Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
File: cRc4aXP7-IqGfIKohnsFD8pgsBE.mft (raw, json)
Hash identifier: Nz1EPrwXR+hcQhgNXrTqgfp56rg91sm8GQDtXZhorc4=
Subject key identifier: 22:36:74:E1:00:C0:79:18:C9:17:B6:5B:B2:81:99:B8:25:7A:66:52
Authority key identifier: 71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11
Certificate issuer: /CN=7117386973fbf88a867c82a8867b050fca60b011
Certificate serial: 019D284D66F9472D7B978362A52BBA98376C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 04:00:54 +0000
Manifest this update: Thu 26 Mar 2026 04:00:54 +0000
Manifest next update: Fri 27 Mar 2026 04:00:54 +0000
Files and hashes: 1: _pFw1M_LxWF-tK9gXqaVnNopZlc.roa (hash: ath0PSyjXUpmRHBuIYRm7IvaVnfoTyInZ3ULpEebhQ0=)
2: cRc4aXP7-IqGfIKohnsFD8pgsBE.crl (hash: DPenOlpjbqS1LFDQBcuBtOsNJNTNMQlD1u/lJwPE9Mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:66:f9:47:2d:7b:97:83:62:a5:2b:ba:98:37:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7117386973fbf88a867c82a8867b050fca60b011
Validity
Not Before: Mar 26 04:00:54 2026 GMT
Not After : Mar 27 04:00:54 2026 GMT
Subject: CN=223674e100c07918c917b65bb28199b8257a6652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:3a:9a:d3:df:69:4c:34:5d:9d:62:a9:f0:2c:
ed:18:f3:35:45:89:0e:45:c3:25:66:64:e5:ba:5c:
2c:c4:18:56:d6:46:08:47:9e:e6:ad:29:61:5d:5e:
1f:a7:98:33:62:ea:ec:63:21:da:43:af:86:92:ec:
3e:1c:1d:a8:99:cd:9b:b0:56:bc:09:91:d9:f9:2c:
a6:6c:3f:82:b0:93:e4:c2:65:05:cb:fa:9c:8c:e9:
3e:68:bc:b5:fc:16:e3:8b:20:f9:48:00:d5:f3:20:
72:84:01:26:ad:c3:5c:d3:ea:6a:3b:6d:be:65:8c:
c6:67:5b:fe:51:d8:4e:ab:ef:51:2d:5f:76:cc:89:
7f:5a:aa:18:72:ab:f6:a2:c8:2f:6b:18:9f:7c:39:
b0:bf:c8:f1:8e:e2:91:59:3a:97:12:f1:9f:6c:7b:
a8:67:4f:30:ba:d5:b3:bf:dc:3b:00:5a:73:62:e8:
8c:55:8a:a3:97:c3:85:fb:15:7d:36:5e:43:2b:d3:
e9:76:7a:8b:a9:ab:82:3f:80:ba:e6:e4:e4:0c:f9:
6f:ab:e7:de:05:f6:91:ef:68:f2:74:6d:32:d7:13:
f8:eb:30:81:5b:b2:2b:49:23:59:cb:c3:a9:53:26:
9c:0e:d6:e5:62:8a:22:c2:69:4d:f2:91:77:45:5f:
e2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:36:74:E1:00:C0:79:18:C9:17:B6:5B:B2:81:99:B8:25:7A:66:52
X509v3 Authority Key Identifier:
keyid:71:17:38:69:73:FB:F8:8A:86:7C:82:A8:86:7B:05:0F:CA:60:B0:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cRc4aXP7-IqGfIKohnsFD8pgsBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/793805-e4e9-42e2-8386-9f303ea67e65/1/cRc4aXP7-IqGfIKohnsFD8pgsBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:13:95:13:20:c5:84:1f:1c:b4:ae:1c:ef:36:5e:de:b6:2e:
a3:75:2a:19:8c:9d:bf:ab:b4:e5:d6:bc:f7:77:41:58:f2:90:
90:90:ba:1f:6f:ae:a3:35:9e:30:2b:56:c3:cf:43:82:52:4f:
02:51:9a:86:63:24:d8:3e:df:ba:4b:01:6a:dc:1c:50:7e:d4:
fc:b0:0a:7a:6f:72:85:5b:9c:ad:fb:13:68:50:93:bd:19:cc:
b0:f4:79:54:4c:7d:8a:30:92:ce:84:1f:b5:a9:b8:d5:4f:97:
73:6c:14:ff:f4:98:c3:25:dc:c9:61:f4:13:2c:7e:6e:16:c5:
0f:57:dc:01:d7:31:22:68:f2:8e:25:71:b1:ca:7b:64:b5:71:
3e:d3:d1:86:a1:27:4b:ac:fc:ad:95:24:2b:60:cb:98:c9:cb:
aa:c2:70:19:13:75:04:8c:6b:96:74:12:c6:e2:5c:ba:0a:fe:
7d:16:66:3b:b1:ab:03:1d:a1:18:e3:c5:95:d1:14:95:76:51:
eb:f1:18:ef:29:1d:cc:af:d2:8d:90:7e:f9:e9:1f:ca:3c:52:
0c:32:1d:85:89:14:5a:0f:34:98:84:47:6a:9d:a9:29:94:df:
ec:5d:9a:6a:05:b4:52:4c:28:44:dc:3a:94:a9:f9:75:0d:0d:
93:94:00:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:32:33 2026 by rpki-client