Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/e5bf20-86c3-4d3f-93d3-20397e66448a/1/h0FAFRyNjVa2r1MjnSkCHt3Nilo.mft
File: h0FAFRyNjVa2r1MjnSkCHt3Nilo.mft (raw, json)
Hash identifier: 9GIFSPZsrha6EHpZ3UyWSWwtKyo8pCX6Nt019+LOxV0=
Subject key identifier: 7B:22:F7:C9:B9:30:1C:73:3A:C3:98:1D:28:D8:07:6A:1D:16:06:60
Authority key identifier: 87:41:40:15:1C:8D:8D:56:B6:AF:53:23:9D:29:02:1E:DD:CD:8A:5A
Certificate issuer: /CN=874140151c8d8d56b6af53239d29021eddcd8a5a
Certificate serial: 019D2816AD310309DC7DE32BA04FE8C9A608
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h0FAFRyNjVa2r1MjnSkCHt3Nilo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/e5bf20-86c3-4d3f-93d3-20397e66448a/1/h0FAFRyNjVa2r1MjnSkCHt3Nilo.mft
Manifest number: 3E
Signing time: Thu 26 Mar 2026 03:01:07 +0000
Manifest this update: Thu 26 Mar 2026 03:01:07 +0000
Manifest next update: Fri 27 Mar 2026 03:01:07 +0000
Files and hashes: 1: QwfwWnuU2NBVoqdOmvfr5FQjIoM.roa (hash: eLvlx5jM6qNIq7/8tFMX7T9AIKZbkgsEQFX69vOLcbc=)
2: h0FAFRyNjVa2r1MjnSkCHt3Nilo.crl (hash: y0GOEmzcFUqtjuSWU88p2XfwGnq3m6uRtAhHDWqB5IE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/e5bf20-86c3-4d3f-93d3-20397e66448a/1/h0FAFRyNjVa2r1MjnSkCHt3Nilo.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/e5bf20-86c3-4d3f-93d3-20397e66448a/1/h0FAFRyNjVa2r1MjnSkCHt3Nilo.mft
rsync://rpki.ripe.net/repository/DEFAULT/h0FAFRyNjVa2r1MjnSkCHt3Nilo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:ad:31:03:09:dc:7d:e3:2b:a0:4f:e8:c9:a6:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=874140151c8d8d56b6af53239d29021eddcd8a5a
Validity
Not Before: Mar 26 03:01:07 2026 GMT
Not After : Mar 27 03:01:07 2026 GMT
Subject: CN=7b22f7c9b9301c733ac3981d28d8076a1d160660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:9d:cd:a9:67:83:a9:a9:e6:45:af:8d:e5:bb:
fd:88:6c:c1:53:e0:c6:f1:b1:1d:cd:c9:11:d7:2e:
05:2e:41:55:35:89:58:d5:c5:7f:ad:df:1b:e8:ab:
ce:26:9b:64:27:be:c2:bf:83:4d:a7:ba:c2:e8:d0:
a0:ac:8c:ce:54:fa:9f:2a:30:8e:0d:12:cc:8c:42:
ae:a8:33:e5:85:f8:9a:0a:00:88:e8:6b:dc:e5:ec:
78:39:49:24:96:92:a3:86:9d:fe:1a:ea:c6:3d:18:
7f:d5:c3:ea:81:22:52:41:45:cb:37:53:de:c7:41:
19:50:3a:e0:01:ef:15:ed:1b:04:11:ff:41:3e:f7:
16:90:6e:b7:51:87:51:86:fd:1f:a0:6c:fd:32:d2:
ea:23:3e:db:02:70:0f:e7:96:77:d2:e4:95:aa:a3:
8d:43:47:41:53:df:84:41:c6:47:ac:b5:68:74:21:
4f:d6:a4:ac:3a:02:3a:a9:82:b2:03:85:5d:fe:49:
a9:5c:b4:e5:f5:2b:1f:9a:a8:04:91:e2:79:f9:95:
f3:83:6c:8d:9c:35:c4:4e:ba:1b:61:68:2b:17:58:
a4:cd:11:e3:7b:bc:28:f6:69:0e:5d:4a:82:93:bf:
fa:51:dd:cd:05:ed:30:ed:96:0b:ab:84:ad:6c:e4:
49:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:22:F7:C9:B9:30:1C:73:3A:C3:98:1D:28:D8:07:6A:1D:16:06:60
X509v3 Authority Key Identifier:
keyid:87:41:40:15:1C:8D:8D:56:B6:AF:53:23:9D:29:02:1E:DD:CD:8A:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h0FAFRyNjVa2r1MjnSkCHt3Nilo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e5bf20-86c3-4d3f-93d3-20397e66448a/1/h0FAFRyNjVa2r1MjnSkCHt3Nilo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/e5bf20-86c3-4d3f-93d3-20397e66448a/1/h0FAFRyNjVa2r1MjnSkCHt3Nilo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:03:a0:6d:05:41:db:fe:20:77:50:00:88:78:04:9c:56:f5:
c2:90:6d:b2:72:bc:a9:ab:33:85:f1:3b:99:07:71:e2:c5:c1:
00:9b:32:3d:36:75:d8:53:cf:67:12:b6:33:04:00:09:3b:0c:
0c:0c:ae:0f:8f:16:3f:17:a1:b0:3c:94:0c:ec:7f:8d:c3:6c:
cd:93:88:04:a5:56:2f:77:2a:9b:8e:e8:24:a4:c0:21:97:68:
87:76:28:7e:41:ab:15:77:64:93:2c:c1:47:4b:69:48:aa:03:
ba:38:e5:a7:b0:12:28:9f:1c:df:bc:68:48:86:1f:ee:7a:04:
92:e7:38:2b:ac:e4:a6:79:9a:00:b0:f4:15:36:2c:7f:49:53:
29:5c:f3:72:9c:30:b7:d9:19:ea:15:ce:ac:0f:f6:b6:6d:02:
f5:e9:ed:5a:b2:4e:eb:12:61:2e:7a:98:77:fb:7d:f6:e6:3c:
ee:71:b4:a5:cb:ac:e7:a1:48:37:7e:8b:d7:4d:14:d2:26:af:
8e:1b:2e:c2:53:c8:0d:1f:ec:f3:ff:87:52:97:9a:6d:8c:9a:
5e:27:d4:78:00:0c:1d:14:2d:71:14:28:86:46:5c:79:4f:78:
08:9b:28:19:6b:fc:e5:66:fa:29:32:ca:68:59:ee:f8:bf:03:
16:02:c3:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:44:41 2026 by rpki-client