Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json)
Hash identifier: TExEMUL4WZ9HaJJH7Ru9nE7fZv+jUUG88yLP58Iwl3c=
Subject key identifier: A0:50:7E:9C:5F:C8:DE:5E:60:31:AB:6A:33:CE:8E:19:7B:FB:02:0B
Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d
Certificate serial: 019CAEA2D7322B609AA84E9C28B882C743A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
Manifest number: 0B06
Signing time: Mon 02 Mar 2026 13:00:33 +0000
Manifest this update: Mon 02 Mar 2026 13:00:33 +0000
Manifest next update: Tue 03 Mar 2026 13:00:33 +0000
Files and hashes: 1: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: pmS6INu7l7qikGo25xDxE5TLdj+uqr2VaGZM4bAMhFM=)
2: hOCqHr0-rwjOn6wU8z8C-ggKXAo.roa (hash: aczilg5expuAqkln7fFu+xj4eV4HRQvyQA+wDQF1/60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a2:d7:32:2b:60:9a:a8:4e:9c:28:b8:82:c7:43:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d
Validity
Not Before: Mar 2 13:00:33 2026 GMT
Not After : Mar 3 13:00:33 2026 GMT
Subject: CN=a0507e9c5fc8de5e6031ab6a33ce8e197bfb020b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:3c:7b:d4:86:03:e5:fe:be:61:3b:bd:da:cb:
78:db:31:cb:12:26:2f:ec:fe:90:76:cb:46:d4:da:
67:68:6a:a7:cb:a7:16:02:72:5c:79:12:c4:50:f4:
68:aa:b0:22:39:00:71:31:16:5c:bd:bb:0b:4c:78:
15:a4:cb:79:b9:e3:75:df:8b:c7:50:01:1e:0e:34:
74:7a:f5:a4:7d:70:3a:a3:a9:98:92:49:45:84:d0:
ed:48:85:6c:bf:c8:b0:8b:ed:9c:21:da:8e:9c:cb:
5d:86:00:07:fe:09:d5:6e:56:49:c9:c3:f7:49:d4:
b5:d3:ff:68:68:e5:7c:58:c0:1c:53:5e:0f:05:ab:
13:ce:63:36:d4:a6:dd:80:76:ae:52:36:9c:b8:c3:
ee:5d:17:b1:08:c6:30:34:b5:ac:28:3f:83:83:31:
97:a2:f1:fb:b2:0b:38:5a:09:00:53:e0:ff:ab:b9:
97:08:ef:08:36:1c:c5:62:6e:b1:a3:ea:42:a6:7f:
bb:97:28:c7:81:d0:47:ee:1c:0d:eb:77:cd:8f:bf:
f8:54:f4:62:53:12:87:7f:c4:bd:2a:b0:f3:0a:15:
05:1a:fb:7a:67:90:90:c3:bd:62:76:df:37:35:aa:
71:3e:30:0a:9c:16:c4:cd:5d:2b:67:19:ff:3b:2b:
2c:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:50:7E:9C:5F:C8:DE:5E:60:31:AB:6A:33:CE:8E:19:7B:FB:02:0B
X509v3 Authority Key Identifier:
keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:a4:c4:25:f6:f1:52:9e:ca:0d:c8:8a:d4:9c:0b:46:38:70:
81:db:cf:8c:f7:fd:80:44:00:50:eb:dc:24:51:75:2e:97:03:
eb:79:47:ea:c4:79:a3:06:f5:e7:64:a1:42:b0:69:38:d3:36:
57:98:65:e6:30:61:1f:76:68:93:c0:72:d9:1d:a1:80:b5:97:
d6:31:e7:43:1d:cf:18:f8:15:0a:1c:2f:b5:3d:37:d5:db:a2:
de:18:d2:ad:b5:52:1e:09:47:8b:f6:2f:86:98:37:4c:55:96:
52:75:44:2b:8e:d3:b0:c6:f1:d1:d3:33:e6:84:8c:c1:1b:11:
84:a7:95:97:56:0d:92:a5:dd:f0:0d:bc:e2:d1:0d:b4:87:ed:
4f:85:48:ac:b2:e4:c6:16:f7:6f:b2:1d:07:2e:34:ba:d9:4f:
14:2f:ac:eb:f8:cd:cf:84:a7:2e:f3:f2:65:df:96:34:16:b7:
e9:07:8f:1e:ea:a9:1b:9c:c8:1d:83:1b:d9:38:bd:7f:0b:0c:
3b:de:68:4b:78:6b:4b:d0:38:57:af:15:16:bf:73:15:11:77:
b9:cd:4c:54:ee:32:f0:5a:19:82:0a:f8:cb:27:2d:14:bf:56:
b1:3a:5f:1c:75:94:b4:c1:48:49:2a:a7:22:68:88:19:b8:0e:
72:27:45:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:35:54 2026 by rpki-client