Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
File: RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft (raw, json)
Hash identifier: qEMzPCdfWVfJvPiZhYeSfIu6VjSujrRl+bXAQ5X83Eg=
Subject key identifier: E9:2F:C9:82:A9:E0:7C:12:A0:DE:CD:B4:CC:7C:CC:0F:06:AA:7E:52
Authority key identifier: 44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33
Certificate issuer: /CN=44814ea7e83b4019bfd5797eba989da06dd90e33
Certificate serial: 019D27DFD21A15D93003FFFF6079D5DEBB09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
Manifest number: 104E
Signing time: Thu 26 Mar 2026 02:01:12 +0000
Manifest this update: Thu 26 Mar 2026 02:01:12 +0000
Manifest next update: Fri 27 Mar 2026 02:01:12 +0000
Files and hashes: 1: RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl (hash: FE53oi6EBZAvDwyfduEfexfDu/5nC/UyFjsPmSeh+HY=)
2: c4pt8vUVaeXjMXnofvH8CstQg9I.roa (hash: JquKoOYBsn6huX/IMn7g4cc/ok8BfYvy/bpSr/C0iVw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl
rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:d2:1a:15:d9:30:03:ff:ff:60:79:d5:de:bb:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44814ea7e83b4019bfd5797eba989da06dd90e33
Validity
Not Before: Mar 26 02:01:12 2026 GMT
Not After : Mar 27 02:01:12 2026 GMT
Subject: CN=e92fc982a9e07c12a0decdb4cc7ccc0f06aa7e52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:d2:93:f9:b1:aa:0f:81:35:46:be:60:5f:9d:
75:f7:3a:92:95:12:22:f7:89:87:68:60:14:1c:96:
f9:d5:e9:d3:67:e1:75:55:13:26:d5:72:30:dd:c4:
71:df:8e:eb:3e:24:35:7c:25:21:bf:da:40:25:c2:
eb:07:d6:c3:c8:1d:83:4a:5c:e4:99:cf:29:70:0f:
b4:99:a0:11:e6:0f:f7:b1:82:96:cd:67:69:45:9b:
e1:ab:f8:9e:e4:71:98:80:6a:1d:70:87:4e:a3:3e:
73:54:5b:fa:71:42:40:6a:8a:06:20:a5:6f:bd:32:
f6:e4:0f:e0:69:ed:52:0e:38:ba:20:e1:f6:d1:f0:
72:c6:19:2b:85:78:90:9f:54:74:07:f4:a4:f7:04:
0f:9d:b2:ca:6c:04:13:4a:96:cd:1a:ee:73:4c:25:
0d:35:5b:36:be:57:85:60:70:4a:e1:3a:0f:e5:f7:
a3:d0:2f:7d:ba:90:80:65:43:4d:c4:7b:59:17:26:
a1:ec:ff:e9:2e:ef:17:11:00:37:85:88:81:d5:64:
05:d7:c1:d0:e5:e4:9c:ba:07:56:c2:fe:66:f2:6d:
58:c8:3c:58:b0:ff:fa:34:91:07:9c:cb:58:87:aa:
2e:30:ea:7e:27:3d:0e:ee:84:20:39:15:35:41:40:
15:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:2F:C9:82:A9:E0:7C:12:A0:DE:CD:B4:CC:7C:CC:0F:06:AA:7E:52
X509v3 Authority Key Identifier:
keyid:44:81:4E:A7:E8:3B:40:19:BF:D5:79:7E:BA:98:9D:A0:6D:D9:0E:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIFOp-g7QBm_1Xl-upidoG3ZDjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/3ac44b-565a-4286-a40c-d7e01ac02a75/1/RIFOp-g7QBm_1Xl-upidoG3ZDjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:73:42:7d:45:d9:47:b5:9a:14:c4:b0:29:14:3a:d7:3c:13:
f5:25:07:e9:55:89:86:5c:ab:81:7d:09:60:23:d1:f4:19:f7:
01:bf:9a:42:f6:62:a3:01:7a:c5:fb:9e:b1:c3:a0:b7:9c:b6:
c3:cc:dd:31:ef:09:f5:da:f3:b7:58:20:5d:82:28:77:9e:94:
23:da:4a:6f:8f:d2:1d:04:f9:45:cb:8c:72:e2:25:cf:1c:0b:
e3:27:c4:79:cf:44:a8:53:59:7b:b2:8e:47:5d:82:bc:e0:58:
7c:e7:3b:ee:1b:b2:8b:e4:e0:91:6e:2d:f7:5a:33:e0:01:74:
b5:86:5f:08:89:e2:e5:a5:0b:40:ab:c2:18:b4:5c:a5:fe:07:
69:a0:fe:cd:48:f4:69:98:51:11:f3:c9:c9:4a:7b:04:70:99:
14:33:e6:43:2f:de:3d:78:f8:2f:68:6f:88:67:bb:a4:e8:81:
0f:44:99:a8:86:6c:e8:08:7b:00:d5:19:84:b6:0d:fc:df:e6:
0b:ae:6d:3b:ff:a7:f0:88:43:94:79:39:dc:35:7b:f6:c3:3e:
98:ce:c1:72:e2:d2:f5:e9:66:6a:e7:06:e9:5a:0e:74:4c:f5:
0c:90:20:b5:ba:c5:8c:7a:23:09:01:f3:db:39:5d:1d:f3:4a:
05:f2:57:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:28:19 2026 by rpki-client