Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
File: S2jh-6e0SntmYjayElPX1jYtDYM.mft (raw, json)
Hash identifier: ADeR5BuLE25uoQEyJf2JyJHE3A4WPPn/rSlyRC35LKA=
Subject key identifier: DF:59:FA:0E:F3:10:28:D0:24:FD:E6:25:92:91:E4:6C:38:A5:93:E5
Authority key identifier: 4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
Certificate issuer: /CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Certificate serial: 019CAB3417FCBE0D9611FD126D723CB2563D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
Manifest number: 058B
Signing time: Sun 01 Mar 2026 21:00:43 +0000
Manifest this update: Sun 01 Mar 2026 21:00:43 +0000
Manifest next update: Mon 02 Mar 2026 21:00:43 +0000
Files and hashes: 1: NuG7e-eaeYmgEKzW-gA4hm0E3yg.roa (hash: jBGdM1PIKUvp7PqxpDnR+tYU0/z5UBNUNem3R8n/8fI=)
2: S2jh-6e0SntmYjayElPX1jYtDYM.crl (hash: wRulxFyfAy9izesNCcljeA/QrH56pUPUsulgTsE+acQ=)
3: cYnE7FavrDSt3SrEYya63HS7_dI.roa (hash: KGEvNenXcCeg3TCO3nqemstjyExiwPsWFQTV1a5VNaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:17:fc:be:0d:96:11:fd:12:6d:72:3c:b2:56:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Validity
Not Before: Mar 1 21:00:43 2026 GMT
Not After : Mar 2 21:00:43 2026 GMT
Subject: CN=df59fa0ef31028d024fde6259291e46c38a593e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:1d:4b:b0:2e:7a:75:f7:d5:42:4a:f4:af:7e:
ac:48:ce:fd:5e:b1:55:6c:97:4d:e2:77:25:a0:7a:
38:9a:cf:2b:9c:e2:1e:e2:11:cd:ed:bf:ab:08:db:
68:c9:51:c3:59:8f:61:a1:18:6d:5e:cd:3e:22:c5:
8c:99:a8:9d:4e:a5:7f:d1:62:84:93:cd:c3:53:32:
94:69:4c:3f:fd:2f:8c:00:33:23:6e:06:44:5e:14:
97:5f:29:df:33:62:4a:f4:4f:69:47:ca:f0:eb:5b:
0b:56:d5:45:d9:54:99:cd:3e:61:9e:22:11:0e:60:
82:4a:53:8c:fb:0d:20:68:cc:7d:c2:98:99:83:67:
ab:64:34:fd:84:03:10:c5:4a:65:cf:e3:6f:cb:69:
7a:88:de:c8:1e:32:9f:a8:f3:4a:d1:60:e1:f5:d6:
55:61:6a:e5:f9:23:28:60:24:c6:c5:f8:7c:b4:1b:
a2:29:4f:c8:bc:37:86:78:88:87:e4:b5:dc:32:3a:
f3:dd:36:51:f8:bd:77:91:a4:70:1a:9b:d8:b6:ea:
8d:a4:14:a4:55:20:9a:79:c0:1e:a0:68:5b:f6:93:
db:2f:8b:e2:ee:b7:c2:57:1b:a4:47:ab:37:66:69:
64:39:4b:28:65:ad:b9:28:ed:c0:10:64:a2:9e:f9:
d7:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:59:FA:0E:F3:10:28:D0:24:FD:E6:25:92:91:E4:6C:38:A5:93:E5
X509v3 Authority Key Identifier:
keyid:4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:2c:b7:de:f6:97:fd:a2:68:99:1f:76:08:b0:14:2e:87:b9:
32:90:35:9a:ce:30:8e:92:e5:ca:17:90:c5:7a:7a:92:67:32:
d0:7a:57:b6:af:51:2d:d6:05:02:b0:1b:a2:a2:53:1e:67:c4:
9b:11:5f:72:ab:08:30:65:e3:5f:16:dc:60:a3:81:14:c8:78:
57:33:f4:06:90:bc:01:45:ba:d7:14:e3:1e:cc:41:2e:5a:f5:
78:c2:fc:71:8c:2c:f5:2d:d7:16:e8:5e:b8:b2:42:32:11:43:
f1:64:ce:91:b9:47:34:83:91:42:b9:48:8e:16:d1:4a:25:35:
a6:ad:84:f0:15:a5:7e:93:f6:21:e1:fd:35:65:b6:73:ff:55:
4c:9e:c1:22:dc:5a:18:4a:b9:fd:a1:e2:7c:cd:08:f3:c5:ca:
52:ff:55:a9:a1:2e:f3:68:1c:c9:46:b8:35:e3:fd:8a:cc:b6:
0e:12:cd:ec:9e:9b:a5:d5:bd:10:f2:ee:74:c9:a8:51:02:87:
6e:0f:3b:47:3f:73:1f:50:e9:cf:9f:8c:bf:12:96:8d:42:22:
17:35:27:b6:3c:74:54:79:74:43:f5:57:e8:f0:ee:e5:a0:1f:
0b:2f:0b:ab:13:df:ab:68:2b:bd:8c:bf:bd:59:0e:e5:50:5b:
13:40:7c:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:37:02 2026 by rpki-client