Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
File: sBCzoH7QdoStvu_aRTKhy2g6VpI.mft (raw, json)
Hash identifier: lWyIp8HiLzqksy+Mq+uC2mPhAVczN5/t7j4ngs/mWHA=
Subject key identifier: E1:2C:DE:45:B3:08:C0:67:8B:8F:15:09:1B:2C:34:53:B3:C9:F6:A6
Authority key identifier: B0:10:B3:A0:7E:D0:76:84:AD:BE:EF:DA:45:32:A1:CB:68:3A:56:92
Certificate issuer: /CN=b010b3a07ed07684adbeefda4532a1cb683a5692
Certificate serial: 019CAD59452B4CF8495C93E261ED7156F6E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBCzoH7QdoStvu_aRTKhy2g6VpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
Manifest number: 5F
Signing time: Mon 02 Mar 2026 07:00:34 +0000
Manifest this update: Mon 02 Mar 2026 07:00:34 +0000
Manifest next update: Tue 03 Mar 2026 07:00:34 +0000
Files and hashes: 1: HOsIByRB05sMesPlqYI8THFtGjM.roa (hash: VJopQfVewffY+pivrrV8JLnBTXPO+QkfD3SD6xVxU8E=)
2: sBCzoH7QdoStvu_aRTKhy2g6VpI.crl (hash: nzFMA5DtZhR2DPoy5dey/GhZEJcEetNiYXeoHWNzyGA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBCzoH7QdoStvu_aRTKhy2g6VpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:45:2b:4c:f8:49:5c:93:e2:61:ed:71:56:f6:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b010b3a07ed07684adbeefda4532a1cb683a5692
Validity
Not Before: Mar 2 07:00:34 2026 GMT
Not After : Mar 3 07:00:34 2026 GMT
Subject: CN=e12cde45b308c0678b8f15091b2c3453b3c9f6a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:fb:0a:26:22:2c:b9:02:bc:9d:8e:56:fe:be:
50:22:1a:5b:ae:ff:05:61:a1:d4:67:f1:88:56:4b:
10:f6:1c:ad:35:6c:6d:e2:69:a1:25:e5:f2:a1:5c:
4d:be:fe:c3:59:64:95:f0:7f:b1:29:4d:d6:e6:5b:
99:a6:cb:ce:79:76:f1:75:99:b6:0d:62:0a:da:a6:
49:46:7a:44:5b:58:18:cb:b2:50:9a:a2:1a:61:84:
01:82:9c:1e:32:fc:0c:08:dd:51:55:1c:2c:01:cf:
e9:4f:50:5b:6b:2f:1b:b9:af:0f:c7:c7:15:c3:f4:
21:a9:e2:33:10:45:83:cc:1b:9c:0a:e5:57:e9:d3:
ae:f8:b7:32:b4:5f:33:0d:dd:d1:e2:8b:26:dc:72:
c3:9e:96:00:b9:8a:1d:8d:57:56:ba:bb:e5:f7:e4:
94:f2:61:08:72:58:58:66:2d:85:97:ea:22:e3:44:
a0:ff:27:b9:f6:bd:11:40:a3:a6:d9:85:45:6b:c7:
bf:f7:7c:6c:fe:55:f0:d9:40:7f:e9:f3:b3:b8:14:
d7:87:65:d3:19:d3:a5:90:30:70:a5:ad:57:5d:88:
17:b6:bb:ec:c8:1a:b5:aa:cc:59:8f:51:43:3f:e9:
d7:e3:f7:a7:b7:74:ab:85:25:01:b9:90:6f:d8:8a:
14:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:2C:DE:45:B3:08:C0:67:8B:8F:15:09:1B:2C:34:53:B3:C9:F6:A6
X509v3 Authority Key Identifier:
keyid:B0:10:B3:A0:7E:D0:76:84:AD:BE:EF:DA:45:32:A1:CB:68:3A:56:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBCzoH7QdoStvu_aRTKhy2g6VpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:d9:9a:e3:cd:12:36:ff:de:0f:59:7e:47:23:68:31:91:7b:
2e:5f:a8:55:8b:77:46:c7:fc:32:63:1c:f5:a4:56:97:1e:8f:
bd:ce:74:80:c0:49:d3:99:dc:f2:cc:52:f7:f3:20:cc:b0:b6:
18:71:bb:c6:65:df:5c:eb:b2:ad:5f:70:a7:07:94:b6:20:17:
2c:cc:c5:42:10:79:7c:d2:8b:f6:4e:5c:ba:ed:ec:59:29:65:
47:4a:88:35:45:99:9e:ff:f4:07:f4:84:2c:ee:49:23:ad:69:
cc:7a:77:42:80:a8:2b:65:27:9a:04:f2:a0:c2:1b:20:83:45:
39:e0:b7:88:e3:dc:d5:d1:96:0c:74:38:70:97:cc:4c:48:14:
9a:e0:63:d7:4f:a4:20:19:87:1c:93:33:1d:04:76:a1:c3:97:
b9:5c:17:af:7e:14:a7:06:78:43:59:51:0f:0b:60:7a:b7:87:
e0:79:88:43:ec:f7:49:d9:83:63:80:65:4c:73:35:da:b8:1b:
d8:7a:ef:cc:60:79:5e:57:1b:35:9a:61:3f:40:96:a1:ae:c9:
0d:95:b5:89:11:7a:a3:97:31:cd:3d:c4:ab:18:5d:e6:a6:58:
97:e3:e8:3f:08:fd:b4:f4:22:27:31:60:96:77:9d:0f:b8:77:
b3:0b:77:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:50:53 2026 by rpki-client