Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
File: Po3UOSjt-xIA77xixEH5zSkEhYU.mft (raw, json)
Hash identifier: d71nB+NJqITb7Dnj9YfsYGctSghf1cOMguNmQGKSVvQ=
Subject key identifier: C2:D8:4F:73:3F:F2:22:25:CE:08:1B:AD:CD:07:E8:E0:36:AB:07:AE
Authority key identifier: 3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
Certificate issuer: /CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Certificate serial: 019D2771EA3DBEBD922820037B399B73B429
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 00:01:10 +0000
Manifest this update: Thu 26 Mar 2026 00:01:10 +0000
Manifest next update: Fri 27 Mar 2026 00:01:10 +0000
Files and hashes: 1: 0U1eG0GsSbCnBwGZ5F2Z5gLSu9Y.roa (hash: Fhy27ODXOo/iYcrRT3EoyxFDPguM4gwg2roTVU5BtKk=)
2: Po3UOSjt-xIA77xixEH5zSkEhYU.crl (hash: gy9JcErFUKH5JBCdVDh+MySI0AVN7DvOZ3RvlwV0GE8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:ea:3d:be:bd:92:28:20:03:7b:39:9b:73:b4:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e8dd43928edfb1200efbc62c441f9cd29048585
Validity
Not Before: Mar 26 00:01:10 2026 GMT
Not After : Mar 27 00:01:10 2026 GMT
Subject: CN=c2d84f733ff22225ce081badcd07e8e036ab07ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f3:e0:69:62:56:34:cd:7e:6c:cf:89:93:68:
be:43:c0:76:dc:2f:07:8b:63:72:5d:db:d3:35:76:
b5:f8:bd:80:ad:49:c1:78:14:4d:f4:fd:92:ad:6e:
4e:76:91:0d:5d:63:24:87:47:7b:f0:eb:6e:b0:71:
89:cb:8c:81:21:65:22:c2:11:21:44:e2:86:e1:ec:
b0:74:b5:53:c6:a9:a3:19:30:5e:ee:af:07:53:d8:
15:f4:05:9f:9a:e6:fa:fc:cb:36:91:f6:ad:85:e7:
9f:86:57:2c:04:d4:2e:e5:8e:aa:88:9c:bd:02:11:
75:46:74:86:4e:55:93:51:71:d5:87:48:80:e1:4b:
23:40:f3:08:c4:d1:e8:9e:f7:cf:fc:9b:81:51:ee:
3e:13:ec:30:ae:3c:ee:f4:e2:da:36:1f:13:73:2b:
8c:96:d2:43:e5:78:0e:ca:19:0f:9c:03:0e:e3:d1:
de:9e:de:2b:94:68:bd:95:fb:ae:d1:fd:9b:9d:5a:
59:56:47:f3:30:a1:06:12:03:a1:f1:5c:79:f4:42:
ae:3d:26:f4:5b:c2:91:66:f6:03:c8:ab:d3:7e:ce:
ed:d1:fd:3c:77:16:22:3c:55:8a:11:3e:06:06:48:
9c:eb:e7:41:88:6c:59:37:79:c1:83:c5:0a:84:f6:
a8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D8:4F:73:3F:F2:22:25:CE:08:1B:AD:CD:07:E8:E0:36:AB:07:AE
X509v3 Authority Key Identifier:
keyid:3E:8D:D4:39:28:ED:FB:12:00:EF:BC:62:C4:41:F9:CD:29:04:85:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Po3UOSjt-xIA77xixEH5zSkEhYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/f7ecb7-ff6d-45e0-98d6-c77bae3d3ed1/1/Po3UOSjt-xIA77xixEH5zSkEhYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:ed:ce:83:7c:17:44:3b:45:3c:90:1b:23:38:16:ad:cd:b0:
8f:4c:ff:6f:20:2f:66:05:f2:26:d6:ba:db:3b:1b:5e:4d:a5:
ce:b1:d2:07:96:ba:7a:f5:f9:ba:c3:c6:62:0c:63:8c:05:a2:
c0:66:6e:b5:a9:39:cb:e8:26:fb:6b:d8:db:ca:1a:45:03:6a:
42:4a:e9:5a:52:e8:ca:87:90:89:55:9c:0e:64:b2:74:a4:05:
d0:6b:92:fe:bf:c4:be:df:46:eb:e2:5b:6f:b9:1f:93:02:57:
43:86:df:af:51:f8:37:01:50:83:98:70:e8:d5:fa:64:74:86:
c4:b8:23:62:04:1b:49:81:3e:7c:9b:da:76:4a:74:b1:90:6b:
60:39:52:96:e2:75:8a:e7:18:ec:81:2f:67:d6:03:6a:f5:21:
9b:6f:6c:b7:a5:6a:64:4c:af:ff:d6:50:7f:a1:20:27:2e:5b:
67:4a:13:4a:c6:c2:e7:bd:b4:a4:2a:dd:98:87:5c:e1:83:b3:
74:da:8a:c0:af:8d:c0:90:40:a7:4d:d2:7c:29:07:16:59:a9:
68:f1:27:f7:ae:f3:27:e0:97:0c:63:23:da:81:a7:f2:e7:85:
2d:d9:8a:e2:3c:94:da:6c:82:5a:8d:de:3d:fa:56:b0:ea:1a:
b0:b4:b2:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:51:50 2026 by rpki-client