Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: sy396dOHnY9oF9LlSvqTVTrLGrGGwIMDaTQqArwPsH8=
Subject key identifier: 3F:F5:65:4D:8C:17:93:E8:C2:C0:0A:FC:7F:84:76:7B:EC:40:F5:D3
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 019D273B0AC26AC3E1CAA8A155BD28B593A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0D3A
Signing time: Wed 25 Mar 2026 23:01:13 +0000
Manifest this update: Wed 25 Mar 2026 23:01:13 +0000
Manifest next update: Thu 26 Mar 2026 23:01:13 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: S+XizJKG4pqnWyzDXdJns7Oalk+swZxCn2METVzZVh8=)
2: ptikDTRhjTNxZI8dkI54eJbGFTA.roa (hash: 3SdSmJMo+FOvr1IMdnku5tDe7K6GsQTnPIBl17tgA08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:0a:c2:6a:c3:e1:ca:a8:a1:55:bd:28:b5:93:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: Mar 25 23:01:13 2026 GMT
Not After : Mar 26 23:01:13 2026 GMT
Subject: CN=3ff5654d8c1793e8c2c00afc7f84767bec40f5d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:57:8e:05:51:8c:b8:4e:ab:72:8f:69:10:5d:
d6:16:56:0c:21:a1:5d:89:51:0d:44:bd:33:84:d2:
6c:55:d4:d7:57:a0:07:81:b1:fc:54:92:3e:74:69:
86:f8:70:16:25:bf:b1:87:73:46:f3:fb:96:2d:4c:
5a:2c:0a:09:59:8f:b6:c1:84:51:23:b0:12:21:38:
79:b8:19:31:72:79:26:23:5b:cf:3e:a5:1d:e9:0e:
3e:9e:0e:c3:1c:0a:3c:14:af:7e:36:5d:4c:d1:0f:
f5:f9:0c:11:a4:96:1a:3e:82:a5:00:ed:4f:39:e8:
40:85:1c:e4:77:98:a0:eb:d5:46:63:c8:1c:71:a2:
33:56:b6:5b:61:5c:1f:5e:9f:fb:84:6a:17:9f:03:
f9:bd:74:4f:86:c5:79:a8:3f:d9:27:5b:a1:de:c9:
88:2e:5d:33:c5:44:24:83:4e:36:83:da:65:a7:0d:
f0:f4:83:fa:81:59:9e:24:f9:b6:95:fc:10:b1:8a:
09:33:2a:24:cc:a0:09:ea:2a:d4:77:5c:fc:80:42:
79:a8:5c:f1:15:b1:b3:82:3e:16:bf:02:6f:0a:6e:
8e:8e:73:ed:52:c7:37:9c:f9:19:a9:d8:3d:8c:46:
d4:53:04:28:d8:af:d9:3c:6f:54:89:8b:04:f4:3a:
43:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:F5:65:4D:8C:17:93:E8:C2:C0:0A:FC:7F:84:76:7B:EC:40:F5:D3
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:c8:8f:ac:e1:77:98:5c:df:3a:8d:7c:cf:ca:0f:ed:e4:43:
84:fd:53:25:d3:83:52:bd:23:39:b0:99:7e:f0:13:9e:c5:7e:
e2:61:a6:2c:c4:eb:7f:5d:db:38:b4:a0:2d:1d:7a:02:91:af:
7c:18:96:4f:d9:0c:14:ca:10:8b:18:63:f5:42:92:8b:77:96:
f9:93:03:ef:a6:e5:c1:7a:61:e7:7c:e2:46:e3:b8:df:a6:ea:
88:3a:e1:30:2e:97:32:ae:4e:5c:1a:fe:ae:f6:d3:cc:80:20:
c9:e7:1d:e0:77:19:94:c4:d0:0c:3f:a1:bb:46:6e:a7:21:3c:
0a:4e:80:7c:d6:c2:39:3b:08:a5:4e:cd:1b:cd:67:ab:cc:11:
87:48:57:56:c3:09:4b:ce:46:4f:82:39:d9:7e:5a:93:17:0d:
91:77:66:66:b8:a4:e4:46:27:50:20:4b:7b:8a:8b:e6:0a:02:
cd:4c:dc:63:8e:bb:96:0a:ac:61:b1:04:d0:45:0b:a4:45:5f:
30:5a:c3:1b:2d:a6:11:3a:62:31:68:ff:c3:89:fc:21:ac:ac:
97:5d:a8:ac:6a:a0:55:c2:c5:75:84:81:97:91:a8:4d:bc:be:
f7:6e:00:9a:d7:22:1f:30:69:dd:57:71:63:16:58:28:e4:f0:
f0:53:16:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:07 2026 by rpki-client