Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
File: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft (raw, json)
Hash identifier: Q50wR0U+o0gS7+vIGcZWCXd6SJtRa7byo170rjQMo2A=
Subject key identifier: A7:05:4F:F7:57:EE:B2:11:58:5A:75:24:26:2F:2B:93:B4:19:A9:DA
Authority key identifier: 97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
Certificate issuer: /CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Certificate serial: 019D27DF9DE21FDF41E41027B7854508ADF0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
Manifest number: 1281
Signing time: Thu 26 Mar 2026 02:00:59 +0000
Manifest this update: Thu 26 Mar 2026 02:00:59 +0000
Manifest next update: Fri 27 Mar 2026 02:00:59 +0000
Files and hashes: 1: hEHeb8OuF9xUk8MiJaqaoIXUxyM.roa (hash: cMPtLwG20T+Oxfp5dF/gVvhKkmvpYnxVK+DxJa36bGQ=)
2: l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl (hash: 7Ym9Furp2TGHSzH8sFlUF9DXK2REpFP10dVLvzC3t6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:9d:e2:1f:df:41:e4:10:27:b7:85:45:08:ad:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=977b8aa063fc4f2bb84a9f56a3bfa38b2abedf9b
Validity
Not Before: Mar 26 02:00:59 2026 GMT
Not After : Mar 27 02:00:59 2026 GMT
Subject: CN=a7054ff757eeb211585a7524262f2b93b419a9da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:62:4f:7c:f7:98:81:7b:14:53:2c:48:5e:b9:
67:f9:5d:73:1e:59:a7:d7:e2:ad:58:93:96:35:83:
aa:93:1c:76:91:be:e9:9b:ff:fc:d1:40:05:c7:1b:
32:29:f0:12:6f:bb:04:54:bf:0a:31:d6:a3:be:64:
99:d7:62:16:75:f8:45:23:6b:10:b5:f9:97:23:05:
1b:4d:b2:56:7b:9c:15:cc:af:8e:20:2b:ac:8a:c8:
bd:2b:92:48:e5:08:4c:04:04:aa:79:a2:d5:71:46:
97:05:04:20:91:49:93:21:74:ab:55:35:f4:e1:36:
31:fa:59:db:e1:1b:36:c0:72:45:a4:ea:40:d4:a7:
28:1d:42:0d:96:8f:d8:75:80:61:ee:26:71:ac:fa:
55:75:76:fc:77:46:12:c2:c3:8f:a1:40:ee:93:8e:
85:1e:20:41:ce:72:77:c6:12:33:b7:2b:d0:1f:67:
6a:9b:c2:93:0b:d0:03:17:e6:37:f8:0c:3c:c7:c3:
25:d2:10:47:2b:4d:8e:16:34:ba:09:09:c6:94:5c:
63:bc:17:cc:53:4d:59:b1:c4:89:2e:9d:19:35:02:
75:2d:b3:c2:83:53:48:2e:8a:c0:7e:a6:fd:62:08:
44:98:d3:90:25:c6:6e:0f:cf:6a:c8:70:af:70:84:
e3:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:05:4F:F7:57:EE:B2:11:58:5A:75:24:26:2F:2B:93:B4:19:A9:DA
X509v3 Authority Key Identifier:
keyid:97:7B:8A:A0:63:FC:4F:2B:B8:4A:9F:56:A3:BF:A3:8B:2A:BE:DF:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/bd59d9-690a-4fe2-b295-7ec5123be162/1/l3uKoGP8Tyu4Sp9Wo7-jiyq-35s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:38:55:86:b5:b0:17:21:61:7e:41:fb:6f:01:fa:57:ae:2f:
da:21:2a:80:20:ff:c2:df:85:6c:45:d8:94:f1:ea:53:43:80:
a4:9f:2c:a2:86:09:05:b2:22:e1:cc:d9:45:14:75:1e:6a:72:
d5:12:5e:51:78:8f:1b:25:6a:68:83:71:0f:dc:47:b9:37:7c:
f7:7b:8c:d2:84:93:6b:1f:37:7c:0b:28:77:ce:fe:c2:e3:1c:
ae:b0:5b:d6:d5:70:df:e6:36:e8:98:09:b6:1c:3b:69:a7:c9:
86:be:3d:91:a1:4c:8e:98:00:26:8c:e5:bc:c8:07:f0:c4:7e:
f5:ac:4e:36:8d:64:99:5a:b8:38:09:38:cb:b1:08:8c:a0:38:
eb:0e:54:0d:ed:53:78:4e:77:b4:36:2a:9a:ed:5d:7d:74:5b:
75:69:2f:56:34:04:c8:c5:0e:2d:e2:2a:ba:69:fd:57:96:ff:
8a:dc:39:17:48:e0:d8:58:bd:5e:80:61:84:d1:07:44:ee:22:
43:dd:b3:73:f5:73:d4:39:ad:4f:e5:e4:d9:ad:72:d5:3f:c2:
e3:59:e0:fc:d2:1c:15:f2:12:56:58:0e:9f:d7:b7:1a:ca:14:
42:95:1a:af:3d:75:08:1a:40:c3:b8:84:0d:63:ec:50:86:1e:
9d:59:21:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:54:38 2026 by rpki-client