Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
File: USt7qR3DDrtBPNBVvUMpLi0UAY8.mft (raw, json)
Hash identifier: DmH281LRTmoJyfQfEfb4JL+UFz9Pk0vLldZnbzxj9Ic=
Subject key identifier: 3E:58:5E:EC:60:44:F5:DB:21:EA:D7:CB:6C:F5:EC:4A:E9:B7:A2:99
Authority key identifier: 51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
Certificate issuer: /CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Certificate serial: 019D273AF139A8AE81A21020EC5D65DED357
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
Manifest number: 080A
Signing time: Wed 25 Mar 2026 23:01:07 +0000
Manifest this update: Wed 25 Mar 2026 23:01:07 +0000
Manifest next update: Thu 26 Mar 2026 23:01:07 +0000
Files and hashes: 1: 8641rsKg9fD7lx-GPNjbC4vuzsc.roa (hash: Vka8GFo29c9tBpzyWSVh9ZUdbW2Ls5cI8qhExZNURvw=)
2: USt7qR3DDrtBPNBVvUMpLi0UAY8.crl (hash: ZeRvlJhMb2+JBlXTt36MfFXFkQe2oaEPsIh9Wp8RfL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:f1:39:a8:ae:81:a2:10:20:ec:5d:65:de:d3:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=512b7ba91dc30ebb413cd055bd43292e2d14018f
Validity
Not Before: Mar 25 23:01:07 2026 GMT
Not After : Mar 26 23:01:07 2026 GMT
Subject: CN=3e585eec6044f5db21ead7cb6cf5ec4ae9b7a299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d8:29:02:89:4d:9d:b7:da:0f:41:a9:5e:8f:
d0:7c:45:9a:b7:33:ca:9f:7d:f1:33:53:e5:91:ba:
0d:9f:85:a9:4b:d2:f0:58:49:60:e1:ef:de:91:86:
71:f8:c1:bf:1c:7c:cd:67:2e:fd:97:67:13:94:35:
d1:f6:95:d7:77:95:51:fb:65:dc:73:73:6b:bd:d0:
65:94:b6:a1:5a:83:60:73:f0:38:9c:57:74:ca:5b:
20:11:07:62:36:da:ca:fb:7b:d1:c6:50:6f:37:e3:
a5:f2:fa:a7:e4:cf:f9:80:25:84:82:a9:5f:2e:80:
14:20:03:db:23:42:87:e9:00:d2:7b:0d:fc:94:5e:
bb:f8:9a:66:66:a3:61:59:de:2a:68:f8:8b:9e:42:
6f:e7:01:b5:50:21:20:83:11:89:c6:2f:2a:14:19:
ab:ce:55:88:18:f3:e5:01:2b:d8:aa:fa:7b:c4:bd:
58:cf:d5:b4:00:29:74:98:96:6b:26:38:77:ca:b6:
7c:bd:4a:49:03:90:16:a4:a2:72:24:70:46:d4:c8:
45:b2:ce:4a:79:8e:34:b5:66:8b:58:63:dc:6a:0d:
e9:76:b9:95:3f:aa:2d:75:27:76:00:1b:5c:6a:ff:
32:b1:c9:26:7c:c6:d0:30:49:59:bb:06:0d:f2:58:
94:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:58:5E:EC:60:44:F5:DB:21:EA:D7:CB:6C:F5:EC:4A:E9:B7:A2:99
X509v3 Authority Key Identifier:
keyid:51:2B:7B:A9:1D:C3:0E:BB:41:3C:D0:55:BD:43:29:2E:2D:14:01:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/USt7qR3DDrtBPNBVvUMpLi0UAY8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/63fe9e-60a0-4f80-8c01-1673749bceec/1/USt7qR3DDrtBPNBVvUMpLi0UAY8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:8b:d6:1c:a1:5d:51:03:87:43:19:a7:ce:61:6b:4a:90:df:
22:f4:43:50:b8:1c:c9:16:d2:90:bd:83:91:75:85:df:0e:78:
da:cd:bc:1f:3e:a9:d0:1f:b1:7f:99:bb:08:c4:aa:34:98:69:
4a:4a:11:cd:12:e8:cf:51:64:ae:cf:14:e2:b8:0e:ba:8d:0c:
b4:fc:27:53:16:d0:3d:13:bc:3b:64:b3:ac:54:4f:66:1e:cb:
d0:7f:ef:83:8a:46:2c:e9:bd:1b:10:82:4d:6e:3b:a9:12:c3:
b8:de:9b:fc:06:22:0c:f4:6c:a3:fa:72:86:d4:b5:46:a7:f0:
6f:f0:63:15:b2:2e:ab:3c:b4:c4:42:6d:c4:67:bc:00:08:dd:
31:8a:9d:4a:19:56:47:9d:04:ea:95:69:07:86:f1:ef:1e:ec:
67:10:6c:87:b6:c5:10:a7:36:f5:82:30:db:06:82:fa:b0:da:
4d:d4:11:62:f3:8a:90:d2:86:75:05:5d:3e:d2:1e:58:43:e5:
da:3b:17:62:5c:66:25:2b:c8:05:b6:56:0b:54:d1:60:6b:3c:
45:83:ce:26:48:1c:ef:96:49:9c:c9:9f:aa:14:63:97:50:c4:
2c:a0:51:ed:38:87:ba:8b:a3:94:07:cd:8c:ed:fa:55:35:cf:
f0:5e:60:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:56:39 2026 by rpki-client