Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
File: esYj77_BJHEhYiQMugKk2h1NzqM.mft (raw, json)
Hash identifier: +aBDSWmyFPVmaR7CAe5EgQEouUKfa4+OxdFgrAtqKHA=
Subject key identifier: 1F:4C:18:5C:FD:16:BB:AE:89:0A:F1:81:C5:8D:07:43:DE:F8:5C:55
Authority key identifier: 7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
Certificate issuer: /CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Certificate serial: 019D2704658B78218371B3251498C1B9BD32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
Manifest number: 1083
Signing time: Wed 25 Mar 2026 22:01:32 +0000
Manifest this update: Wed 25 Mar 2026 22:01:32 +0000
Manifest next update: Thu 26 Mar 2026 22:01:32 +0000
Files and hashes: 1: esYj77_BJHEhYiQMugKk2h1NzqM.crl (hash: PQUbsLkkbNu0eYmZ2XJCul0/B88X2hFFJueqEvgyhqc=)
2: oxAaTJm6w19ZYAezwM2Bse1zk-k.roa (hash: UmiPLqYirI4eFKMHzTXAkfjhckK4NXBAKqDlpgaTmlg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:65:8b:78:21:83:71:b3:25:14:98:c1:b9:bd:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ac623efbfc124712162240cba02a4da1d4dcea3
Validity
Not Before: Mar 25 22:01:32 2026 GMT
Not After : Mar 26 22:01:32 2026 GMT
Subject: CN=1f4c185cfd16bbae890af181c58d0743def85c55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b4:94:07:d3:d6:e3:b7:7f:87:74:d9:98:3c:
91:d7:8e:31:39:c2:73:53:c5:75:b7:39:62:0d:76:
ea:e9:15:f3:cb:b4:c3:85:cb:1b:74:76:60:46:d5:
0d:5c:d7:7a:81:fe:1e:e1:88:ab:06:ea:f1:58:9c:
86:c5:ce:fb:c9:6a:81:02:c6:d3:d2:32:fd:a0:e1:
29:f5:db:dd:99:07:3c:3b:da:f1:6c:71:da:9c:41:
8d:6c:96:07:c5:ad:67:03:8b:45:34:fd:48:d2:8d:
4d:61:b9:d3:b1:56:30:a7:5b:aa:1c:a4:67:f5:b3:
b2:c4:90:74:75:72:b6:f5:c8:ec:31:69:e5:d9:36:
98:d0:a3:dd:a8:75:b1:b8:55:43:9f:de:7e:6a:c2:
00:1c:2c:4a:4b:0c:39:75:1c:ec:1f:eb:57:07:b4:
f7:ea:1d:37:30:c8:a7:91:10:d3:5b:a3:31:53:42:
57:b6:08:8e:6e:9d:00:5c:aa:b9:52:f0:91:c6:af:
f6:c8:8b:b1:34:38:d5:0b:d4:3c:44:ea:2a:6e:66:
9b:68:6a:a8:20:c2:84:78:53:bc:f1:27:a5:e3:03:
fc:be:38:90:6c:f3:f0:26:a2:b4:c3:1b:2a:bf:de:
bc:dc:74:d7:97:b5:48:78:a9:0e:5b:e5:ad:06:77:
77:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4C:18:5C:FD:16:BB:AE:89:0A:F1:81:C5:8D:07:43:DE:F8:5C:55
X509v3 Authority Key Identifier:
keyid:7A:C6:23:EF:BF:C1:24:71:21:62:24:0C:BA:02:A4:DA:1D:4D:CE:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/esYj77_BJHEhYiQMugKk2h1NzqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/c74a4f-4052-4c9b-a7f8-43aa4cce3f48/1/esYj77_BJHEhYiQMugKk2h1NzqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:f3:47:ea:5a:2f:d9:03:e1:e8:c5:68:c3:99:00:6d:69:f0:
e3:71:09:38:65:26:c0:02:f8:0e:4a:af:05:fe:5b:98:37:59:
0a:44:92:72:1f:2b:04:6e:5d:0a:fd:2b:a4:5b:39:eb:d5:fb:
ca:39:56:a5:f7:40:bd:a0:c0:97:6e:3e:17:3a:86:84:64:41:
fb:50:ab:10:e4:68:75:9f:18:bf:28:53:86:b7:85:28:48:c4:
e6:e0:35:f4:7d:d5:e3:9f:8a:ca:f4:5e:19:74:63:b8:5c:c2:
02:67:20:f1:98:ba:96:61:f5:55:bc:b1:50:a6:43:af:ac:0d:
f7:7d:43:30:0d:20:b0:b1:08:60:cf:40:4b:cd:c7:14:9e:93:
d2:9a:69:bc:ef:fd:1c:07:59:32:ae:13:02:23:d3:7d:f7:86:
2c:aa:ae:09:bc:76:a2:27:e7:fc:52:05:c5:af:05:a4:ef:07:
a3:e7:0d:52:e4:b6:16:d0:f7:f3:74:30:9a:f4:a5:d2:9a:0d:
e4:88:08:44:eb:da:63:b8:f9:7b:5d:28:fa:79:2c:2b:7c:0c:
ad:d4:f9:d0:21:f0:39:8a:bd:46:c6:03:7b:67:80:be:b2:30:
dc:18:71:93:f1:d2:d3:30:1b:be:dc:ea:8c:55:77:83:3e:f8:
0c:bf:99:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:08 2026 by rpki-client