Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: pKJubKnoWKPjaQavvNGxqo6uOMiJEkOx/p3Nd7dJycY=
Subject key identifier: B5:5C:6C:BC:98:A3:ED:B3:99:01:31:D0:2E:6C:D4:8F:32:BB:AB:1C
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 019CAA8FED8BAA8873E02CC64C85B8787662
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 04EF
Signing time: Sun 01 Mar 2026 18:01:24 +0000
Manifest this update: Sun 01 Mar 2026 18:01:24 +0000
Manifest next update: Mon 02 Mar 2026 18:01:24 +0000
Files and hashes: 1: WmDNL-b0WkRscYpfEnZaGcaTcFM.roa (hash: vFHl+C0H692uAua09x2J70xulx0PssETV1wVHPp2xHA=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: eJmtijVfPX2m51NtIYs8H7NrUt4UzvlFkEnxVT+Q9yM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:ed:8b:aa:88:73:e0:2c:c6:4c:85:b8:78:76:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Mar 1 18:01:24 2026 GMT
Not After : Mar 2 18:01:24 2026 GMT
Subject: CN=b55c6cbc98a3edb3990131d02e6cd48f32bbab1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:79:0a:16:d5:c2:df:bf:b3:c3:e8:89:5a:c9:
6e:2d:30:df:be:00:ea:a1:5e:82:0f:9f:47:32:84:
66:31:7e:e8:a4:8a:54:c8:18:57:22:01:33:78:37:
a4:ff:64:fd:89:da:da:47:0b:16:b4:c1:ab:16:b8:
76:4b:de:d4:f9:1f:3e:93:70:6b:d7:af:ac:36:84:
ac:c1:e0:63:7a:19:d2:4b:2c:b7:96:a4:0c:d3:1e:
dd:9e:79:0b:ea:79:5a:24:c1:df:bf:d6:9d:e0:d6:
90:ff:ce:5b:4a:fd:f7:00:65:d4:ec:ea:40:85:a9:
a9:ae:3e:eb:3e:9b:78:c2:8d:44:31:1a:fc:06:a5:
25:11:90:3d:f6:08:4e:80:2c:60:88:d9:04:3e:85:
15:bd:6a:1e:38:9f:23:20:5f:a2:1a:ef:ed:f0:d7:
a4:e1:61:cf:4c:04:da:e2:69:9c:ee:b1:2d:79:8d:
87:7a:a5:f6:fc:17:18:95:2e:a5:6a:5d:d9:96:2e:
61:82:16:cc:85:88:a5:68:08:1b:73:b4:0b:d8:54:
73:f7:6d:6e:e6:47:df:db:db:ec:25:e5:87:8f:f0:
bc:c2:73:a4:11:6a:87:22:15:35:ba:84:ad:09:e9:
b0:46:1c:5b:93:a1:7b:0e:28:86:81:95:1d:c1:0d:
ab:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5C:6C:BC:98:A3:ED:B3:99:01:31:D0:2E:6C:D4:8F:32:BB:AB:1C
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:47:15:60:31:1f:bc:65:b8:c0:53:74:9e:31:ac:23:fd:99:
0a:8f:15:05:6c:8b:ec:17:31:bb:9c:89:d4:03:c3:66:8e:4b:
6b:44:4c:b9:5f:46:7e:11:b1:03:1b:c3:ec:4c:3a:c4:3c:7c:
bf:19:ee:f9:68:70:2e:f3:09:9c:d4:00:eb:1f:83:f7:ee:46:
6e:eb:9e:bb:99:14:77:7a:1c:55:03:ec:5c:db:e7:a8:42:be:
3c:65:08:eb:1f:e1:3b:44:80:cc:17:1f:0e:9c:57:a2:69:c1:
ae:86:eb:37:05:44:8f:29:86:07:a8:e9:05:f0:c5:b2:f4:b5:
aa:94:28:b1:a7:f7:d2:f7:8b:fb:28:32:05:53:81:06:ff:0b:
da:c7:73:d6:35:fd:7e:98:37:bd:6c:da:4d:32:0f:6d:d3:5f:
5a:09:ac:d0:8a:be:eb:4c:e9:95:00:f2:c7:17:9b:d1:b8:c0:
7b:6f:23:a6:ec:e7:96:99:87:44:18:b7:88:ef:a9:e0:5a:1d:
6f:18:4c:27:04:0c:35:df:05:e7:a5:17:0c:4b:f5:5a:47:5e:
85:6b:05:89:18:cd:f3:52:14:dc:e5:c3:35:3a:e6:e2:55:e9:
5f:09:44:eb:27:9b:9d:87:bf:6e:6c:73:f5:b0:60:50:47:ef:
d6:64:f9:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:50:27 2026 by rpki-client