Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
File: evGnv3QoXbLoIJH79GOi7vbjpXg.mft (raw, json)
Hash identifier: fIvZ6LLOP2RYd4o5JLww1kHyEmBsBDzrgZK1bzHmcAY=
Subject key identifier: A4:51:C8:77:73:BE:E9:C7:89:DD:F4:6F:67:D7:4B:36:ED:7A:71:EA
Authority key identifier: 7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
Certificate issuer: /CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Certificate serial: 019DCC3CE675CD643FB511E0D199E2DDA183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
Manifest number: 0617
Signing time: Mon 27 Apr 2026 00:00:36 +0000
Manifest this update: Mon 27 Apr 2026 00:00:36 +0000
Manifest next update: Tue 28 Apr 2026 00:00:36 +0000
Files and hashes: 1: LFUS6tQiGpmjI6ItUVw2MpTAETI.roa (hash: FEu4LPnIRepU4N89SAmjCCbg/lOypjW1gLoZTKRnXmE=)
2: evGnv3QoXbLoIJH79GOi7vbjpXg.crl (hash: 9RZLgFHAFP89CZCFgLuVJNzw4URyEImfOx2cLFXorrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 00:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cc:3c:e6:75:cd:64:3f:b5:11:e0:d1:99:e2:dd:a1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7af1a7bf74285db2e82091fbf463a2eef6e3a578
Validity
Not Before: Apr 27 00:00:36 2026 GMT
Not After : Apr 28 00:00:36 2026 GMT
Subject: CN=a451c87773bee9c789ddf46f67d74b36ed7a71ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2b:a6:a9:af:9b:a7:43:8b:db:a3:f3:1e:57:
0e:a0:fb:a7:75:53:18:d4:13:b1:05:4c:2f:f2:3a:
82:ce:93:cf:c4:2b:5a:9b:c9:94:76:cd:68:33:95:
30:16:db:a1:f8:11:14:76:37:84:c5:3f:d3:3e:be:
73:59:df:14:b8:07:e5:43:ea:75:29:b5:fa:3b:83:
ac:d9:be:5a:41:11:8d:9e:63:96:e8:ba:7a:3a:3b:
01:c3:83:72:b5:b7:de:9d:0d:3e:1d:33:bd:4e:05:
8c:34:48:b8:93:aa:02:d3:be:d6:b0:55:3f:80:a5:
15:d0:43:08:e7:7d:e2:28:5d:07:76:4e:ba:c6:b8:
1d:25:df:61:3b:bf:cb:40:e9:41:6c:93:4c:fb:f2:
e0:6e:a5:d8:2d:be:b6:47:7c:31:be:12:1b:db:41:
1b:bd:b9:b0:cf:87:4b:48:37:04:fd:2d:6d:4c:a8:
21:1c:6b:7b:69:60:5f:2b:bd:25:40:e8:ad:6c:44:
00:a9:0a:7f:1c:52:52:4b:9b:39:0b:66:d0:b9:d7:
32:42:27:7d:68:ba:89:b8:d9:ff:28:21:52:a9:94:
36:4e:1b:63:69:c5:e3:36:f9:02:7a:91:d1:30:f2:
e0:3d:dc:c4:bb:2f:13:23:a1:25:ef:03:ac:98:69:
c4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:51:C8:77:73:BE:E9:C7:89:DD:F4:6F:67:D7:4B:36:ED:7A:71:EA
X509v3 Authority Key Identifier:
keyid:7A:F1:A7:BF:74:28:5D:B2:E8:20:91:FB:F4:63:A2:EE:F6:E3:A5:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/evGnv3QoXbLoIJH79GOi7vbjpXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/058435-a1c6-4436-95a2-b7114b69f84c/1/evGnv3QoXbLoIJH79GOi7vbjpXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:c8:90:2e:22:5f:1c:ff:94:f6:1d:f3:45:a0:db:5c:d7:41:
71:3f:d0:9e:53:e2:1b:e4:7e:f3:e0:16:ed:1b:2d:c1:1a:74:
42:66:09:b2:b7:d4:f4:b8:87:1f:65:97:84:83:c2:d2:a5:0e:
56:0d:eb:26:49:a4:ae:b8:7c:5b:b0:f8:ee:3d:6c:00:05:22:
95:7d:8e:9d:46:d7:28:49:b1:09:1f:c3:5e:4d:26:1f:28:06:
e8:c0:54:d7:38:ab:bb:c2:2f:8e:14:10:f3:c2:a6:68:32:17:
8b:6b:5d:e7:d2:6a:4a:cb:9e:83:bd:b6:bc:97:80:ac:9e:93:
62:ea:84:17:ce:99:74:df:6e:13:4b:a0:9d:ca:7b:7c:2c:d7:
62:4d:d8:e7:ba:0f:47:6b:04:0d:63:f5:7f:8a:c5:5e:5f:a3:
b4:ae:7b:27:d7:2c:8f:b5:13:1c:5a:fc:66:59:d4:df:20:8e:
45:0b:85:70:10:b9:b2:2e:51:81:3c:68:33:ed:2e:12:11:88:
ec:92:8e:86:d9:d5:3a:11:38:b6:ad:4e:38:d3:49:45:45:8d:
39:e0:47:c5:50:cf:5c:a9:10:d2:61:9a:8d:0b:c3:88:15:60:
19:5a:9a:aa:f9:8d:e6:41:ba:0a:5b:6f:ff:e6:f8:e0:f4:07:
1b:21:f0:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:55:03 2026 by rpki-client