Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
File: p2i77FqeEb-9rthKqNOqzaKYifk.mft (raw, json)
Hash identifier: kUIpEo/xd3DNujrS5DU8SUgzEBSDOmbMuGcGVMR9NZA=
Subject key identifier: EB:6E:C5:1D:7E:CC:06:29:49:89:14:A7:38:E1:B2:AC:7D:20:F0:F0
Authority key identifier: A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
Certificate issuer: /CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Certificate serial: 019D27E057F7DAF3F807ED817D28FB23AEDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 02:01:47 +0000
Manifest this update: Thu 26 Mar 2026 02:01:47 +0000
Manifest next update: Fri 27 Mar 2026 02:01:47 +0000
Files and hashes: 1: YwiBk7F0B614LD9wQoEFnkWeQjs.roa (hash: mvD8mcgS8Z/u8tn955UOEASMu8p9nleqgNicn8XmXOw=)
2: p2i77FqeEb-9rthKqNOqzaKYifk.crl (hash: cgZnNODQhsdzZp3iBWuLM8YVd9HpNCg70kWlNQKjQbk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:01:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:57:f7:da:f3:f8:07:ed:81:7d:28:fb:23:ae:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a768bbec5a9e11bfbdaed84aa8d3aacda29889f9
Validity
Not Before: Mar 26 02:01:47 2026 GMT
Not After : Mar 27 02:01:47 2026 GMT
Subject: CN=eb6ec51d7ecc0629498914a738e1b2ac7d20f0f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e5:f9:ff:74:96:fb:11:df:76:cb:6e:01:51:
fe:9e:2b:16:1f:fe:ff:62:31:4b:a3:de:b3:83:3d:
c6:a2:75:39:5d:c2:f9:16:18:8d:20:99:cf:c3:6f:
43:b4:f4:fa:81:f1:fc:37:d2:03:e2:70:52:03:00:
b0:f5:fe:ed:bb:fd:8b:04:b6:91:3d:0f:d2:cb:b8:
2e:c8:23:5c:2b:fd:0a:18:e2:b1:5c:76:4d:35:aa:
80:22:96:c5:a4:8a:55:7b:60:74:4d:b7:f1:64:12:
8b:c2:8c:72:67:4d:3f:b1:7c:3b:ae:d5:60:31:14:
4b:a6:6c:8a:f9:7b:ea:ad:9a:16:fc:45:49:3c:2e:
58:c6:22:d9:f9:dd:a0:af:84:fa:34:bb:47:50:4e:
82:eb:75:5b:39:54:a1:39:04:bc:7d:c5:12:97:22:
0d:16:ab:bc:61:11:41:03:95:29:00:40:38:c7:dd:
93:62:66:a2:8a:42:81:a8:3e:6d:2f:b3:fb:0f:2a:
24:96:ba:0f:56:9e:ee:e7:31:a0:fa:e7:56:02:f0:
db:57:f3:ae:3d:3b:a1:d2:c5:dc:8b:0d:3a:ee:98:
91:94:79:4b:f4:95:fb:db:c9:f1:cb:3a:7f:40:6a:
37:5d:a4:b6:b3:b2:0e:4c:1e:6b:7d:f5:8f:09:75:
fd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:6E:C5:1D:7E:CC:06:29:49:89:14:A7:38:E1:B2:AC:7D:20:F0:F0
X509v3 Authority Key Identifier:
keyid:A7:68:BB:EC:5A:9E:11:BF:BD:AE:D8:4A:A8:D3:AA:CD:A2:98:89:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p2i77FqeEb-9rthKqNOqzaKYifk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/eac1f4-ace1-4ce1-a181-cfcabb19f989/1/p2i77FqeEb-9rthKqNOqzaKYifk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:5b:e1:e3:43:7e:a2:1d:a1:da:d5:8f:a6:9f:f6:6c:c0:ac:
42:bf:d2:eb:5b:89:ea:e5:da:ff:32:e9:66:fc:7b:93:15:c4:
e2:f0:71:68:e9:98:8e:d7:cd:d2:4f:c0:37:71:0f:73:77:a3:
52:16:ff:8e:91:7a:ef:49:c8:b5:c3:bb:cb:ac:c4:7a:c8:3c:
f6:47:5a:90:7b:dd:22:be:be:f8:95:6f:3e:c9:4b:eb:e6:31:
d3:25:fd:87:da:a1:b5:50:dc:2b:78:bb:fb:46:ac:23:f6:ae:
4a:33:3e:ce:a4:e6:d9:5f:c4:2c:48:05:53:11:14:37:10:7a:
c4:7c:38:cd:e0:d0:54:d3:97:78:68:c1:ae:61:f5:54:24:09:
82:5a:d5:f5:9a:10:21:61:c8:d7:67:05:d8:31:f1:5a:fe:a0:
e2:34:e3:4c:74:c1:19:67:7f:d4:1a:c8:01:96:89:aa:9b:8c:
b2:33:e3:af:00:88:8d:2b:bd:00:8d:47:57:ae:fa:dd:7f:98:
56:7d:4e:3e:2c:9a:6c:22:f1:01:69:90:d9:bb:06:90:e5:26:
01:45:39:16:6e:0f:1f:26:65:2e:31:79:c2:f6:ca:a6:b9:f1:
d4:cb:6a:e0:57:47:a4:6a:45:a9:53:7c:14:07:b1:f0:5d:31:
d5:f1:21:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:25:45 2026 by rpki-client