
Not Before: Mar 13 00:00:42 2026 GMT
Not After : Mar 14 00:00:42 2026 GMT
Subject: CN=2571511a8cfbefa32fe81031b290c56a4fad8717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e6:1a:0d:ca:c2:2d:db:cd:41:38:6f:c9:fc:
83:68:ef:f3:52:57:9f:07:59:e4:b8:81:ff:3a:3f:
2d:34:de:ab:ec:39:70:87:b9:a6:f8:7c:a0:f9:fe:
20:cf:63:45:30:37:81:1e:91:a0:f9:92:93:da:d6:
57:b5:66:b3:0b:75:6b:34:ce:40:d2:fe:7c:e8:6c:
00:48:2a:18:2a:f3:35:cd:a0:f2:fb:23:21:9a:ff:
cd:95:c7:a8:e6:f7:ab:dc:d9:77:6f:d4:cf:8a:c5:
06:9c:f6:fc:f7:d1:73:00:b7:7f:c0:ea:ea:71:e6:
06:0e:57:ab:3d:51:0b:c5:8c:8a:17:65:82:fd:25:
07:37:c6:4a:3b:ac:c1:3d:2a:6b:39:34:ef:5e:2f:
03:60:e3:75:5e:c1:3e:c4:97:90:b8:64:d6:95:2a:
b2:71:d4:1a:ae:09:f3:68:8a:21:2d:50:ce:c7:65:
04:b7:a5:e2:69:79:28:ae:aa:e0:6a:6d:2e:c9:1d:
59:1b:f3:82:ac:16:b1:ac:b4:cc:7d:7e:e2:e1:7b:
f8:df:46:e8:23:ed:68:36:9d:ab:28:a1:3e:9b:98:
84:a3:e1:96:5b:53:e1:43:04:14:d7:36:23:2c:0b:
aa:7e:81:19:d4:3c:6a:a8:2a:28:60:37:d7:59:e8:
69:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:71:51:1A:8C:FB:EF:A3:2F:E8:10:31:B2:90:C5:6A:4F:AD:87:17
X509v3 Authority Key Identifier:
keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:cb:13:63:a0:af:d0:e5:8e:5b:71:70:3f:3c:a3:8a:f2:c0:
a7:74:d8:2a:fe:d2:dc:70:f9:d8:88:08:f9:86:f5:7c:83:0a:
49:28:dc:58:58:2e:72:fa:9a:83:7f:6a:3c:09:9a:5f:3e:84:
aa:dc:07:b1:d8:02:df:e3:02:bd:c4:12:bb:dd:a5:30:35:89:
fd:ed:d4:e6:c1:b2:6e:31:10:25:89:56:f2:15:c6:ba:0c:39:
ae:c6:0d:f8:b2:eb:72:a2:d3:c8:60:1d:a4:2b:5e:d6:56:5b:
8d:c4:0d:b6:ec:fa:2a:e9:18:aa:eb:5e:7c:73:03:75:b8:87:
f8:72:91:d4:25:d3:27:f0:ae:19:9a:0c:5f:c6:a0:11:3f:7f:
24:72:50:2e:f2:7c:0f:64:d8:8d:8f:bc:a2:5a:7a:61:c8:de:
70:77:ac:80:6e:87:bf:f4:76:ec:e8:fd:a1:ab:a8:d3:15:4f:
cb:e6:ef:15:61:c3:22:e5:e3:cb:9e:6c:d2:81:e6:bf:b2:c1:
92:9d:bc:d3:58:0e:80:09:77:e6:3b:ad:5a:d4:4b:cb:84:94:
df:ac:f5:82:7a:f0:be:58:30:e2:b0:cd:62:72:10:0f:1f:de:
2b:09:64:9c:fd:15:a8:3f:d0:eb:0a:70:6e:ef:dc:8f:a6:2a:
50:ef:f3:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 03:47:44 2026 by rpki-client