Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
File: 8KEScQQ06Frl_m-_Qedr3fk4GM8.mft (raw, json)
Hash identifier: 9x0+Dhw+LnKIggZbOiItshbR4ji1i0njvMVbPjjmiaA=
Subject key identifier: 9A:46:FF:18:96:EB:C6:EE:A8:8D:7E:2D:D8:74:D7:55:B5:FC:AD:B2
Authority key identifier: F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
Certificate issuer: /CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Certificate serial: 019D34BEF033D548BB563F6C3CBC4C048B3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
Manifest number: 0706
Signing time: Sat 28 Mar 2026 14:00:21 +0000
Manifest this update: Sat 28 Mar 2026 14:00:21 +0000
Manifest next update: Sun 29 Mar 2026 14:00:21 +0000
Files and hashes: 1: 8KEScQQ06Frl_m-_Qedr3fk4GM8.crl (hash: r3zho8NtN55nFUpq0aIYH5NEfKWxpFQJlg4jd3+3uaU=)
2: nwAF_VA7b5QLJBmqxWMgeg05ev8.roa (hash: c/NjZkh9geRKVWgr/sc352gf8HkePyWjE1VddV8tbrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:be:f0:33:d5:48:bb:56:3f:6c:3c:bc:4c:04:8b:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0a112710434e85ae5fe6fbf41e76bddf93818cf
Validity
Not Before: Mar 28 14:00:21 2026 GMT
Not After : Mar 29 14:00:21 2026 GMT
Subject: CN=9a46ff1896ebc6eea88d7e2dd874d755b5fcadb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:be:f5:94:86:8d:8d:47:df:f2:2f:dd:1a:0b:
12:f8:70:3a:07:71:a0:05:5c:ad:3f:93:eb:57:cd:
42:18:93:85:ed:50:d1:93:66:e0:1a:3d:69:f8:b9:
d7:89:3b:db:e4:89:a3:f8:1d:56:31:67:e5:00:ca:
d5:a4:3c:ae:dd:8c:65:6d:7d:7c:4c:9d:79:1f:83:
8f:ee:70:98:9c:39:9b:12:e2:3f:fd:2e:e6:0d:4b:
1a:bc:68:85:e7:e9:22:d9:75:68:8a:f3:63:e2:7d:
bf:00:37:83:99:21:21:02:02:51:61:f1:fa:45:bd:
8e:93:99:8e:43:f0:e5:0a:c4:09:0f:b9:3b:47:1b:
5a:0d:da:87:82:2f:ba:15:18:85:8b:1c:e5:c1:e7:
75:17:2f:0f:b6:e3:79:a9:90:3f:58:1c:f8:8d:05:
68:a2:03:55:89:db:52:1f:bc:11:bb:03:89:2c:21:
b7:32:54:f2:5c:3b:23:18:26:44:48:a8:44:ef:7e:
b9:83:02:7c:f1:5e:3e:b8:d2:ae:0b:ad:f9:0b:9d:
37:cb:ad:cc:ff:5a:41:3b:b0:7f:a9:3e:bd:dc:bb:
41:ef:06:19:14:5e:d7:1c:82:8c:41:17:24:1d:9c:
4a:e8:c7:67:e8:33:75:22:52:a7:e9:a3:d0:4f:42:
8f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:46:FF:18:96:EB:C6:EE:A8:8D:7E:2D:D8:74:D7:55:B5:FC:AD:B2
X509v3 Authority Key Identifier:
keyid:F0:A1:12:71:04:34:E8:5A:E5:FE:6F:BF:41:E7:6B:DD:F9:38:18:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8KEScQQ06Frl_m-_Qedr3fk4GM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/294a81-5237-4bf3-a05b-a88a4d094af0/1/8KEScQQ06Frl_m-_Qedr3fk4GM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:1f:2d:9c:eb:29:54:60:0e:e3:0c:ee:16:db:05:3f:3a:fe:
8b:95:5d:9d:2a:92:0d:8a:64:71:b0:8b:e8:14:cc:08:2f:94:
85:3a:ee:e6:49:f6:ea:27:78:25:a7:03:8a:e7:94:ff:58:19:
f5:39:b3:8d:37:a6:f0:b9:f6:97:39:68:e9:23:07:51:d0:6a:
3e:21:78:ac:c9:60:0d:25:30:b1:ec:8e:ea:7a:83:b6:62:b8:
62:80:c2:34:47:b2:c7:5d:db:b7:8e:cc:bb:71:f6:59:de:fd:
b6:6a:15:e9:51:5b:77:be:d1:2d:ab:07:70:fd:22:f8:88:8d:
b6:e6:cd:d2:a1:0a:11:cd:f5:32:03:d8:ed:01:d8:cb:2a:90:
5b:a0:2b:90:79:d7:69:0c:aa:a3:57:9d:6d:36:79:31:d4:e3:
9e:e6:0f:bf:ff:9b:2b:01:bd:7a:1d:49:eb:34:8f:db:d2:4e:
c8:02:47:5f:98:2b:d3:7c:ad:51:92:6c:20:ec:5e:b4:03:5e:
1c:a9:e0:60:14:f7:e5:34:cb:5e:b2:dc:b3:05:c4:dd:e9:a9:
13:11:72:4c:2b:8a:b7:2c:6f:60:03:6c:76:64:97:bc:df:f2:
d7:ad:ee:38:f8:44:6c:66:d8:56:52:8e:a7:b4:22:66:50:78:
ba:ec:d2:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:02 2026 by rpki-client