Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
File: aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft (raw, json)
Hash identifier: apjTeMCpQ3D8KEwcWfG1URqnjxfCjOmawlspFrPxmr0=
Subject key identifier: 8F:05:E4:4A:8C:49:74:1C:4F:B3:32:A4:38:19:F0:0D:1A:35:B3:4D
Authority key identifier: 68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
Certificate issuer: /CN=683b33dc7218b3fe883c49505134cb39a664fd28
Certificate serial: 019D273ADDEE12DC4F27D2DCFDEFFC621E6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
Manifest number: 0CF0
Signing time: Wed 25 Mar 2026 23:01:02 +0000
Manifest this update: Wed 25 Mar 2026 23:01:02 +0000
Manifest next update: Thu 26 Mar 2026 23:01:02 +0000
Files and hashes: 1: UBtkAIZtogJrMhGvbs0CbonHTS4.roa (hash: jo8TUuFmHzrj5Su3sdBnCB1ATJWy2tfFfxqEhpA5v6A=)
2: aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl (hash: 5nD2JNRXXv9X7lIMcIy3psiyN9pp2ROUaekRnVrvvzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:dd:ee:12:dc:4f:27:d2:dc:fd:ef:fc:62:1e:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=683b33dc7218b3fe883c49505134cb39a664fd28
Validity
Not Before: Mar 25 23:01:02 2026 GMT
Not After : Mar 26 23:01:02 2026 GMT
Subject: CN=8f05e44a8c49741c4fb332a43819f00d1a35b34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ad:34:2d:8e:8e:90:83:73:a8:0f:04:e9:10:
87:4c:67:1f:12:8e:84:51:3f:06:c5:54:fa:1d:8a:
fd:21:46:70:8a:87:16:d7:5f:98:0c:2d:ed:f9:55:
37:3c:ac:26:6d:51:f1:25:85:83:09:5b:25:f2:e3:
19:f5:f1:50:32:70:99:f6:68:b2:c2:59:da:6f:85:
f2:7e:0c:e3:c6:01:a1:72:8a:b7:3c:a6:73:95:dd:
ef:96:83:f1:b4:e7:0f:03:7d:d9:a3:cc:1a:64:d4:
d8:a8:4d:78:76:1e:e6:b3:55:d1:93:dc:e8:65:fb:
56:61:d8:f6:f5:00:2a:dd:4c:b9:ce:49:7a:43:c0:
55:bd:99:55:e8:66:93:3a:d7:bd:a9:9c:98:d2:36:
a1:8a:a1:b4:ac:67:70:2f:54:1e:6b:cb:30:b8:fe:
96:ca:04:4f:fa:27:36:ee:3c:a5:bd:a6:5a:8d:b3:
72:c6:ce:80:cc:fd:a4:0c:2d:8b:d9:59:e3:53:72:
6b:fb:2b:40:1b:44:8d:2e:d6:55:88:3d:6c:95:a9:
85:4d:4b:da:02:c8:73:82:27:e6:5d:a0:0c:e6:6a:
c1:e1:99:47:84:81:e0:2b:0c:cc:8a:ad:88:12:d3:
28:e0:89:ae:94:ed:71:f9:2e:d0:1a:67:b5:c3:96:
b5:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:05:E4:4A:8C:49:74:1C:4F:B3:32:A4:38:19:F0:0D:1A:35:B3:4D
X509v3 Authority Key Identifier:
keyid:68:3B:33:DC:72:18:B3:FE:88:3C:49:50:51:34:CB:39:A6:64:FD:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDsz3HIYs_6IPElQUTTLOaZk_Sg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/be3e00-3c96-4cde-b81a-14c6b954d976/1/aDsz3HIYs_6IPElQUTTLOaZk_Sg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:95:59:35:b1:ee:a1:63:df:65:41:16:53:6e:c8:5e:8c:23:
8d:86:9a:b2:fe:4e:2a:2f:4e:d7:f1:cb:84:7d:9a:bc:dd:3b:
43:e1:21:0b:fd:7a:e6:3f:50:dd:c8:e4:d8:8c:f8:fc:5f:6d:
fd:f3:b6:e7:3d:c0:8b:f2:84:23:30:dd:10:e6:9b:a5:28:ee:
0d:5f:e9:b1:e7:82:aa:89:e1:3b:5d:36:8a:c8:fc:5b:9d:a4:
cb:ce:9b:e5:a1:ce:06:75:e9:c8:e4:28:69:f2:8a:19:02:4b:
82:da:c7:8e:28:61:93:70:00:df:60:5e:6a:d2:eb:5d:f4:d3:
2b:4d:83:fd:2c:54:8e:17:a9:65:7e:7d:9d:11:ac:09:c2:f7:
f9:c4:f3:ff:65:20:ed:05:8d:ff:e9:2b:74:b9:bd:b9:59:52:
e4:a9:7a:85:fe:7d:6c:28:bc:80:41:7f:74:a2:aa:f9:5e:48:
f2:b6:f3:53:f9:87:8a:c0:50:d7:d5:a1:37:df:a8:8a:fe:17:
c0:69:06:50:75:9f:05:69:9c:a8:bf:8b:99:85:b1:8a:2f:02:
c6:de:20:8c:d0:81:9b:03:d9:d5:78:9f:cf:f5:57:67:21:77:
66:96:61:38:ad:cd:26:a5:d0:3c:63:5f:26:36:52:95:b8:9a:
bb:76:7c:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOt3uEtxPJ9Lc/e/8Yh5qMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY4M2IzM2RjNzIxOGIzZmU4ODNjNDk1MDUxMzRjYjM5YTY2
NGZkMjgwHhcNMjYwMzI1MjMwMTAyWhcNMjYwMzI2MjMwMTAyWjAzMTEwLwYDVQQD
Eyg4ZjA1ZTQ0YThjNDk3NDFjNGZiMzMyYTQzODE5ZjAwZDFhMzViMzRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqK00LY6OkINzqA8E6RCHTGcfEo6E
UT8GxVT6HYr9IUZwiocW11+YDC3t+VU3PKwmbVHxJYWDCVsl8uMZ9fFQMnCZ9miy
wlnab4XyfgzjxgGhcoq3PKZzld3vloPxtOcPA33Zo8waZNTYqE14dh7ms1XRk9zo
ZftWYdj29QAq3Uy5zkl6Q8BVvZlV6GaTOte9qZyY0jahiqG0rGdwL1Qea8swuP6W
ygRP+ic27jylvaZajbNyxs6AzP2kDC2L2VnjU3Jr+ytAG0SNLtZViD1slamFTUva
AshzgifmXaAM5mrB4ZlHhIHgKwzMiq2IEtMo4ImulO1x+S7QGme1w5a1TwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI8F5EqMSXQcT7MypDgZ8A0aNbNNMB8GA1UdIwQY
MBaAFGg7M9xyGLP+iDxJUFE0yzmmZP0oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEt
MTRjNmI5NTRkOTc2LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi9iZTNlMDAtM2M5Ni00Y2RlLWI4MWEtMTRjNmI5NTRkOTc2
LzEvYURzejNISVlzXzZJUEVsUVVUVExPYVprX1NnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKZVZNbHu
oWPfZUEWU27IXowjjYaasv5OKi9O1/HLhH2avN07Q+EhC/165j9Q3cjk2Iz4/F9t
/fO25z3Ai/KEIzDdEOabpSjuDV/pseeCqonhO102isj8W52ky86b5aHOBnXpyOQo
afKKGQJLgtrHjihhk3AA32BeatLrXfTTK02D/SxUjhepZX59nRGsCcL3+cTz/2Ug
7QWN/+krdLm9uVlS5Kl6hf59bCi8gEF/dKKq+V5I8rbzU/mHisBQ19WhN9+oiv4X
wGkGUHWfBWmcqL+LmYWxii8Cxt4gjNCBmwPZ1Xifz/VXZyF3ZpZhOK3NJqXQPGNf
JjZSlbiau3Z8RQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:46 2026 by rpki-client