Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
File: sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft (raw, json)
Hash identifier: OqLi3D06Qe0GJjKLLTtQDm5f5wRuEO9U/8T9IxJaPAo=
Subject key identifier: 34:AF:CE:3A:77:94:16:52:6F:8F:BE:9A:58:DA:BE:E5:C5:DC:A2:72
Authority key identifier: B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
Certificate issuer: /CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Certificate serial: 019CACB5795947D1F2D06F65930F9C27C225
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
Manifest number: 0541
Signing time: Mon 02 Mar 2026 04:01:39 +0000
Manifest this update: Mon 02 Mar 2026 04:01:39 +0000
Manifest next update: Tue 03 Mar 2026 04:01:39 +0000
Files and hashes: 1: KfYGsusnHllzc3HN92AAdqUVjQo.roa (hash: gW3c/fjZpWHlQkkjPS1/2ufW3e6QoYfqV4VH4SK5fWk=)
2: sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl (hash: xc7xqUQw9RrNLS7g15RZPsn3dAMEkZO8r4fAfYPTgT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:79:59:47:d1:f2:d0:6f:65:93:0f:9c:27:c2:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Validity
Not Before: Mar 2 04:01:39 2026 GMT
Not After : Mar 3 04:01:39 2026 GMT
Subject: CN=34afce3a779416526f8fbe9a58dabee5c5dca272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:5b:d4:f4:f2:e6:c0:52:19:b1:3f:f7:24:72:
01:e3:48:cd:14:75:11:e4:c4:57:b3:07:3e:11:b3:
17:fc:39:3f:30:ee:31:a7:77:07:0f:c1:c7:bf:77:
c8:db:8a:5d:19:9a:7f:54:be:30:b7:85:29:0a:85:
e2:ca:aa:fb:46:45:fc:c3:88:98:13:7f:73:cc:f1:
0c:7d:61:8d:8d:fe:57:f4:79:ee:1c:2d:e4:6c:6e:
31:b7:59:99:cc:1c:b6:03:c9:7b:b1:e5:b8:ca:30:
56:84:47:b1:b7:78:7b:8b:e0:e1:69:bf:8f:b0:3b:
e6:d3:6d:8f:ba:91:97:d7:78:f1:75:a2:ca:e4:9d:
50:ec:bd:38:86:c3:bb:16:3a:1f:5a:bc:0a:44:a0:
f2:3a:56:47:bc:36:71:75:95:10:d1:1d:31:94:72:
98:b9:47:66:96:a6:c6:f5:ee:d8:c2:22:32:4d:5d:
75:ca:3a:7b:cb:cb:ca:d3:44:ee:07:3d:57:2d:00:
d1:56:b3:2e:08:6c:79:f2:f3:f3:6d:23:35:4c:39:
dd:36:08:52:3c:04:ba:c6:e6:b3:49:ff:c3:4e:85:
46:6c:cd:8c:bd:04:73:52:21:fb:f1:f3:b0:6d:2f:
3b:6a:a3:a7:81:31:30:83:d0:5f:18:05:e5:3d:10:
22:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:AF:CE:3A:77:94:16:52:6F:8F:BE:9A:58:DA:BE:E5:C5:DC:A2:72
X509v3 Authority Key Identifier:
keyid:B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:20:95:b4:47:c6:9b:57:d7:18:3d:c9:85:66:fe:b2:30:d6:
9f:19:d3:b1:9e:b2:f0:18:39:8d:9f:05:3b:01:ac:6f:eb:0d:
1d:39:a7:65:b6:04:a7:46:97:39:b5:6e:cc:a1:49:f2:f5:95:
d5:76:37:71:9b:cc:74:0a:87:a0:96:bc:eb:4e:ea:40:0c:41:
a0:c5:c5:7b:90:7a:14:e7:fe:5c:99:dd:9f:db:92:d8:db:98:
e4:c4:f5:11:7d:45:01:a8:97:74:f6:1b:6f:7a:f4:9e:a8:11:
1c:fd:17:20:76:e0:b6:82:1d:13:4e:97:40:af:57:d8:6a:3a:
83:3e:2f:04:33:21:df:56:d1:39:7b:22:6a:a4:ef:5b:56:a8:
b0:06:23:98:40:fa:74:83:47:2e:42:41:7c:9b:02:10:5c:65:
f4:7e:82:bf:6b:ae:cb:6a:fc:ed:ed:eb:ce:d4:99:a2:19:fa:
5c:23:97:32:05:67:bd:1a:ff:b5:ce:84:f5:9d:94:d3:f8:c8:
f2:d2:77:95:ce:44:68:9a:da:13:a3:98:19:97:62:e9:ec:4c:
0a:e0:83:09:d5:4d:10:0a:b9:e6:e1:eb:20:ed:5c:0b:36:cc:
8c:77:3a:85:be:71:60:42:26:4e:d9:a7:d0:54:7b:ca:11:df:
f6:e0:82:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:46:01 2026 by rpki-client