Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
File: 9a2pAdQIv39blDWSHkgAqPgtvas.mft (raw, json)
Hash identifier: dVo5LjaS6Vt2pXPj5csx9Nt682kHyd+ULdxnUNxear0=
Subject key identifier: FF:8E:87:EF:7D:69:65:79:D0:8E:62:5B:C5:DE:13:9F:93:56:53:39
Authority key identifier: F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
Certificate issuer: /CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Certificate serial: 019D284E3BAFA23534B4DB5B020C883E3EA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 04:01:48 +0000
Manifest this update: Thu 26 Mar 2026 04:01:48 +0000
Manifest next update: Fri 27 Mar 2026 04:01:48 +0000
Files and hashes: 1: 9a2pAdQIv39blDWSHkgAqPgtvas.crl (hash: gAyIMsSomvXyuRVglVzOViSeW7V4LHjsPD/lBipteX8=)
2: J6H8JSFuxVzFOSwqeVn8vTsfdVE.roa (hash: vYs9Iafl6ODvzqSPTNj74leQVCe3/0UGQl7TxkQZF/8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 04:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4e:3b:af:a2:35:34:b4:db:5b:02:0c:88:3e:3e:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f5ada901d408bf7f5b9435921e4800a8f82dbdab
Validity
Not Before: Mar 26 04:01:48 2026 GMT
Not After : Mar 27 04:01:48 2026 GMT
Subject: CN=ff8e87ef7d696579d08e625bc5de139f93565339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:7c:c2:fc:9d:3d:42:d0:d9:3f:94:9f:98:76:
5d:e9:a7:64:ec:15:80:0b:30:49:be:c9:27:68:2d:
c4:de:20:53:a5:f4:7d:50:f6:35:a0:89:cd:d7:bd:
02:42:d3:41:25:f0:aa:91:af:08:21:77:ef:62:9c:
dd:53:38:b8:6d:75:2c:04:85:71:49:02:21:a6:96:
e7:b0:8c:e7:2e:b7:2b:dd:9d:e5:27:65:a6:19:58:
d3:89:cc:5d:c6:00:0b:b9:d3:07:da:49:cd:fc:53:
06:5b:7e:0b:0c:ab:80:25:94:00:6a:24:ba:cb:d0:
f5:2d:8a:a7:a6:b6:aa:83:9f:9d:c3:41:9a:3b:36:
e4:01:c9:5c:d1:4b:34:c7:b4:66:a7:e0:6c:18:a9:
96:79:55:2c:1a:a2:b7:07:48:91:c1:6b:be:72:4a:
99:42:a4:20:88:39:41:98:84:a8:1a:7a:ce:cc:5f:
9c:9c:3f:2b:7d:af:b6:2c:5a:be:fb:26:54:d6:00:
5e:a6:93:76:49:09:9f:95:bb:4d:f8:a7:32:16:59:
6f:1f:94:1a:4f:33:b1:d5:07:81:d3:cb:95:b9:08:
26:96:96:56:4e:a6:d1:0a:af:16:45:4f:13:f9:5a:
1e:41:6a:3c:34:08:7a:9c:04:fe:8d:3e:c3:0c:49:
6e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8E:87:EF:7D:69:65:79:D0:8E:62:5B:C5:DE:13:9F:93:56:53:39
X509v3 Authority Key Identifier:
keyid:F5:AD:A9:01:D4:08:BF:7F:5B:94:35:92:1E:48:00:A8:F8:2D:BD:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a2pAdQIv39blDWSHkgAqPgtvas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/afa6d6-50f9-41d4-b7cf-a33649e3e2c5/1/9a2pAdQIv39blDWSHkgAqPgtvas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:47:52:9f:34:49:b1:14:d4:ec:fc:0e:5b:3d:b0:06:cc:68:
2a:1f:7d:7b:8d:19:d7:39:20:4e:1f:9d:ea:c1:b4:d0:94:b4:
d5:59:0f:1f:da:a1:09:f8:66:a2:8b:25:43:db:eb:0e:43:1d:
6d:a9:f1:4a:0d:2f:fd:98:30:fc:35:19:d6:55:46:cb:d3:03:
c5:4f:98:21:fb:cc:84:5d:40:f5:90:71:f6:66:4d:02:a3:94:
f5:2a:7b:ea:a1:5a:47:28:9f:9e:93:23:aa:2b:6a:52:87:84:
c8:37:dd:34:00:6b:32:b2:e0:47:35:51:74:89:0d:f4:77:1e:
13:f9:6f:f5:ef:af:a0:bf:6c:93:c5:23:18:32:55:f5:b0:40:
b7:4d:3f:9a:72:a6:51:d2:13:63:2d:54:5e:77:9d:20:e9:ac:
7b:33:50:c2:17:d5:2a:1a:f3:ec:c4:bf:b5:66:3a:b2:b0:ac:
ed:e8:05:82:bf:61:4d:eb:3b:96:b5:e8:55:91:b2:b1:b5:15:
13:f0:36:bc:74:3d:ae:89:0b:0e:4b:a3:9f:dd:b6:f2:da:de:
94:08:db:16:b8:6f:03:47:ff:c3:73:47:90:9a:d3:19:23:18:
9f:c4:46:a7:e3:8f:c4:14:dd:ee:52:f6:cd:53:f1:6b:12:4f:
8b:1e:af:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:15:22 2026 by rpki-client