Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
File: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft (raw, json)
Hash identifier: Tbf4xhBgTtT2V2bGyA2MC7EvkFIC5qRsJvVMvMKJsBU=
Subject key identifier: 2E:2E:6A:F5:DB:AF:CF:00:39:99:C7:3A:AA:48:22:FD:11:89:41:61
Authority key identifier: B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
Certificate issuer: /CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Certificate serial: 019CABA20DB9C60DC2A94B7A263B48EE3CBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
Manifest number: 1224
Signing time: Sun 01 Mar 2026 23:00:50 +0000
Manifest this update: Sun 01 Mar 2026 23:00:50 +0000
Manifest next update: Mon 02 Mar 2026 23:00:50 +0000
Files and hashes: 1: 14EntEiQKF7WbYUSCRCGbvKAnA8.roa (hash: fD/9auj6RlWoUjGIPuURL2poD9aDGdre6C/qaD3tr+U=)
2: FiLe_I9IP6W7MphiOr_CiL0bjSs.roa (hash: q1TJFvUMkjNyX0aSOs41/td1gkb7//YLN5yBHlFxZC4=)
3: JIIXr3X9vCQszAbNslU1l97JDHE.roa (hash: 1cSDQwO2+YC255/v6AV3wkUxgfk6+iiyEcMIh68CJvY=)
4: LFK2KZYQdm49lMZGq09_QCx1zKM.roa (hash: nYysAfjey6lKN0HP83k5T3J+7jNUAsnWPGq1zi3IPys=)
5: ZQoXdMphcAyX_vSWGtLFp2lvoas.roa (hash: iFh6LchnjC6OiPt1RjLveej4KNPbVSeFQ+5l4ZDpv0s=)
6: pZS2FuCyE0ac7bgviGBWTjEjxK8.roa (hash: BY2QLyJHYDD23aKTMOr6Dhb2Ou5jiMnicXO1uDe86kk=)
7: s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl (hash: uknTDe9uMtdPO/xerIosnvAgjEnG0S2x8s3XDswl61k=)
8: wDNBjtjhirmC6HysMhN91EuISE4.roa (hash: VJdL+BcRDNdb1Ls5gcb7MknnthUWMMrUmAyuqY4kqkM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:0d:b9:c6:0d:c2:a9:4b:7a:26:3b:48:ee:3c:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b393df877bf2f0cf01a9718973eaeee87b0697d9
Validity
Not Before: Mar 1 23:00:50 2026 GMT
Not After : Mar 2 23:00:50 2026 GMT
Subject: CN=2e2e6af5dbafcf003999c73aaa4822fd11894161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6d:60:49:e9:13:66:0e:57:ef:38:7c:d1:81:
f2:05:a1:6d:5a:cb:c6:0d:d1:9b:27:6a:ef:6e:2f:
92:21:55:55:d5:68:7f:80:a5:df:f2:9d:5b:ad:26:
7b:7c:12:db:b9:c3:40:03:de:b0:40:ad:69:df:d3:
4f:7d:64:8d:8d:17:50:f3:d8:6e:e3:1e:c1:6a:aa:
71:d5:06:35:29:1d:6a:6e:06:c7:d6:ca:ab:27:be:
e9:14:22:87:cb:16:28:28:3f:cd:ae:c4:26:db:69:
91:3c:b9:3e:44:1a:08:95:0c:4c:3a:45:46:f2:e2:
c4:1f:33:c8:4e:0f:e5:42:dc:44:c3:de:a3:32:be:
35:5c:35:a5:1f:14:2f:04:cd:eb:19:88:13:b1:af:
b0:b2:f2:ba:8a:fe:86:3b:9d:86:6d:bf:40:e3:74:
bb:af:2a:73:98:98:2d:0b:70:53:c0:d2:e9:cf:e8:
f8:fb:88:76:b3:76:1d:27:5b:18:59:4a:29:81:5d:
e2:8c:69:99:31:2c:e1:19:2b:84:17:dd:90:cf:25:
38:02:23:58:88:2a:bd:41:24:3d:13:6f:fd:27:cd:
8e:70:e9:00:b9:14:f1:40:fb:1d:19:d0:b9:d7:d5:
ed:6c:07:4b:f0:0f:d3:45:23:58:7f:6e:74:e5:7b:
0b:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:2E:6A:F5:DB:AF:CF:00:39:99:C7:3A:AA:48:22:FD:11:89:41:61
X509v3 Authority Key Identifier:
keyid:B3:93:DF:87:7B:F2:F0:CF:01:A9:71:89:73:EA:EE:E8:7B:06:97:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9375e3-377e-4b70-ba36-396bc720e2b4/1/s5Pfh3vy8M8BqXGJc-ru6HsGl9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
e5:f3:fb:97:29:5d:a1:fa:2e:f4:e8:77:c2:08:06:16:29:e2:
97:85:37:11:89:27:de:e5:28:d6:6d:c3:d3:dd:07:60:12:66:
39:7a:b6:52:9d:08:03:50:d6:bc:bf:c5:3d:87:cb:9c:8c:77:
5f:4c:7f:de:72:56:fb:2d:2e:79:3f:25:8e:4e:a6:d6:ba:c2:
47:17:0d:42:bf:e9:c7:37:b6:c7:fb:65:fc:cf:40:8e:51:0d:
bf:0e:92:0c:5a:69:82:66:45:d3:6f:f0:86:49:bc:a7:7c:9b:
f8:34:8b:ce:57:ea:98:89:e8:de:10:44:d1:07:67:c3:e8:70:
32:71:f8:11:1e:da:57:29:12:4a:8b:28:f1:fb:44:3e:17:a2:
fd:18:62:e6:53:4c:22:b8:a8:0d:47:e8:5d:fb:69:68:27:0c:
bc:16:21:2f:f3:4b:21:d0:d9:b4:95:16:5f:3d:27:2f:20:7c:
d3:94:45:3a:55:54:31:23:c7:00:b2:9e:86:f3:92:a4:ac:5f:
ce:1a:8a:f4:dc:4a:74:5d:23:1c:16:9d:9f:d7:d4:2d:0a:ca:
0f:b6:4e:ef:f0:35:47:fd:15:ab:7b:61:f2:46:53:9b:14:f2:
49:63:51:83:fc:a4:39:10:fc:99:5f:f1:e2:48:fd:2a:79:1a:
75:10:34:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:03:41 2026 by rpki-client