Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
File: RHxS2B7cEklkSteUvgKK-Q4CShY.mft (raw, json)
Hash identifier: OgwYqwvJYhtT0UnGPGw5m8bWuTjaOUJfKULZc/ieSkU=
Subject key identifier: 4F:DB:3D:E7:B9:32:EC:D5:5B:BF:AC:F6:E5:39:60:81:D4:1A:D0:51
Authority key identifier: 44:7C:52:D8:1E:DC:12:49:64:4A:D7:94:BE:02:8A:F9:0E:02:4A:16
Certificate issuer: /CN=447c52d81edc1249644ad794be028af90e024a16
Certificate serial: 019D273AA9C85C0794783D84C0CCBDAB3DF2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
Manifest number: 0C32
Signing time: Wed 25 Mar 2026 23:00:49 +0000
Manifest this update: Wed 25 Mar 2026 23:00:49 +0000
Manifest next update: Thu 26 Mar 2026 23:00:49 +0000
Files and hashes: 1: RHxS2B7cEklkSteUvgKK-Q4CShY.crl (hash: xGP9Lb+mTZQhAUSAjTmn/Z/eAO/eNBokajgcQwXCrN8=)
2: h365B8J9B4DFbAHHt2ZmHfhJ99c.roa (hash: VWLHq5YqZtdAEyTbF2keQuk4CUJ4I0RVEyzvXX4IBXI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:a9:c8:5c:07:94:78:3d:84:c0:cc:bd:ab:3d:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=447c52d81edc1249644ad794be028af90e024a16
Validity
Not Before: Mar 25 23:00:49 2026 GMT
Not After : Mar 26 23:00:49 2026 GMT
Subject: CN=4fdb3de7b932ecd55bbfacf6e5396081d41ad051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:66:31:fc:b0:7a:62:f4:04:32:0b:03:ab:4f:
86:8f:81:a4:3f:14:a4:85:23:b7:0b:5d:a5:15:fd:
0a:75:5b:65:57:8f:1f:9e:10:8b:c1:49:de:ff:64:
5f:35:02:35:3f:19:80:3b:3b:0b:38:9d:da:27:fd:
e9:a2:f5:5c:b9:ae:fe:84:31:f7:d9:05:81:d9:7c:
ef:69:54:8e:d0:c8:79:05:88:03:45:7e:60:db:74:
37:44:59:80:a7:48:1f:65:eb:aa:02:0e:03:15:4a:
d9:3f:a2:ba:44:c3:60:28:f0:77:d0:c4:fc:70:be:
7d:4b:fa:47:8d:1b:a4:c1:95:f5:56:f3:fe:fe:f6:
bc:2f:18:4d:76:67:db:20:b6:34:2d:16:f0:c5:3a:
54:ef:22:99:b9:00:7f:90:1d:0b:5b:78:a4:f8:d5:
5e:35:e5:2c:57:21:f4:4e:66:49:1a:67:4d:d4:c9:
a0:71:f7:33:5f:be:36:ea:ef:43:2c:ee:3f:eb:87:
d0:fc:d5:2d:54:fa:e4:ab:b8:f3:3d:cb:69:d1:40:
00:0a:b6:12:af:8e:bc:b5:91:3d:21:da:1e:08:c4:
68:be:70:b9:9a:64:89:ea:d4:30:24:1b:d4:8a:b3:
ed:f6:17:6b:d4:ff:45:b3:50:d8:8b:d4:8c:6b:c2:
3d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:DB:3D:E7:B9:32:EC:D5:5B:BF:AC:F6:E5:39:60:81:D4:1A:D0:51
X509v3 Authority Key Identifier:
keyid:44:7C:52:D8:1E:DC:12:49:64:4A:D7:94:BE:02:8A:F9:0E:02:4A:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHxS2B7cEklkSteUvgKK-Q4CShY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/761b17-6cb5-47fd-8c4f-efa6789fd972/1/RHxS2B7cEklkSteUvgKK-Q4CShY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:85:1d:d0:b5:77:2e:54:bf:bd:31:9c:99:33:94:2c:23:a5:
bd:a3:ed:86:35:92:68:55:7b:f3:41:01:08:f8:2e:23:4c:dc:
6a:1b:ee:00:74:53:a5:c7:78:2b:af:3f:3a:e8:9c:1b:e7:73:
62:38:13:1a:8e:42:8c:75:eb:fe:17:f3:bc:97:45:63:87:7f:
fb:cc:c1:29:4e:2f:64:10:c6:20:c5:3c:44:f7:db:0c:d7:a0:
df:ca:3b:39:29:c3:04:ba:e5:d3:ff:83:3b:24:dd:f5:ca:77:
f2:ae:9f:09:13:9d:c2:35:c1:84:f2:52:9a:54:21:65:cc:a3:
c4:61:4e:af:62:b3:34:19:e6:05:3c:c6:e7:7c:74:8b:8f:d6:
30:cd:c5:bc:7a:25:a4:1e:04:af:e8:4b:76:9b:29:38:53:fb:
f7:8a:55:c2:0d:70:91:55:19:1c:cf:0f:ba:09:16:10:9f:d1:
db:14:e3:c9:41:96:40:8c:85:2c:dc:35:0a:0f:de:fe:af:c0:
5a:ac:0c:24:f8:ac:eb:96:74:45:1b:f7:ae:06:ef:95:81:06:
72:57:eb:f5:9b:12:dd:ba:09:b9:c7:47:44:85:32:22:e1:8e:
c9:bc:86:4c:b3:11:64:e0:35:46:ff:f5:28:08:e1:c9:9d:9b:
b4:02:77:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:58:47 2026 by rpki-client