Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
File: 0627YSN4H_DjVBNEaseTHP9KSQ0.mft (raw, json)
Hash identifier: U8E1b5ol2reMRoVbauPGrXIm2JP7PE2ykSmBWg0O7dY=
Subject key identifier: 01:6B:D4:AC:0E:3D:2F:BE:5B:7A:4B:B8:92:86:0C:B6:A9:CC:79:9F
Authority key identifier: D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
Certificate issuer: /CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Certificate serial: 019D37C0303CC3A38A570BC7C8E8FAC3AF4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 04:00:34 +0000
Manifest this update: Sun 29 Mar 2026 04:00:34 +0000
Manifest next update: Mon 30 Mar 2026 04:00:34 +0000
Files and hashes: 1: 0627YSN4H_DjVBNEaseTHP9KSQ0.crl (hash: m4ze2C8GNdP2lddkI5KIXTH0xN6WPTfXP0nj9MlaPNA=)
2: uVyWlFLKciqrsAXXjZQjx39QcNU.roa (hash: jEDtg9ux39nelJUaz7u7+ZJxoa/PnUqwfRMuyqZC6j0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:30:3c:c3:a3:8a:57:0b:c7:c8:e8:fa:c3:af:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3adbb6123781ff0e35413446ac7931cff4a490d
Validity
Not Before: Mar 29 04:00:34 2026 GMT
Not After : Mar 30 04:00:34 2026 GMT
Subject: CN=016bd4ac0e3d2fbe5b7a4bb892860cb6a9cc799f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c0:a8:59:d0:2c:7c:b8:3d:59:86:0a:77:6a:
53:56:bc:48:9e:14:54:1a:e9:66:4f:0f:4f:ad:bc:
6d:0e:a7:0b:59:21:d5:51:4d:4c:59:e1:b1:af:3b:
30:9b:fd:66:e5:e8:5a:ce:d8:09:f4:01:fc:eb:5b:
15:95:69:3c:3c:9d:1e:7f:b3:5c:3d:8e:1b:a1:30:
48:a4:5c:ba:b4:69:e6:9e:78:1b:80:fa:ca:f0:e1:
a5:4b:40:12:c5:57:2d:4c:35:c3:f5:93:38:fc:15:
67:8e:86:7c:26:11:5d:45:ab:4f:af:89:99:23:5e:
c5:57:64:a6:78:98:36:88:18:6f:68:82:3d:f0:47:
c8:f1:78:60:f6:ef:5c:b8:e5:5a:08:91:f8:b5:84:
94:d6:fa:e1:35:9b:65:65:c1:5c:7c:e7:a2:b9:d6:
c0:2e:35:66:84:8d:70:2f:10:dd:3c:3d:89:04:d1:
06:ba:cf:f7:01:7d:fb:3d:da:ae:4e:ba:86:d3:31:
cf:05:29:11:03:a9:b4:50:fd:98:e9:b2:34:02:98:
95:e9:6c:73:8c:47:24:dc:0f:4b:e7:c9:b5:52:f1:
e7:e1:0a:9d:a8:98:a1:cc:d5:d8:16:3b:5c:96:26:
47:9a:37:30:f1:eb:c8:a7:c8:d3:86:9f:be:3c:46:
15:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:6B:D4:AC:0E:3D:2F:BE:5B:7A:4B:B8:92:86:0C:B6:A9:CC:79:9F
X509v3 Authority Key Identifier:
keyid:D3:AD:BB:61:23:78:1F:F0:E3:54:13:44:6A:C7:93:1C:FF:4A:49:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0627YSN4H_DjVBNEaseTHP9KSQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/8a3ee9-4f37-45be-8aac-798ab773eafa/1/0627YSN4H_DjVBNEaseTHP9KSQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:15:1c:25:f5:b9:fd:30:bf:b0:9a:c1:8b:eb:21:c9:7f:4e:
9e:85:51:cb:a8:e2:d3:a0:e4:0b:0d:f7:ff:c2:d1:f6:82:4f:
48:28:75:67:2e:fa:a9:c8:8d:ac:ce:b6:57:ee:d3:f9:c1:59:
b8:cb:2d:b5:04:52:b0:45:cd:80:73:8a:71:6b:a8:44:59:c6:
53:a2:30:a5:25:a7:20:b3:b8:f6:1c:b2:1a:70:83:c9:16:33:
51:79:67:8c:53:b1:86:ca:d2:57:63:eb:f9:86:e5:31:50:0b:
e1:c9:f1:6f:db:dc:25:e0:49:b4:d4:cd:e9:e7:0b:0e:51:8b:
15:80:9a:ff:15:58:f7:82:e1:14:6f:7d:e5:85:a0:0b:17:f1:
8a:9b:06:2c:f7:4b:58:e8:eb:ce:a5:fe:0b:ce:a4:ba:fc:47:
82:05:c4:4f:5f:f1:78:ea:22:7f:22:73:58:f1:cf:2a:c9:b5:
37:6b:96:88:9d:33:5f:d4:87:13:23:71:6f:f2:13:69:7c:d2:
f6:8d:8b:16:5d:d6:3b:21:16:77:fb:13:08:21:e9:02:63:ca:
03:63:91:e5:28:14:9b:d9:d7:c0:23:9e:a0:8a:c7:86:7e:38:
15:86:6e:5a:c1:dc:2a:8e:c0:19:e0:3b:0e:ac:bb:c4:da:96:
d1:25:35:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:29:48 2026 by rpki-client