Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
File: EsShfSBma32NKx_-GKRoevkmIY8.mft (raw, json)
Hash identifier: R9KffCkDN45EuIEXTfCNhZTLQKppe/zPVq1YuqsrJ9g=
Subject key identifier: AD:8C:82:71:CC:0D:73:FB:6F:BA:01:72:9E:32:51:FD:B6:2E:87:9A
Authority key identifier: 12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
Certificate issuer: /CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Certificate serial: 019D37F7233500304FB1B6496F39A13F29BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 05:00:36 +0000
Manifest this update: Sun 29 Mar 2026 05:00:36 +0000
Manifest next update: Mon 30 Mar 2026 05:00:36 +0000
Files and hashes: 1: 2SnbqmjRC1mfOLhWvcx2MqiVnBQ.roa (hash: 9wsvsp03KFtWIrs+dsNBw/+Vtj/EYC0hFE8Wh2C75jw=)
2: EsShfSBma32NKx_-GKRoevkmIY8.crl (hash: 6FYgx4WNsj5vpYAgaacZfCWDMVzrxWam3QnUHIC1IAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:23:35:00:30:4f:b1:b6:49:6f:39:a1:3f:29:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12c4a17d20666b7d8d2b1ffe18a4687af926218f
Validity
Not Before: Mar 29 05:00:36 2026 GMT
Not After : Mar 30 05:00:36 2026 GMT
Subject: CN=ad8c8271cc0d73fb6fba01729e3251fdb62e879a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:fa:cd:95:c8:5d:b1:7a:d7:cd:81:f5:53:73:
89:54:19:26:87:38:e5:78:9d:68:6a:96:f9:62:18:
c3:2d:2d:cd:b8:0e:a6:7c:5e:79:b8:23:bc:bb:8b:
55:cb:1c:a4:ea:30:8a:5a:ee:df:03:bc:e1:01:6a:
ee:61:b0:be:cf:55:dd:58:9d:49:b5:62:dd:88:19:
6b:4a:80:e9:19:64:38:5f:74:36:50:6d:8d:32:db:
bd:2a:c4:19:b3:b6:2e:05:d4:47:9b:1b:e2:c6:67:
95:5c:70:54:c1:1e:b6:e9:f5:9a:c0:28:98:0c:8d:
08:6e:1e:56:21:86:ce:de:5c:89:a5:65:00:d5:e0:
f3:b1:4c:36:fb:07:dc:e5:cf:2c:fb:e2:61:16:da:
38:05:4d:1e:6d:f8:97:f3:a6:1a:c9:df:ca:81:0b:
cc:ab:d5:8d:74:52:05:5f:55:bb:ca:c7:10:61:02:
08:ac:1e:5c:3c:92:94:e6:ce:2f:26:ee:05:10:74:
be:58:4c:fe:36:7d:24:3d:39:42:b1:91:f0:bd:52:
b2:87:7c:c3:60:a7:61:c0:bb:a8:f5:c7:e8:45:dd:
34:4c:44:83:b4:ea:bb:41:e5:83:a0:3f:af:ca:b2:
62:d1:bc:50:9f:f5:5c:73:09:5e:4c:6d:8b:69:70:
df:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:8C:82:71:CC:0D:73:FB:6F:BA:01:72:9E:32:51:FD:B6:2E:87:9A
X509v3 Authority Key Identifier:
keyid:12:C4:A1:7D:20:66:6B:7D:8D:2B:1F:FE:18:A4:68:7A:F9:26:21:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EsShfSBma32NKx_-GKRoevkmIY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/831181-b0b3-4b2e-88dc-49a96a82214e/1/EsShfSBma32NKx_-GKRoevkmIY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:9b:30:2d:f0:12:e6:95:4a:b2:be:32:2e:f0:2a:58:26:09:
37:2d:a9:61:9f:0d:22:99:2f:59:82:4e:9c:1a:60:db:30:45:
1e:93:77:52:6b:e6:53:4b:cd:d4:d2:87:59:46:4f:ac:71:5f:
87:df:aa:5d:81:0c:12:45:47:f4:f4:5d:53:c3:4d:83:79:e4:
1e:b8:a6:20:06:8e:40:44:72:b6:6c:9a:b0:1e:11:e7:60:a7:
fb:ad:79:2c:53:33:d4:4e:18:d3:d8:ac:df:71:f2:82:3a:02:
94:96:0a:e6:f8:13:cc:b2:45:51:67:d6:f9:da:8c:25:6f:e6:
4a:12:fe:76:45:45:e9:c1:52:c0:5a:60:63:ce:19:4c:bf:70:
b5:11:cd:16:02:36:3a:9f:c8:1b:36:21:d6:67:61:5c:a2:90:
46:e3:37:f9:8e:0c:1e:36:c3:29:c2:47:11:ab:be:39:06:2d:
fa:2f:41:35:6a:80:52:1c:61:29:94:6f:5d:90:b4:76:c3:ec:
d3:26:1a:ef:4a:11:09:a6:9a:7b:41:1f:28:40:00:3f:46:4b:
ca:6f:68:93:7b:22:6a:2d:e3:4a:bc:e9:d6:37:aa:ce:8f:08:
fe:c9:88:04:9f:74:01:d1:35:0f:98:75:49:e9:03:cd:9a:9d:
76:26:f4:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:01:50 2026 by rpki-client