Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
File: L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft (raw, json)
Hash identifier: tjN1lUXHfLUzKK3r6KV57Vu/Wma2M9UCfDAOWwhUzR0=
Subject key identifier: 3C:C5:2D:85:F2:DE:B3:B1:DE:DC:AD:8E:E6:CF:D0:EE:B5:5B:6D:92
Authority key identifier: 2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
Certificate issuer: /CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Certificate serial: 019D29CE86039DF690045CD09ABB3E314702
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 11:01:33 +0000
Manifest this update: Thu 26 Mar 2026 11:01:33 +0000
Manifest next update: Fri 27 Mar 2026 11:01:33 +0000
Files and hashes: 1: BcdnvgFk_BPjfJay48B0cMIpc0w.roa (hash: XfisUF3xoeDRYkIvVZku+7kk1qU1c+uuDUdRONEZgfE=)
2: L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl (hash: A9AHoZaf/CbHL04FtJA5gCRgUiwTmfqiRkwI6yJw2BQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:86:03:9d:f6:90:04:5c:d0:9a:bb:3e:31:47:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2fcc934652842b7bd9a7cec002c77c1ca13f1064
Validity
Not Before: Mar 26 11:01:33 2026 GMT
Not After : Mar 27 11:01:33 2026 GMT
Subject: CN=3cc52d85f2deb3b1dedcad8ee6cfd0eeb55b6d92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c9:dc:d1:46:2c:f4:1b:95:10:3e:01:b7:d3:
63:d9:ed:f6:0e:33:18:8d:04:d3:4c:d0:64:67:53:
06:7c:23:58:29:07:fe:0f:1c:8f:c9:f7:f7:aa:a6:
99:03:e7:56:f5:2e:77:80:3d:19:b7:cf:a2:18:13:
48:36:e1:dc:06:40:26:fd:c4:6b:a7:63:bb:23:66:
c0:91:d2:51:b5:67:f7:e4:5a:75:e5:7e:6a:11:51:
d3:84:c9:d3:8a:18:de:a0:16:ff:f7:a2:c7:b6:63:
0e:cc:56:61:43:85:83:2c:21:e0:b3:cf:b4:74:c2:
62:82:b8:e9:04:c5:4e:cd:79:97:01:ba:c4:2e:b8:
7d:85:15:9c:9d:c8:e4:3b:ea:65:85:2d:29:62:71:
57:51:46:5c:c8:11:bd:b7:3c:94:e6:ea:91:59:45:
b7:26:c3:7d:6a:13:af:f5:5d:2c:f8:a1:23:76:a8:
3e:79:ce:04:53:a0:f6:f4:af:2d:1c:c1:94:56:75:
8f:0c:2f:30:f3:aa:47:3e:24:22:29:b9:eb:db:7c:
48:a2:6f:5a:63:e8:c5:70:ae:6b:73:5c:3c:d9:de:
64:ea:65:35:73:6d:48:1d:26:80:6a:1e:95:81:1f:
14:43:2d:51:8f:ed:c3:0f:e8:f1:fe:0c:10:eb:0f:
10:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:C5:2D:85:F2:DE:B3:B1:DE:DC:AD:8E:E6:CF:D0:EE:B5:5B:6D:92
X509v3 Authority Key Identifier:
keyid:2F:CC:93:46:52:84:2B:7B:D9:A7:CE:C0:02:C7:7C:1C:A1:3F:10:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L8yTRlKEK3vZp87AAsd8HKE_EGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/bb70d3-632e-4eff-84ff-6dcf7c3849bc/1/L8yTRlKEK3vZp87AAsd8HKE_EGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:47:28:70:77:f7:f2:d8:2b:f1:0e:d1:5a:bb:fa:4c:73:43:
55:52:a4:0d:d0:9e:e5:84:83:12:5e:0e:de:e8:16:70:bf:86:
2a:f3:ed:d8:02:82:53:cd:1c:fb:4d:b3:6e:57:fd:f4:08:6f:
34:5a:1b:09:d4:71:b4:e0:a5:77:3b:26:b0:82:fc:13:33:9d:
7e:a9:84:40:1e:23:95:c0:a8:a1:7b:0f:40:de:1c:cc:b4:13:
b4:8c:3d:42:99:a9:55:35:df:f3:32:23:c1:fd:41:52:43:06:
66:b2:c3:b8:cb:75:8e:aa:73:dc:a3:2d:0f:6d:8f:c8:ac:6c:
b5:29:96:e5:e4:b4:aa:6a:46:e2:f3:95:72:2c:ca:a7:61:aa:
e7:3a:f8:23:8e:44:87:1e:b8:bb:d8:30:1e:c0:f3:aa:0e:a7:
9d:b8:a5:94:a1:12:0a:20:73:9f:61:45:fe:d4:d3:25:ce:9f:
bd:d1:ee:9a:23:6b:f2:5f:dd:81:a0:ee:ab:69:23:99:e3:e8:
91:3d:db:e7:a5:86:06:cf:4a:4a:c2:47:9b:e5:67:1a:d1:2d:
6c:e8:aa:a9:ae:0b:f9:91:06:6b:31:1d:13:a9:bb:98:21:8d:
a8:c9:f4:85:19:e4:2f:0b:d1:80:95:3b:bc:99:96:fa:a3:8e:
b2:f0:5a:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:21:30 2026 by rpki-client