Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: hl6AmQm/dFGQLsJgaRWNzO/iE4TQ3nr2FFAtmbKSVPw=
Subject key identifier: D8:77:38:63:30:FB:3F:90:28:B4:26:F7:2E:62:88:29:16:A0:B6:80
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 019E1DFDF241E09B4CFAD82F1826CE5A618E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 0897
Signing time: Tue 12 May 2026 21:00:42 +0000
Manifest this update: Tue 12 May 2026 21:00:42 +0000
Manifest next update: Wed 13 May 2026 21:00:42 +0000
Files and hashes: 1: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: OkIyXktkoEEouGXCppJd2dITjIdKMadEO5Tt5bjHu2c=)
2: fPatIQG_vn-KpCzLNpi1KmGZICQ.roa (hash: rt2SMboQCCIlzb5Lym5TzRN3RtHv+A8V2C5lF65IdPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fd:f2:41:e0:9b:4c:fa:d8:2f:18:26:ce:5a:61:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: May 12 21:00:42 2026 GMT
Not After : May 13 21:00:42 2026 GMT
Subject: CN=d877386330fb3f9028b426f72e62882916a0b680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:97:f1:1d:85:f4:fb:95:a9:01:49:85:85:41:
98:50:a1:74:db:0c:50:dd:a5:a2:c6:73:c0:c7:ef:
6d:29:87:92:29:97:4b:61:12:9c:4f:c0:58:72:9a:
cd:b8:e7:5b:d3:8a:c4:3d:ec:04:3c:67:8a:bc:45:
e0:44:fa:af:cf:ca:73:1f:60:d2:f0:ac:7c:44:9f:
e8:38:98:45:41:1e:4f:dc:be:33:f4:f7:d4:ca:63:
07:e7:09:fc:17:a9:97:c9:7b:50:1a:55:fd:58:83:
dc:4d:21:e0:97:a5:09:d3:e9:6e:0b:14:84:3c:1e:
b4:79:15:bb:53:46:8b:06:37:60:39:ec:a3:2c:90:
8a:cb:a3:08:c1:90:e2:5c:9d:92:ad:0e:57:3d:de:
56:30:e4:3c:17:c3:8d:5d:f3:6f:cb:01:53:e1:ba:
e4:d8:6e:a7:19:9b:62:da:e2:4b:bb:12:2f:79:bc:
e5:19:35:d6:4e:48:17:8f:27:4e:42:bd:00:fd:60:
e8:46:68:30:34:2c:86:dd:e9:7b:06:d0:2e:80:9f:
5f:1d:7a:46:39:d4:73:50:df:1c:61:0b:19:74:49:
a9:05:58:d2:e2:68:e1:5f:59:af:1a:fc:30:8b:76:
14:fd:c6:40:e1:92:99:c4:06:2e:b4:c9:0c:f7:39:
53:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:77:38:63:30:FB:3F:90:28:B4:26:F7:2E:62:88:29:16:A0:B6:80
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:17:98:0d:3b:e6:e5:02:ff:fd:f0:47:2c:92:7b:17:94:9e:
c8:80:a2:b1:b7:cb:51:cb:42:9a:3c:9b:0d:8e:3b:d0:a5:4b:
94:15:12:30:eb:b8:14:9c:0e:e7:65:38:ca:4c:7d:ba:df:ba:
98:e4:30:23:e9:ca:6e:88:c9:6c:fa:f0:f3:3f:10:da:27:ee:
2b:64:3f:de:cf:3f:a9:1a:65:04:03:ae:e9:1b:5b:96:a5:61:
bc:e1:5b:60:98:a5:2f:1b:74:24:89:89:54:b2:2f:ec:48:03:
2b:d2:2c:0d:b2:aa:b6:a4:1e:c5:e6:6b:04:57:8e:35:68:5f:
64:26:1b:df:f8:39:9e:48:b6:29:d7:1e:8b:bb:e0:74:68:d0:
dc:44:80:5c:cb:31:2e:3e:c4:76:b6:fe:ae:14:95:e3:d2:50:
2a:3b:17:d1:89:bd:a2:d2:02:11:19:1b:1b:d6:86:ca:60:f3:
74:5d:4f:53:71:1d:7b:fe:d7:7d:61:95:01:44:fe:70:a2:42:
c2:cd:80:f3:1e:ef:ab:dd:d5:d8:f1:2b:61:ad:2e:bd:f3:19:
01:83:f4:10:0d:09:e7:2b:96:f9:74:87:58:6f:fc:24:82:f6:
ab:40:6b:18:25:88:5a:db:0c:01:bf:06:09:fc:f8:b7:e9:fc:
37:e9:9c:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:26:15 2026 by rpki-client