Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
File: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft (raw, json)
Hash identifier: 92XFj5Pn3FQCeQa8HZCNZ7FGVf2NrnTFTu1vxnXvcYY=
Subject key identifier: D5:46:99:B2:EC:9C:12:59:30:DA:06:85:07:B4:70:DB:AC:80:F2:0C
Authority key identifier: 03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
Certificate issuer: /CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Certificate serial: 019D28BB83BF14636C5A602DE84E4420A18D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
Manifest number: 0818
Signing time: Thu 26 Mar 2026 06:01:10 +0000
Manifest this update: Thu 26 Mar 2026 06:01:10 +0000
Manifest next update: Fri 27 Mar 2026 06:01:10 +0000
Files and hashes: 1: A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl (hash: R6OktjAWGgdzcZvZtz4ig4ezsCyV10QxAr3+sh3HQ7E=)
2: fPatIQG_vn-KpCzLNpi1KmGZICQ.roa (hash: rt2SMboQCCIlzb5Lym5TzRN3RtHv+A8V2C5lF65IdPc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:83:bf:14:63:6c:5a:60:2d:e8:4e:44:20:a1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035845f86cbc3cfa9e0e7987a0382d5d0dd7ce3e
Validity
Not Before: Mar 26 06:01:10 2026 GMT
Not After : Mar 27 06:01:10 2026 GMT
Subject: CN=d54699b2ec9c125930da068507b470dbac80f20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:30:b2:98:57:09:7e:69:10:7d:3b:fa:4a:76:
d4:f6:d0:76:5c:df:be:ef:24:d2:fe:3a:ce:70:a0:
54:6b:9e:f8:02:88:cf:8c:87:2f:23:94:27:ec:b6:
0b:8e:fd:71:19:ea:90:be:bd:d6:2d:5f:bc:22:a8:
25:80:2d:6d:f9:97:fd:65:67:66:d9:97:de:07:64:
0a:ca:d2:df:bc:7e:fa:6c:0a:60:ae:90:73:a1:84:
91:97:b7:75:82:b5:7f:28:0a:51:21:de:b9:dd:65:
5c:b9:95:a8:17:7d:93:a9:26:21:e3:7d:4f:ba:83:
6d:6d:f9:52:28:fc:e8:11:2d:33:08:3f:13:14:95:
fc:db:4b:c3:6a:f9:1e:a7:7d:56:3a:5b:9a:b7:b3:
9c:79:29:83:f1:62:f3:a3:49:1e:23:6c:b8:2d:38:
20:6b:9d:bf:76:20:cf:12:6d:dc:f6:15:83:7a:09:
55:01:da:5f:3d:cc:34:dc:c6:a6:4d:51:2f:aa:6f:
d2:94:f1:ca:14:a8:90:79:05:77:9d:66:1b:a3:38:
d5:7f:bb:a4:8e:dd:09:08:bc:a2:e1:47:34:3f:cd:
52:dc:4e:68:3d:1c:34:be:05:84:e7:4a:d1:63:6f:
48:d9:1e:52:ea:85:6b:04:00:5e:34:e7:9a:6e:d2:
7e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:46:99:B2:EC:9C:12:59:30:DA:06:85:07:B4:70:DB:AC:80:F2:0C
X509v3 Authority Key Identifier:
keyid:03:58:45:F8:6C:BC:3C:FA:9E:0E:79:87:A0:38:2D:5D:0D:D7:CE:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/d279d3-947e-45c7-a890-3b84d79abdaf/1/A1hF-Gy8PPqeDnmHoDgtXQ3Xzj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:40:a7:11:d4:50:e4:ea:c8:b0:61:d6:3b:ac:de:8b:6b:50:
ce:ce:1a:16:fb:02:e9:23:c0:92:3f:08:70:ca:17:8c:82:c8:
c7:3f:d9:ae:44:6e:0d:45:22:3e:bc:5e:ea:35:89:a6:2e:2e:
33:a2:7b:dc:ac:f9:eb:e2:4d:01:50:64:ba:50:3d:45:ff:b6:
be:9a:b3:bd:38:55:27:30:72:50:c7:02:45:46:8d:0f:19:b8:
d1:64:58:0c:b0:1c:78:6c:f5:52:3b:a2:92:12:2c:2f:f8:f2:
71:a4:82:3e:35:a7:f7:16:c1:b8:5c:69:8a:8d:d2:87:3f:e4:
ad:5e:ee:83:c0:74:87:f8:b7:f7:9c:b6:4c:a6:34:cb:1a:12:
6c:49:86:84:c0:ec:8b:21:90:f3:a8:3c:fe:24:7d:35:75:97:
28:a1:9f:b4:a9:51:94:76:47:a4:b1:48:af:50:a5:5a:e9:67:
d2:7d:b3:93:1c:68:c4:67:30:df:cb:65:63:62:25:81:1d:76:
62:8b:67:43:df:08:1f:75:00:ef:2a:67:8a:4c:2c:ad:6b:f3:
11:7c:75:0d:b7:c7:57:c4:6d:b7:5e:1a:da:9c:fb:8f:ae:7d:
e4:07:46:bd:b6:10:e4:0f:f0:ac:29:2c:0a:24:e9:02:cb:bd:
41:c1:8e:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:01:10 2026 by rpki-client