Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
File: iAsPesuH0TTDhZ1y0NGmHkdRusA.mft (raw, json)
Hash identifier: RctUKbsWlCi9qEJuyPVM8zehIJgK7J7fIATDq0B7d00=
Subject key identifier: 73:DD:7E:F2:84:F4:88:0F:C5:59:17:EA:0E:DF:F0:49:95:DD:A0:C6
Authority key identifier: 88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0
Certificate issuer: /CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0
Certificate serial: 019D28847EE74106FF462CAFB88A5B6CECFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
Manifest number: 0F32
Signing time: Thu 26 Mar 2026 05:01:05 +0000
Manifest this update: Thu 26 Mar 2026 05:01:05 +0000
Manifest next update: Fri 27 Mar 2026 05:01:05 +0000
Files and hashes: 1: QFY0JdkqZACX6DbQrMuCDT111r8.roa (hash: 8ei2JwlhItg4y3r3m8oI+dJmgo/uwKKNh5cafYIl8Iw=)
2: iAsPesuH0TTDhZ1y0NGmHkdRusA.crl (hash: lGAZp2JPsbDWMLtjRKKrJgAJSMRHYJArphLEc67rr6g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl
rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:7e:e7:41:06:ff:46:2c:af:b8:8a:5b:6c:ec:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=880b0f7acb87d134c3859d72d0d1a61e4751bac0
Validity
Not Before: Mar 26 05:01:05 2026 GMT
Not After : Mar 27 05:01:05 2026 GMT
Subject: CN=73dd7ef284f4880fc55917ea0edff04995dda0c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:bd:7a:91:88:8c:f4:a3:84:ab:78:1b:32:36:
b7:f5:be:13:28:ea:f0:94:02:07:e5:20:6e:68:bc:
12:22:3f:33:8a:33:2d:15:64:29:fd:ea:74:46:75:
df:1e:fb:26:0a:ee:36:97:c0:e4:18:07:6f:3a:93:
56:5b:85:2e:9a:45:9c:77:7c:9c:d4:95:6a:68:5f:
f6:9a:54:30:32:ad:59:6b:c0:8a:d4:9e:49:a5:fa:
24:89:55:41:ca:9a:6c:7a:37:c1:9c:e2:dd:c0:80:
77:e2:45:db:1b:c6:f2:d4:80:4a:00:38:1d:ba:77:
02:77:18:0b:2b:73:be:18:6a:38:3e:57:b3:22:15:
45:da:e9:ae:8c:39:c0:2b:76:75:77:34:87:d4:51:
c4:92:0a:b0:0a:31:a2:6f:19:ea:1d:87:e8:4e:cf:
55:e2:84:0a:79:29:9d:e8:7e:d7:ef:39:98:b2:a4:
7b:24:a2:0e:ad:e9:bf:0f:e8:b4:c8:d1:40:e7:ee:
4c:06:a6:fa:e7:8f:a7:c3:b2:e4:6d:fb:c4:20:9a:
20:af:35:44:f7:a2:8c:ee:46:27:6d:a2:86:34:e7:
5d:27:d8:37:6b:31:b8:23:3f:e0:a1:97:17:13:64:
83:42:8f:69:0c:dd:3a:2e:f6:ac:fc:2b:ff:82:53:
4b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:DD:7E:F2:84:F4:88:0F:C5:59:17:EA:0E:DF:F0:49:95:DD:A0:C6
X509v3 Authority Key Identifier:
keyid:88:0B:0F:7A:CB:87:D1:34:C3:85:9D:72:D0:D1:A6:1E:47:51:BA:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iAsPesuH0TTDhZ1y0NGmHkdRusA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/445a66-b76b-4b48-a02d-bc289a931b4b/1/iAsPesuH0TTDhZ1y0NGmHkdRusA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:2b:3d:5e:ff:25:ee:4c:41:cd:4b:6f:a2:df:4b:2a:e9:0b:
fe:57:e8:1b:6f:0b:81:89:a0:f7:58:fb:c7:a3:a1:b7:1a:aa:
15:ff:59:65:7b:33:3b:23:93:5b:aa:71:47:aa:e2:c1:3c:21:
7d:ba:e5:9d:4f:6d:49:1c:23:e1:91:8a:42:1b:18:4f:da:b7:
15:a5:7f:6e:b7:c1:ff:be:db:a6:fb:fb:b0:a3:71:ff:ac:c2:
69:96:90:36:cb:e3:58:12:a4:be:5a:8d:95:f6:eb:e8:1c:9a:
2b:8b:61:ab:8b:63:d5:b7:d7:85:d4:82:08:ba:b5:4b:32:a6:
b4:d2:ea:88:e9:fe:3b:ec:fe:3a:28:03:05:be:9c:b5:2a:0d:
76:a1:95:1e:af:fe:77:4c:e2:9c:02:6f:a3:04:90:c4:cf:fe:
23:d3:e6:84:fc:b1:ec:51:5d:a8:f2:2f:ad:b8:66:53:31:33:
82:ab:3b:f2:bd:a0:67:33:ea:54:0b:ff:bb:af:43:15:fc:9d:
eb:a3:bf:4b:60:8d:87:1c:fa:a9:1d:0f:06:ba:7d:f1:0c:7d:
bf:26:e7:1e:b0:11:28:35:12:ec:2b:c8:43:2d:66:d5:4e:52:
31:6d:6e:c1:44:fc:0e:b0:3f:22:27:1b:6a:5c:5d:81:41:26:
1f:ec:ef:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:59:01 2026 by rpki-client