Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
File: sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft (raw, json)
Hash identifier: A27NxnhcRvgeRLwlmalJ3iltNQ5k35Bt72BEeyONmUU=
Subject key identifier: 69:B3:39:DC:40:8C:B9:CF:3E:FE:4B:C5:46:35:18:E3:A9:46:36:7D
Authority key identifier: B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
Certificate issuer: /CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Certificate serial: 019D9A3ED6019405947A4FE9122296D30F9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
Manifest number: 05BC
Signing time: Fri 17 Apr 2026 07:01:42 +0000
Manifest this update: Fri 17 Apr 2026 07:01:42 +0000
Manifest next update: Sat 18 Apr 2026 07:01:42 +0000
Files and hashes: 1: KfYGsusnHllzc3HN92AAdqUVjQo.roa (hash: gW3c/fjZpWHlQkkjPS1/2ufW3e6QoYfqV4VH4SK5fWk=)
2: sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl (hash: zb9mkULjCm4dnYhJaoKeZzOQaLkvKNGZIUCLylkzgHE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:d6:01:94:05:94:7a:4f:e9:12:22:96:d3:0f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Validity
Not Before: Apr 17 07:01:42 2026 GMT
Not After : Apr 18 07:01:42 2026 GMT
Subject: CN=69b339dc408cb9cf3efe4bc5463518e3a946367d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bb:cd:19:81:73:63:bb:d7:09:39:76:04:7f:
b6:75:29:2d:9a:ab:43:79:88:d0:17:7f:93:96:d3:
8b:c8:6e:29:cc:5a:8a:09:75:c6:c1:59:19:9b:4e:
28:f9:d9:67:d5:23:c2:1d:5a:86:e9:d8:78:e9:4d:
a3:c6:36:21:a9:01:a1:f2:a9:00:e9:a2:f4:c3:ae:
77:2d:0a:5c:a6:b6:90:f4:82:38:ee:2f:44:2c:a2:
0e:39:f5:e8:ed:a8:c6:80:cb:49:4c:fc:ed:f2:c9:
e5:e7:d7:73:82:1d:23:65:b7:4a:56:2c:ea:3b:07:
a2:7c:9d:58:13:f1:14:0c:63:c5:ee:94:88:22:c5:
d0:e4:99:87:03:1d:ec:fd:25:d3:c9:18:39:2a:ef:
0b:16:56:08:bc:5d:03:55:03:1c:ab:3f:29:1f:45:
a8:42:d0:d6:e9:20:7b:ab:aa:58:f8:83:76:3d:54:
1c:c8:80:54:45:cb:dc:f8:c1:fd:98:67:2e:98:cd:
fe:76:5a:27:9b:32:e0:d4:d0:52:c1:65:da:16:1c:
98:c1:f8:c0:2d:a1:2e:36:af:76:c1:c0:1c:db:18:
87:d9:9f:07:f5:1c:6d:79:c6:cb:ba:3a:fe:bb:c0:
3c:6a:66:d8:7e:45:c4:7d:a3:fa:1b:eb:26:3c:f9:
3e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:B3:39:DC:40:8C:B9:CF:3E:FE:4B:C5:46:35:18:E3:A9:46:36:7D
X509v3 Authority Key Identifier:
keyid:B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:5c:ec:64:cd:d6:d1:23:18:16:56:97:8d:61:58:73:26:32:
38:d5:22:2a:25:0d:27:7a:05:e7:e4:c9:f3:4c:74:27:54:7a:
d9:6c:9a:3f:22:4c:5b:fe:67:1f:f2:fa:5c:9e:a9:8f:ba:f7:
45:e5:bf:42:9f:04:ab:41:42:c1:6b:ed:6e:85:4c:78:89:cb:
d8:9b:34:34:67:43:1f:b4:31:e5:94:3b:3d:da:5e:73:60:e3:
65:91:b2:83:a4:a8:18:a6:39:b1:5a:03:50:c6:90:9d:f4:74:
38:a4:93:e2:e1:a8:d4:54:06:a3:2a:24:c8:01:e6:3e:b4:a9:
09:b7:6e:36:ce:10:75:ca:de:8e:c3:56:80:c5:38:94:cd:f4:
ef:9b:44:41:62:47:03:07:60:02:bb:01:48:59:e2:d7:81:2f:
4a:ae:af:4c:b0:8a:2b:16:54:de:fd:1b:5f:d1:3a:7b:96:c7:
34:3f:99:18:25:58:56:b2:bb:f0:d9:9e:e4:27:fd:5b:f2:65:
02:c4:0a:32:73:41:50:35:67:a0:ef:50:7a:f5:10:25:31:bf:
cc:dd:35:d1:2a:0b:a6:27:55:75:1a:9c:73:d7:43:c0:2e:6a:
2b:5c:50:ca:ab:de:53:90:18:b3:08:07:38:e8:9c:db:cc:37:
41:dc:d8:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:28:52 2026 by rpki-client