Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
File: i70nOhRTYWFVEmDYSNdvomRGzUY.mft (raw, json)
Hash identifier: 3VMcPYhsG7gZlUbBZHIs7Mi0drd4sSAjPfOiBTuY5Hg=
Subject key identifier: B8:5F:85:1A:34:D9:83:BD:F4:06:72:80:0C:6F:E8:E2:6D:84:5E:3B
Authority key identifier: 8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
Certificate issuer: /CN=8bbd273a14536161551260d848d76fa26446cd46
Certificate serial: 019D296122264E0F319A7DF8CF23FC06E941
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
Manifest number: 0460
Signing time: Thu 26 Mar 2026 09:02:04 +0000
Manifest this update: Thu 26 Mar 2026 09:02:04 +0000
Manifest next update: Fri 27 Mar 2026 09:02:04 +0000
Files and hashes: 1: Psndu95QZf6tgKNvQkbaDhxNkYg.roa (hash: d9f4EyfJsmR2vvAcSDXuO/gBDmodHHefWdbiiIbdVEk=)
2: i70nOhRTYWFVEmDYSNdvomRGzUY.crl (hash: jdbDYi4I22+8WjtspYp43Uebcdoou2mrMgckWo1nThI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:22:26:4e:0f:31:9a:7d:f8:cf:23:fc:06:e9:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bbd273a14536161551260d848d76fa26446cd46
Validity
Not Before: Mar 26 09:02:04 2026 GMT
Not After : Mar 27 09:02:04 2026 GMT
Subject: CN=b85f851a34d983bdf40672800c6fe8e26d845e3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:95:d7:0f:54:58:8c:af:c7:31:ce:e8:93:5a:
42:dd:67:3d:74:8d:a3:de:c9:f7:fc:49:a0:15:09:
bc:22:69:37:0b:6d:28:7e:ac:58:ca:91:82:36:ed:
fd:2a:eb:54:b7:f6:61:22:33:3e:a2:64:48:1a:8c:
fb:1e:8a:e0:fa:99:8e:f5:f2:25:13:5d:24:0a:3a:
13:c4:1c:52:d3:df:22:f4:26:c5:59:9d:48:48:3c:
43:fc:63:88:ce:55:70:c1:78:0e:c6:69:75:0a:90:
3a:75:4c:38:b0:58:44:33:57:f0:a3:25:9a:7d:c5:
25:99:f5:11:07:87:f1:7c:68:7d:10:90:30:df:9d:
4e:b8:aa:6a:db:80:6e:4b:52:a5:66:98:ec:a0:4a:
7c:9e:8d:f5:ca:20:be:cf:2a:24:38:71:f9:fb:c6:
0a:78:be:f0:3b:07:06:a3:0a:99:e8:cb:dc:d0:3a:
d4:4a:07:4b:ec:a2:5d:15:80:c1:a0:2d:23:29:94:
41:ea:9a:d0:eb:f9:fc:d6:0f:55:50:47:6b:f7:7e:
8b:50:11:5c:fb:19:fc:28:c3:ce:e9:85:d6:46:aa:
94:56:9e:9d:d6:c9:00:34:f2:02:ec:20:e3:b3:c1:
e5:a1:e8:5b:f6:85:e2:ef:54:59:99:6c:5c:6e:f4:
a1:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:5F:85:1A:34:D9:83:BD:F4:06:72:80:0C:6F:E8:E2:6D:84:5E:3B
X509v3 Authority Key Identifier:
keyid:8B:BD:27:3A:14:53:61:61:55:12:60:D8:48:D7:6F:A2:64:46:CD:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i70nOhRTYWFVEmDYSNdvomRGzUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/a733f6-09ad-4f1a-a357-e162203296bb/1/i70nOhRTYWFVEmDYSNdvomRGzUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e7:87:f4:b4:d3:45:b2:8a:28:66:7d:c7:b6:2d:bd:86:35:e4:
ff:ca:08:51:77:c7:6e:d1:a9:1e:9c:0b:92:20:51:c5:41:d1:
e3:88:05:c8:d5:ff:14:d3:c3:04:48:bf:af:9f:7c:e4:53:87:
d9:3c:45:68:22:37:c9:cd:83:ff:9e:5a:1a:04:f8:d2:ac:03:
23:bb:5d:bb:fd:af:ed:8a:1c:81:d7:4f:3d:ab:44:43:52:08:
b2:d0:1f:cb:d1:f9:a3:3e:de:0b:e1:0b:3f:8b:2f:9e:d5:8d:
33:c0:c9:06:3b:99:4d:7d:d3:a2:0c:df:d9:5c:7e:ec:77:0b:
57:a1:3f:64:7f:ea:94:ed:95:29:76:e6:68:4f:8c:d3:b1:2c:
88:ae:11:fd:2a:91:9d:7c:85:e5:58:b4:1b:c9:3b:92:0c:ac:
1e:de:ac:85:d4:9a:e6:75:56:81:41:f2:44:e1:31:d9:2b:b6:
7c:9e:a2:73:96:0a:73:ee:b8:af:32:98:55:88:55:6b:69:26:
bb:7e:68:96:f5:91:95:f3:71:9a:3b:95:de:06:a9:f5:87:b3:
79:1d:a5:ff:65:30:8a:7a:3a:66:b4:52:5a:0f:eb:48:21:d3:
4e:7b:9b:d2:81:1f:ea:a2:36:14:d0:4f:63:07:28:a1:51:d1:
d0:db:7a:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 18:27:07 2026 by rpki-client